Saturday May 14, 2005 Random ramblings
Saturday May 14, 2005 Yesterday's security research today!
Must be a slow week in security research land. First "news" that IPSec could be configured insecurely! which IPSec implementors have known about for ages and had already taken steps to ensure the user was warned if AH was not configured. Then a shock announcement that HyperThreading is harmful because it could allow a timing attack against OpenSSL RSA, an attack which has been known about for years and which has had a defence implemented in OpenSSL for only, oh over two years now.
Anyway, I'm off to browse the wayback machine now, to see if I can predict next week's shock security news...
[Update: Turns out the previous SSL RSA attack was different, so this is a new attack. A very difficult one though]
( May 14 2005, 12:37:35 AM IST ) Permalink Comments [0]
Trackback URL: http://blogs.sun.com/paulj/entry/yesterday_s_security_research_today
Comments:
Post a Comment:
