Floragasse 7 – 5th floor, 1040 Vienna


DROWN attack against TLS

Today a new attack against TLS was published, DROWN.

In essence, it allows attackers to decrypt strong TLS connections using TLS 1.2 and other versions, if the deprecated protocol SSLv2 is supported by the server. Previous work by SBA Research has shown that this is a particular problem for email servers.

Most questions are answered by the authors on their website. If you are further interested, please contact Martin Schmiedecker.

This Website uses Cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.