-
Notifications
You must be signed in to change notification settings - Fork 225
BEAST
ivanr edited this page May 25, 2012
·
3 revisions
- Ivan Ristic: Mitigating the BEAST attack on TLS http://blog.ivanristic.com/2011/10/mitigating-the-beast-attack-on-tls.html
- According to SSL Pulse stats from April 2012, 74% of the popular web sites are vulnerable to BEAST
- Chrome and BEAST http://www.imperialviolet.org/2011/09/23/chromeandbeast.html
- BEAST followup http://www.imperialviolet.org/2012/01/15/beastfollowup.html
- Opera addresses BEAST in 11.60 (December 6, 2011) http://my.opera.com/desktopteam/blog/2011/12/06/11-60-goes-final
- About Opera 11.60 and new problems with some secure servers http://my.opera.com/securitygroup/blog/2011/12/11/opera-11-60-and-new-problems-with-some-secure-servers
- Microsoft addresses BEAST with MS12-005 (January 10, 2012) https://technet.microsoft.com/en-us/security/bulletin/ms12-006 http://support.microsoft.com/kb/2643584
- Mozilla implemented 1/n-1 in Firefox 10 [citation needed]
- Mozilla: Servers intolerant to 1/n-1 record splitting. "The connection was reset" https://bugzilla.mozilla.org/show_bug.cgi?id=702111
- Oracle http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html