Skip to content

Latest commit

 

History

History
109 lines (73 loc) · 5.37 KB

README.md

File metadata and controls

109 lines (73 loc) · 5.37 KB

TLS - what can go wrong?

Key generation

RSA encryption handshake

RSA signature handshake

ECDSA / DSA handshake

  • Duplicate r (not found in the wild yet)

Static DH/ECDH handshake

Diffie Hellman

ECDHE

Finished message

CBC/HMAC

GCM

Small block size

RC4

Compression

  • CRIME (TLS compression)
  • BREACH (HTTP compression)
  • TIME, HEIST (TCP window trick, Javascript, timing + HTTP compression)

State machine errors

HTTP/HTTPS related

Parsing and validation logic issues

Sidechannels

Others