First was SSL 3.0, now is TLS (poodle)

Does this mean that there is no protocol that can be used now that is safe against this type of attack?

As far as I am aware, TLS 1.2 with certain ciphers are unaffected.

According to Adam Langley from Google, he agrees:

This seems like a good moment to reiterate that everything less than TLS 1.2 with an AEAD cipher suite is cryptographically broken.


Thank you Sal for the reply.

So, what cipher suite does COMODO recommends using with TLS 1.2 to be unaffected by POODLE?

POODLE is an attack against CBC (and so are BEAST and Lucky13).

Use GCM (and ChaCha20).

Great! Thanks.