BEAST: An Explanation of the CBC Attack on TLS posted July 2017
I made a video explaining the BEAST attack. As usual it's more of an overview so head over to something like this for more details.
Well done! You've reached the end of my post. Now you can leave a comment or read something else.
Here are some random popular articles:
Here are some random recent articles:
- - Intro to Kimchi @ 0xPARC CARML Weekend
- - ZK FAQ: What's a trusted setup? What's a Structured Reference String? What's toxic waste?
- - The intuition behind the sum-check protocol in 5 minutes
- - What's the deal with zkapps?
- - Two And A Half Coins episode 4: More on Bitcoin: 51% attacks and Merkle trees!
- - A new series of videos on zero-knowledge proof composition and recursion (part 1)
- - CFF22 trip report
Comments
Dan
Good explanation! However one slight issue. BEAST doesn't involve a padding oracle. I think you might be thinking of POODLE. A padding oracle is something that takes a ciphertext as input, decrypts it, and if a padding error is encountered reports it back to the person who submitted the ciphertext. Thanks!
david
oh my of course! I need to fix this. Did I say it was a padding oracle in the video itself? I hope I didn't :)
Thanks for pointing this out Dan.
leave a comment...