[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Backward compatibility bites again (like RC4 in WPA2)
- To: grarpamp <[email protected]>
- Subject: Backward compatibility bites again (like RC4 in WPA2)
- From: [email protected] (coderman)
- Date: Tue, 3 Mar 2015 13:48:28 -0800
- Cc: [email protected]
- In-reply-to: <CAJVRA1Spc8Ocp5mVg6W_deQx5xpGgWRfO-sscd4NrEXEoidR6A@mail.gmail.com>
- References: <CAJVRA1Qn3+DTb7gMYJt4gYAJdooR8FEKF1H=JrdiLTMvRFs0jw@mail.gmail.com> <CAJVRA1Spc8Ocp5mVg6W_deQx5xpGgWRfO-sscd4NrEXEoidR6A@mail.gmail.com>
On 2/4/15, coderman <[email protected]> wrote:
> ...
> 2015, RC4 still in WPA2, WPA2 still in everything, ... [0].
not RC4 specifically, but EXP-RC4-MD5 is the avenue:
"The export-grade RSA ciphers are the remains of a 1980s-vintage
effort to weaken cryptography so that intelligence agencies would be
able to monitor. This was done badly. So badly, that while the
policies were ultimately scrapped, theyâ??re still hurting us today."
- http://blog.cryptographyengineering.com/2015/03/attack-of-week-freak-or-factoring-nsa.html
RC4, still hurting us today, too!