From owner-doc-jp-work@jp.FreeBSD.org Sun Feb 23 18:53:02 2003
Received: (from daemon@localhost)
	by castle.jp.FreeBSD.org (8.11.6+3.4W/8.11.3) id h1N9r2m26969;
	Sun, 23 Feb 2003 18:53:02 +0900 (JST)
	(envelope-from owner-doc-jp-work@jp.FreeBSD.org)
Received: from suou ([3ffe:501:185b:8020::2])
	by castle.jp.FreeBSD.org (8.11.6+3.4W/8.11.3) with ESMTP/inet6 id h1N9r1i26964;
	Sun, 23 Feb 2003 18:53:01 +0900 (JST)
	(envelope-from y-koga@jp.FreeBSD.org)
Received: from localhost (localhost [IPv6:::1])
	by suou (8.12.7/8.12.7) with ESMTP id h1N9r1Cv022182;
	Sun, 23 Feb 2003 18:53:01 +0900 (JST)
Message-Id: <20030223.185301.47422878.y-koga@jp.FreeBSD.org>
To: doc-jp-work@jp.FreeBSD.org
From: Koga Youichirou <y-koga@jp.FreeBSD.org>
In-Reply-To: <20030223.180916.71084227.hrs@eos.ocn.ne.jp>
References: <20030223.180916.71084227.hrs@eos.ocn.ne.jp>
X-Mailer: Mew version 3.2rc1 on Emacs 21.2 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Reply-To: doc-jp-work@jp.FreeBSD.org
Precedence: list
Date: Sun, 23 Feb 2003 18:53:01 +0900
X-Sequence: doc-jp-work 596
Subject: [doc-jp-work 596] Re: OpenSSL advisory
Errors-To: owner-doc-jp-work@jp.FreeBSD.org
Sender: owner-doc-jp-work@jp.FreeBSD.org
X-Originator: y-koga@jp.FreeBSD.org
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+030107

Hiroki Sato <hrs@eos.ocn.ne.jp>:
> Vulnerability
> -------------
> 
> In an upcoming paper, Brice Canvel (EPFL), Alain Hiltgen (UBS), Serge
> Vaudenay (EPFL), and Martin Vuagnoux (EPFL, Ilion) describe and
> demonstrate a timing-based attack on CBC ciphersuites in SSL and TLS.
> 
>   Brice Canvel (EPFL), Alain Hiltgen (UBS), Serge Vaudenay (EPFL),
>   Martin Vuagnoux (EPFL, Ilion) $B$i$O!"$^$b$J$/8x3+$5$l$kO@J8$G(B
>   SSL $B$H(B TLS $B$K4^$^$l$k(B CBC $B0E9f$KBP$9$k%?%$%_%s%0%Y!<%9967bJ}K!$N(B
>   $B@bL@$HN)>Z$r9T$J$C$F$$$^$9!#(B

$B!V!A$i$O!W$G$O$J$/!"$3$N;M?M8BDj$G$9$h$M!#(B
$B$"$H!"(Bupcoming $B$K$O!V$^$b$J$/!W$N0UL#$O$J$$$h$&$K;W$$$^$9!#(B

$B$^$?!"(Bdemonstrate $B$OM}O@>e$N$b$N$G$O$J$/!"<B:]$K8+$;$F$$$k$N$@$H;W$&$N(B
$B$G!V<B>Z!W$NJ}$,$$$$$H;W$$$^$9!#(B

CBC $B$O!V0E9f!W$G$O$"$j$^$;$s!#0E9f2=$N=hM}$N;EJ}$N0l<o$G!"$?$H$($P(B
$B!V(BDES $B$N(B CBC $B%b!<%I!W$N$h$&$K!V%b!<%I!W$r$D$1$FI=8=$9$k$N$,0lHLE*$8$c(B
$B$J$$$+$H;W$$$^$9!#$A$J$_$K(B CBC $B$O(B Cipher Block Chaining $B$NN,$G$9!#(B
----
$B$3$,$h$&$$$A$m$&(B
