W3C home > Mailing lists > Public > ietf-http-wg-old@w3.org > September to December 1995

Re: I-D ACTION:draft-luotonen-ssl-tunneling-01.txt

From: Simon Spero <ses@tipper.oit.unc.edu>
Date: Fri, 10 Nov 1995 11:11:24 -0800 (PST)
To: Ari Luotonen <luotonen@netscape.com>
Cc: http-wg mailing list <http-wg%cuckoo.hpl.hp.com@hplb.hpl.hp.com>
Message-Id: <Pine.SOL.3.91.951110110624.13746C-100000@chivalry>

One important security note that should be added to this draft: any client
that supports this extension MUST perform some correlation between the
requested hostname and the certificate returned in the SSL connection -
otherwise the system becomes vulnerable to trivial Person-In-The-Middle
attacks, with much less effort that conventional attacks. 

No currently deployed systems perform this checking; the next release of 
the Netscape 2 Beta does do the checking; previous versions are 
vulnerable. 

Simon


----
(defun modexpt (x y n)  "computes (x^y) mod n"
  (cond ((= y 0) 1) 	((= y 1) (mod x n))
	((evenp y) (mod (expt (modexpt x (/ y 2) n) 2) n))
	(t (mod (* x (modexpt x (1- y) n)) n))))
Received on Friday, 10 November 1995 11:16:36 EST

This archive was generated by hypermail pre-2.1.9 : Wednesday, 24 September 2003 06:31:35 EDT