BEAST: An Explanation of the CBC Attack on TLS posted July 2017
I made a video explaining the BEAST attack. As usual it's more of an overview so head over to something like this for more details.
Hey! I'm David, the author of the Real-World Cryptography book. I was previously a crypto architect at O(1) Labs (working on the Mina cryptocurrency), before that I was the security lead for Diem (formerly Libra) at Novi (Facebook), and a security consultant for the Cryptography Services of NCC Group. This is my blog about cryptography and security and other related topics that I find interesting.
I made a video explaining the BEAST attack. As usual it's more of an overview so head over to something like this for more details.
Here are some random popular articles:
Here are some random recent articles:
My book Real-World Cryptography is finished and shipping! You can purchase it here.
If you don't know where to start, you might want to check these popular articles:
Here are the latest links posted:
You can also suggest a link.
Comments
Dan
Good explanation! However one slight issue. BEAST doesn't involve a padding oracle. I think you might be thinking of POODLE. A padding oracle is something that takes a ciphertext as input, decrypts it, and if a padding error is encountered reports it back to the person who submitted the ciphertext. Thanks!
david
oh my of course! I need to fix this. Did I say it was a padding oracle in the video itself? I hope I didn't :)
Thanks for pointing this out Dan.
leave a comment...