We should implement a countermeasure against the predictable-IV CBC
authorBodo Möller <bodo@openssl.org>
Wed, 13 Feb 2002 10:21:25 +0000 (10:21 +0000)
committerBodo Möller <bodo@openssl.org>
Wed, 13 Feb 2002 10:21:25 +0000 (10:21 +0000)
weakness in SSL/TLS

STATUS

diff --git a/STATUS b/STATUS
index 87bd779..3a6d0ae 100644 (file)
--- a/STATUS
+++ b/STATUS
@@ -1,6 +1,6 @@
 
   OpenSSL STATUS                           Last modified at
-  ______________                           $Date: 2002/02/09 01:49:53 $
+  ______________                           $Date: 2002/02/13 10:21:25 $
 
   DEVELOPMENT STATE
 
 
   NEEDS PATCH
 
+    o  An (optional) countermeasure against the predictable-IV CBC
+       weakness in SSL/TLS should be added; see
+       http://www.openssl.org/~bodo/tls-cbc.txt
+
     o  All 'openssl' subprograms taking '-des' and '-des3' options should
        include AES support (0.9.7-dev)