We should implement a countermeasure against the predictable-IV CBC
authorBodo Möller <bodo@openssl.org>
Wed, 13 Feb 2002 10:21:25 +0000 (10:21 +0000)
committerBodo Möller <bodo@openssl.org>
Wed, 13 Feb 2002 10:21:25 +0000 (10:21 +0000)
weakness in SSL/TLS

STATUS

diff --git a/STATUS b/STATUS
index 87bd7798c88b3a0398c7f1781edaa15ee14ee411..3a6d0ae43506b7c2d8520945fefbc8dda916f6c1 100644 (file)
--- a/STATUS
+++ b/STATUS
@@ -1,6 +1,6 @@
 
   OpenSSL STATUS                           Last modified at
-  ______________                           $Date: 2002/02/09 01:49:53 $
+  ______________                           $Date: 2002/02/13 10:21:25 $
 
   DEVELOPMENT STATE
 
 
   NEEDS PATCH
 
+    o  An (optional) countermeasure against the predictable-IV CBC
+       weakness in SSL/TLS should be added; see
+       http://www.openssl.org/~bodo/tls-cbc.txt
+
     o  All 'openssl' subprograms taking '-des' and '-des3' options should
        include AES support (0.9.7-dev)