[14405] in cryptography@c2.net mail archive
Re: anonymous DH & MITM
daemon@ATHENA.MIT.EDU (Eric Murray)
Wed Oct 1 21:33:01 2003
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Wed, 1 Oct 2003 17:16:18 -0700
From: Eric Murray <ericm@lne.com>
To: M Taylor <mctylr@privacy.nb.ca>
Cc: Cryptography list <cryptography@metzdowd.com>
In-Reply-To: <20031002000640.A7066@pull.privacy.nb.ca>; from mctylr@privacy.nb.ca on Thu, Oct 02, 2003 at 12:06:40AM +0100
On Thu, Oct 02, 2003 at 12:06:40AM +0100, M Taylor wrote:
>
> Stupid question I'm sure, but does TLS's anonymous DH protect against
> man-in-the-middle attacks?
No, it doesn't.
> If so, how? I cannot figure out how it would,
> and it would seem TLS would be wide open to abuse without MITM protection so
> I cannot imagine it would be acceptable practice without some form of
> security.
The non DH suites are there in the spec for use when
your security model allows. Not many uses of TLS do.
Last time I checked, which was a while ago now, very few deployed
https servers offered anon DH suites. Which is appropriate
since MITM breaks the https security model.
Eric
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
