diff options
author | Bodo Möller <bodo@openssl.org> | 2002-02-13 10:21:25 +0000 |
---|---|---|
committer | Bodo Möller <bodo@openssl.org> | 2002-02-13 10:21:25 +0000 |
commit | 78d6603aadf51c3b5f70229be5456ae851ab6bbe (patch) | |
tree | a78f12d6f2df9129755d27b8a1c9689c7d775b9f | |
parent | 7241ae1a0aacf861356be88a5a56f7279b8bc028 (diff) | |
download | openssl-78d6603aadf51c3b5f70229be5456ae851ab6bbe.tar.gz |
We should implement a countermeasure against the predictable-IV CBC
weakness in SSL/TLS
-rw-r--r-- | STATUS | 6 |
1 files changed, 5 insertions, 1 deletions
@@ -1,6 +1,6 @@ OpenSSL STATUS Last modified at - ______________ $Date: 2002/02/09 01:49:53 $ + ______________ $Date: 2002/02/13 10:21:25 $ DEVELOPMENT STATE @@ -49,6 +49,10 @@ NEEDS PATCH + o An (optional) countermeasure against the predictable-IV CBC + weakness in SSL/TLS should be added; see + http://www.openssl.org/~bodo/tls-cbc.txt + o All 'openssl' subprograms taking '-des' and '-des3' options should include AES support (0.9.7-dev) |