Author Topic: First was SSL 3.0, now is TLS (poodle)  (Read 502 times)

Offline w-e-v

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 1416
  • BETA FORCE MEMBER
First was SSL 3.0, now is TLS (poodle)
« on: March 10, 2015, 12:31:47 PM »
Does this mean that there is no protocol that can be used now that is safe against this type of attack?
https://en.wikipedia.org/wiki/POODLE#POODLE_attack_against_TLS

Offline Sal Amander

  • Comodo Staff
  • Comodo's Hero
  • *****
  • Posts: 683
    • Comodo Technical Support
Re: First was SSL 3.0, now is TLS (poodle)
« Reply #1 on: March 10, 2015, 12:53:31 PM »
As far as I am aware, TLS 1.2 with certain ciphers are unaffected.

According to Adam Langley from Google, he agrees:
Quote
This seems like a good moment to reiterate that everything less than TLS 1.2 with an AEAD cipher suite is cryptographically broken.

Source


Offline w-e-v

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 1416
  • BETA FORCE MEMBER
Re: First was SSL 3.0, now is TLS (poodle)
« Reply #2 on: March 10, 2015, 01:02:24 PM »
Thank you Sal for the reply.

So, what cipher suite does COMODO recommends using with TLS 1.2 to be unaffected by POODLE?

Offline JoWa

  • Product Translator
  • Global Moderator
  • Comodo's Hero
  • *****
  • Posts: 4334
Re: First was SSL 3.0, now is TLS (poodle)
« Reply #3 on: March 10, 2015, 01:28:29 PM »
POODLE is an attack against CBC (and so are BEAST and Lucky13).

Use GCM (and ChaCha20).
Ubuntu 15.04, 64-bit | Chrome 45β | HTTPS Everywhere
Forum Policy | Comodo Product Help

Offline w-e-v

  • Star Group
  • Comodo's Hero
  • *****
  • Posts: 1416
  • BETA FORCE MEMBER
Re: First was SSL 3.0, now is TLS (poodle)
« Reply #4 on: March 10, 2015, 03:53:26 PM »
POODLE is an attack against CBC (and so are BEAST and Lucky13).

Use GCM (and ChaCha20).

Great! Thanks.

 

Seo4Smf 2.0 © SmfMod.Com Smf Destek