New Collision Attacks Against 3DES, Blowfish Allow for Cookie Decryption (Threatpost)

2016-08-24 12:00

Researchers have found a new way to recover and decrypt authentication cookies from 3DES and Blowfish protected traffic. In response, OpenSSL is expected to deprecate 3DES' designation from high to medium.

News URL

http://threatpost.com/new-collision-attacks-against-3des-blowfish-allow-for-cookie-decryption/120087/

#attack #decryption #threatpost

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.