Black Hat USA 2013 - TLS 'secrets'54:07 1011 views 100% Published 8 years ago
By: Florent 'NextGen$' Daigniere
SSL and TLS have become the de-facto standards for transport-layer encryption. In recent years, many vulnerabilities have been uncovered in both the standards, their implementation and the way people configure and use them. This talk is exploring in details a lesser-known and much less talked about part of the standard which breaks some of the security properties one would expect. A tool allowing for forensic recovery of plaintext (even when PFS ciphers are in use) will be released.