[4787] in WWW Security List Archive
Re: Rollback attack
daemon@ATHENA.MIT.EDU (John Nunneley)
Wed Mar 12 13:52:39 1997
Date: Wed, 12 Mar 1997 08:40:48 -0800
From: John Nunneley <johnn@dascom.com>
Reply-To: johnn@dascom.com
To: Fiorini Simone <fiorinis@dsdata.it>
CC: "'www-security@ns2.rutgers.edu'" <www-security@ns2.rutgers.edu>
Errors-To: owner-www-security@ns2.rutgers.edu
My (limited( understanding of rollback is that it applies to negotiated
security. The attacker convinces the communicating parties to use a
lower level of security (e.g. export .vs. domestic) than they would
otherwise be able to negotiate by messing with the supported ciphersuite
list. This is a weakness in SSL2.0 that is fixed in SSL3.0. The basic
rule is to be sure to authenticate any data that has to do with setting
the security context.
- John
Fiorini Simone wrote:
>
> I've heard about something like Rollback attack against NT based WWW
> servers.
>
> Can anyone tell me something about this ?
>
> Thanks.
>
> ____________________
> Simone Fiorini
> DS DATA SYSTEMS spa
>
> fiorinis@dsdata.it
>
> _______________
>
> Simone Fiorini
> DS DATA SYSTEMS spa
> via Paradigna - PARMA (ITALY)
>
> fiorinis@dsdata.it
> fiorini@spiderlink.it
--
------------------------------------------------------------------------
John Nunneley Phone: +1 408 457 4510
DASCOM Inc. Fax: +1 408 457 0710
1509 Seabright Avenue Email: johnn@dascom.com
Santa Cruz CA 95062 WWW: http://www.dascom.com/
------------------------------------------------------------------------
