NNSquad - Network Neutrality Squad
[ NNSquad ] Microsoft: SSL/TLS attacks highly improbable, but may require patch
Microsoft: SSL/TLS attacks highly improbable, but may require patch
http://j.mp/qhXwT6 (ars technica)
"Despite the successful demo, attacks are unlikely, according to
officials from the Microsoft Security Response Center. In a blog post
titled "Is SSL Broken?" the answer provided is "yes and no," because
"there are significant mitigating factors that would make the attacks
difficult or impossible."
- - -
It was clear all along (this is a very old known attack vector) that
this was not a high level practical risk. The attack is interesting,
but the "Internet Security is Broken!" headlines recently were way out
of line.
--Lauren--
Lauren Weinstein (lauren@vortex.com): http://www.vortex.com/lauren
Co-Founder: People For Internet Responsibility: http://www.pfir.org
Founder:
- Network Neutrality Squad: http://www.nnsquad.org
- Global Coalition for Transparent Internet Performance: http://www.gctip.org
- PRIVACY Forum: http://www.vortex.com
Member: ACM Committee on Computers and Public Policy
Blog: http://lauren.vortex.com
Google+: http://vortex.com/g+lauren
Twitter: https://twitter.com/laurenweinstein
Tel: +1 (818) 225-2800 / Skype: vortex.com