Other Directory Sites: SeekWonder | Directory Owners Forum
The following archive was created by hippie-mail 7.98617-22 on Sat Apr 10 1999 - 01:11:01
Alexander Kjeldaas (astor@guardian.no)
Thu, 27 Aug 1998 19:07:47 +0200
On Tue, Aug 25, 1998 at 07:30:51PM -0500, steven.soroka@mts.mb.ca wrote:
>
> I'll warn you now, If you can't stand novice questions, delete this message
> now. :-)
>
> How secure is SSL?
That isn't a novice question, it's quite hard :-). I'm no expert in
cryptography but I know of some other people that have analyzed SSL.
One was presented in one of the proceedings of the Nordic Workshop on
Secure Computer Systems, don't remember exactly where. Some
weaknesses were shown.
Another one is by Counterpane http://www.counterpane.com/ssl.html
> Isn't the best it supports is RC4 encryption with a 128-bit key and an MD5
> MAC?
> or does it not matter what kind of encryption is used?
> Or does SSL just a type of protocol.. (that would make sense)
You negotiate with the other side what crypto you want to use.
> Ok, in that case, is the government rumored to be able to break rc4
> regularly?
Sorry, I'm not up-to-date with current us-government rumors :-)
astor
-- Alexander Kjeldaas, Guardian Networks AS, Trondheim, Norway http://www.guardian.no/
The following archive was created by hippie-mail 7.98617-22 on Sat Apr 10 1999 - 01:11:01