Backward compatibility bites again (like RC4 in WPA2)
rysiek
rysiek at hackerspace.pl
Wed Mar 4 12:45:12 PST 2015
Dnia wtorek, 3 marca 2015 13:48:28 coderman pisze:
> On 2/4/15, coderman <coderman at gmail.com> wrote:
> > ...
> > 2015, RC4 still in WPA2, WPA2 still in everything, ... [0].
>
> not RC4 specifically, but EXP-RC4-MD5 is the avenue:
>
> "The export-grade RSA ciphers are the remains of a 1980s-vintage
> effort to weaken cryptography so that intelligence agencies would be
> able to monitor. This was done badly. So badly, that while the
> policies were ultimately scrapped, they’re still hurting us today."
> -
> http://blog.cryptographyengineering.com/2015/03/attack-of-week-freak-or-fac
> toring-nsa.html
>
> RC4, still hurting us today, too!
NSA -- making the world a less safe place, one cipher at a time!
--
Pozdrawiam,
Michał "rysiek" Woźniak
Zmieniam klucz GPG :: http://rys.io/pl/147
GPG Key Transition :: http://rys.io/en/147
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 931 bytes
Desc: This is a digitally signed message part.
URL: <https://lists.cpunks.org/pipermail/cypherpunks/attachments/20150304/7da64123/attachment-0003.sig>
More information about the cypherpunks
mailing list