SSL 3.0 and TLS 1.0 did this (with a ServerKeyExchange message), with the limit ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

yuhong on Feb 26, 2015 | parent | context | favorite | on: Surreptitiously Weakening Cryptographic Systems

SSL 3.0 and TLS 1.0 did this (with a ServerKeyExchange message), with the limit being 512-bit for 40-bit export cipher suites and 1024-bit for the 56-bit export cipher suites. This is another reason why it is unfortunate that the 56-bit export cipher suites was disabled in OpenSSL in 2006.

PeterWhittaker on March 3, 2015 [–]

Wow, timely: http://www.washingtonpost.com/blogs/the-switch/wp/2015/03/03... and https://news.ycombinator.com/item?id=9139273

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact