March 21st, 2003, 03:49 PM
Attacking RSA-based Sessions in SSL/TLS
I thought the mathematically gifted amongst you might find this article interesting. The news item discusses:
The article is here: http://www.theregister.co.uk/content/55/29868.html.
The weakness identified by the cryptologists makes it possible to attack the SSL/TLS (Secure Sockets Layer and Transport Layer Security) protocols
I've also attached the 14 page paper presented by the Czech security outfit who uncovered this. More, perhaps unjustified, scaremongering though!