Please create an account to participate in the Slashdot moderation system

 



Forgot your password?
typodupeerror
For the out-of-band Slashdot experience (mostly headlines), follow us on Twitter, or Facebook. ×
Chrome

+ - Google Prepares Fix to Stop BEAST SSL/TLS Attacks->

OverTheGeicoE writes: It was reported yesterday that researchers had found a way to break the most commonly used SSL/TLS encryption in browsers. According to the Register, Google is pushing out a patch to fix the problem. The patch doesn't involve adding support for TLS 1.1 or 1.2. FTFA: "The change introduced into Chrome would counteract these attacks by splitting a message into fragments to reduce the attacker's control over the plaintext about to be encrypted. By adding unexpected randomness to the process, the new behavior in Chrome is intended to throw BEAST off the scent of the decryption process by feeding it confusing information." The fix is supposedly in the latest developer version of Chrome.
Link to Original Source
This discussion was created for logged-in users only, but now has been archived. No new comments can be posted.

Google Prepares Fix to Stop BEAST SSL/TLS Attacks

Comments Filter:

Work expands to fill the time available. -- Cyril Northcote Parkinson, "The Economist", 1955

Working...