Details

    • Subcomponent:
    • Resolved In Build:
      b118
    • CPU:
      generic
    • OS:
      generic
    • Verification:
      Verified

      Description

      TLS 1.1 (http://www.ietf.org/internet-drafts/draft-ietf-tls-rfc2246-bis-04.txt) will complete WG last call on June 10, 2003. We should support it when standardization is complete.
      TLS 1.1 was issued as the Standards Track in April 2006, RFC 4346. http://www.ietf.org/rfc/rfc4346.txt. The major changes from TLS 1.0 are:

         - The implicit Initialization Vector (IV) is replaced with an
            explicit IV to protect against CBC attacks [CBCATT].

         - Handling of padding errors is changed to use the bad_record_mac
            alert rather than the decryption_failed alert to protect against
            CBC attacks.

         - IANA registries are defined for protocol parameters.

         - Premature closes no longer cause a session to be nonresumable.

         - Additional informational notes were added for various new attacks
            on TLS.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                xuelei Xue-Lei Fan
                Reporter:
                andreas Andreas Sterbenz
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:
                  Imported:
                  Indexed: