[B! CBC] ra1gawaã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

ra1gawa id:ra1gawa

CBCã«é–¢ã™ã‚‹ra1gawaã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (30)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

https://www.jnsa.org/seminar/2013/0607/data/2E-3_pki_suga.pdf
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
Security of CBC Ciphersuites in SSL/TLS: Problems and Countermeasures
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
ImperialViolet - Chrome and the BEAST
Thai Duong and Juliano Rizzo today demoed an attack against TLS 1.0's use of cipher block chaining (CBC) in a browser environment. The authors contacted browser vendors several months ago about this and so, in order not to preempt their demo, I haven't discussed any details until now. Contrary to several press reports, Duong and Rizzo have not found, nor do they claim, any new flaws in TLS. They h
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
gooãƒ“ã‚¸ãƒã‚¹EXã‚µãƒ¼ãƒ“ã‚¹çµ‚äº†ã®ãŠçŸ¥ã‚‰ã›
æ—¥é ƒã‚ˆã‚Šãƒãƒ¼ã‚¿ãƒ«ã‚µã‚¤ãƒˆgooã€ãªã‚‰ã³ã«gooãƒ“ã‚¸ãƒã‚¹EXã‚’ã”åˆ©ç”¨ã„ãŸã ãèª ã«ã‚ã‚ŠãŒã¨ã†ã”ã–ã„ã¾ã™ã€‚ ã€Œgooãƒ“ã‚¸ãƒã‚¹EXã€ã«ã¤ãã¾ã—ã¦ã€èª ã«å‹æ‰‹ãªãŒã‚‰2017å¹´3æœˆ21æ—¥ï¼ˆç«æ›œæ—¥ï¼‰åˆå¾Œ2æ™‚ã‚’ã‚‚ã¡ã¾ã—ã¦ã€ã‚µãƒ¼ãƒ“ã‚¹ã®ã”æä¾›ã‚’çµ‚äº†ã•ã›ã¦ã„ãŸã ãã¾ã—ãŸã€‚ ã“ã‚Œã¾ã§ã”åˆ©ç”¨ã„ãŸã ãã¾ã—ãŸçš†æ§˜ã«ã¯æ·±ããŠè©«ã³ç”³ã—ä¸Šã’ã¾ã™ã¨ã¨ã‚‚ã«ã€ã€Œgooãƒ“ã‚¸ãƒã‚¹EXã€ã‚’ã”æ„›é¡§ã„ãŸã ãã¾ã—ãŸã“ã¨ã‚’é‹å–¶è€…ä¸€åŒå¿ƒã‚ˆã‚Šæ„Ÿè¬ã„ãŸã—ã¾ã™ã€‚
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
HTTPSã¸ã®BEASTæ”»æ’ƒã®è¦ç´„ - ytokuâ€™s diary
SSL/TLSã§ä¿è·ã•ã‚ŒãŸHTTPSé€šä¿¡ã‚’è§£èªã™ã‚‹ã¨è©±é¡Œã«ãªã£ãŸ Thai Duong ã¨ Juliano Rizzo ã«ã‚ˆã‚‹BEASTæ”»æ’ƒã«ã¤ã„ã¦èª¿ã¹ãŸã®ã§è‡ªåˆ†ã®ç†è§£ã«ã¤ã„ã¦ã¾ã¨ã‚ã¦ãŠãã“ã¨ã«ã™ã‚‹ã€‚ å‚è€ƒæ–‡çŒ® Security impact of the Rizzo/Duong CBC "BEAST" attack - Educated Guesswork Tor and the BEAST SSL attack | Tor Blog ImperialViolet - Chrome and the BEAST æ”»æ’ƒå¯¾è±¡ã¯SSL 3.0/TLS 1.0ã®ãƒ–ãƒãƒƒã‚¯æš—å·ã®CBCãƒ¢ãƒ¼ãƒ‰ã§ã‚ã‚‹ã€‚RC4ã‚’ä½¿ç”¨ã—ã¦ã„ã‚‹å ´åˆã¯ã‚¹ãƒˆãƒªãƒ¼ãƒ æš—å·ãªã®ã§å½±éŸ¿ã‚’å—ã‘ãªã„ã€‚ çµè«–ã‹ã‚‰è¨€ãˆã°HTTPSã«å¯¾ã—ã¦åºƒç¯„å›²ã«ä½¿ãˆã‚‹æ”»æ’ƒã§ã¯ãªã•ãã†ã§ã‚ã‚‹ã€‚æ”»æ’ƒã‚’æˆåŠŸã•ã›ã‚‹ã«ã¯WebSocketã‚„Javaãªã©ã«ã‚ˆã£ã¦SSL/TL
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
BEASTæ”»æ’ƒã¯ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆå´å¯¾ç–ã§è§£æ±ºã™ã‚‹ã®ã‹
SSLã‚µãƒ¼ãƒãƒ¼è¨å®šã®ãƒ†ã‚¹ãƒˆç›®çš„ã§ä½¿ã£ã¦ã„ã‚‹äººã‚‚å¤šã„ã¨æ€ã† Qualus Security Labsã®è¨˜äº‹ https://community.qualys.com/blogs/securitylabs/2013/09/10/is-beast-still-a-threat ã§ã€SSL Checkerã‹ã‚‰BEASTè„†å¼±æ€§ã®åˆ¤å®š(TLS1.0ä»¥ä¸‹ã§CBCãƒ¢ãƒ¼ãƒ‰ã‚’ä½¿ã£ã¦ã„ã‚‹)ã‚’å¤–ã™ã€ã¨ã„ã†ã®ãŒæœ‰ã£ãŸã®ã§ãƒ¡ãƒ¢ã€‚ BEASTã¯æˆåŠŸã™ã‚‹ã¨æ•°åˆ†ã‹ã‚‰æ•°åç§’ç¨‹åº¦ã§ã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã®ã‚»ãƒƒã‚·ãƒ§ãƒ³ãŒè§£èªã•ã‚Œã‚‹ãŸã‚ã€éžå¸¸ã«å±é™ºãªã‚‚ã®ã¨è€ƒãˆã‚‰ã‚Œã¦ã„ã‚‹ï¼ˆorãŸï¼‰ã€‚ TLSv1.0ä»¥å‰ã®ã®CBCãƒ¢ãƒ¼ãƒ‰ã§ã¯ã€ã‚»ãƒƒã‚·ãƒ§ãƒ³ã‚’å†åˆ©ç”¨ã—ã¦ãƒªã‚¯ã‚¨ã‚¹ãƒˆã‚’é€ã‚‹éš›ã€æœ€å¾Œã«é€ä¿¡ã•ã‚ŒãŸæš—å·ãƒ–ãƒãƒƒã‚¯ãŒã€æ¬¡ã®HTTPãƒªã‚¯ã‚¨ã‚¹ãƒˆã®æœ€åˆã®ãƒ–ãƒãƒƒã‚¯ã®IVã¨ã—ã¦ä½¿ã‚ã‚Œã¦ã„ã‚‹ã€‚æ”»æ’ƒè€…ãŒé€ä¿¡æ¸ˆã¿ã®æœ€å¾Œã®æš—å·ãƒ–ãƒãƒƒã‚¯ã‚’å‚å—ã—ãŸå¾Œã§ã€ãƒªã‚¯ã‚¨ã‚¹ãƒˆã®å…ˆé ãƒ–ãƒãƒƒã‚¯ã«ã‚ãŸã‚‹å¹³
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
httpsã ã‹ã‚‰ã¨ã„ã†ã ã‘ã§å®‰å…¨ï¼Ÿèª¿ã¹ãŸã‚‰æ€–ããªã£ã¦ããŸSSLã®è©±!ï¼Ÿ - Qiita
Deleted articles cannot be recovered. Draft of this article would be also deleted. Are you sure you want to delete this article?
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
Attack of the week: RC4 is kind of broken in TLS
Update: Iâ€™ve addedÂ a link to a page at Royal Holloway describing the new attack. Listen, if youâ€™re using RC4 as your primary ciphersuite in SSL/TLS, now would be a great time to stop. Ok, thanks, are we all on the same page? No? I guess we need to talk about this a bit more. You see, these slides have been making the rounds since this morning. Unfortunately, they contain a long presentation aimed
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
SSL/TLSã®è„†å¼±æ€§ã‚’æ”»æ’ƒã™ã‚‹Rizzo/Duong CBC "BEAST" attack - ã†ã•ãŽæ–‡å¦æ—¥è¨˜
è©±é¡Œã®â€BEASTâ€ã§ã™ãŒã€Ekopartyã§ç™ºè¡¨ãŒã‚ã£ãŸã‚ˆã†ã§ã™ãã€‚ç™ºè¡¨è³‡æ–™ã‚„è«–æ–‡ãªã©ã¯å…¬é–‹ã•ã‚Œã¦ã„ãªã„ã®ã‹ãªã€‚ è¿½è¨˜ï¼šè«–æ–‡ã¯ã“ã¡ã‚‰ï¼šhttp://insecure.cl/Beast-SSL.rar Tor and the BEAST SSL attack | The Tor Blog Security impact of the Rizzo/Duong CBC "BEAST" attack - Educated Guesswork èªã‚€ã ã‘ã§ç–²ã‚ŒãŸã€‚BEASTã®æ‰‹æ³•ã¯å¤§æ–¹ã®äºˆæƒ³é€šã‚Šã£ã¦ã¨ã“ã‚ã‹ã€‚WebSocketä»¥å¤–ã®ç’°å¢ƒã§å®Ÿç¾ã™ã‚‹ã®ã¯é›£ã—ãã†ã§ã™ãã€‚
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
Security impact of the Rizzo/Duong CBC "BEAST" attack - Educated Guesswork
If you're familiar with network security and haven't been living under a rock you've probably seen the recent coverage of Rizzo and Duong's attack on SSL/TLS implementations. they've demoed the attack and information is starting to trickle out (the news articles above were written prior to release), we can begin evaluate the impact of this work. (See AGL's post on this). Unfortunately, there's no
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
Archived MSDN and TechNet Blogs
If you were looking for MSDN or Tech Net blogs, please know that MSDN and Tech Net blog sites have been retired, and blog content has been migrated and archived here. How to use this site Archived blogs are grouped alphabetically by the initial letter of the blog name. Select the initial letter from the TOC to see the full list of the blogs. You can also type the name of the blog or the title of the
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
Apacheã®SSLCipherSuiteã«RC4ã‚’è¨å®šã™ã¹ãã§ã¯ãªã„ - Qiita
Apacheã«é™ã‚‰ãªã„ãŒã€æš—å·åŒ–æ–¹å¼ã¨ã—ã¦RC4æš—å·ãŒæœ€å„ªå…ˆã«è¨å®šã•ã‚Œã¦ã„ã‚‹ã“ã¨ãŒã¾ã¾ã‚ã‚‹ã€‚ ã“ã‚Œã¯å¿…ãšã—ã‚‚ã„ã„ã¨ã¯è¨€ãˆãªã„ãƒ»ãƒ»ãƒ»ã®ã§ã€ãã®ç†ç”±ã‚’ã¾ã¨ã‚ã¦ã¿ãŸã€‚ ãã‚‚ãã‚‚RC4ãŒã‚ˆãè¨å®šã•ã‚Œã¦ã„ã‚‹ã®ã«ã¯ç†ç”±ãŒã‚ã‚‹ã€‚ éŽåŽ»BEASTã¨ã„ã†æ”»æ’ƒæ–¹æ³•ãŒç™ºè¦‹ã•ã‚ŒCBCæš—å·(Cipher Block Chainingï¼šä¸€å®šã®é•·ã•ã”ã¨ã«æš—å·åŒ–ã‚’è¡Œã†æ–¹å¼)ã¯å…¨éƒ¨å±ãªã„ï¼ï¼Ÿã¨ã„ã†æ„Ÿã˜ã«ãªã£ãŸã€‚ãã“ã§ç™»å ´ã—ãŸã®ãŒã‚¹ãƒˆãƒªãƒ¼ãƒ æš—å·ã®ä»£è¡¨æ ¼RC4ã§ã‚ã‚Šã€ã“ã‚Œã«è¨å®šã™ã‚Œã°ï¼¯ï¼«ã€ã¨ã„ã†æµã‚ŒãŒä»Šã«ã‚‚è‡³ã£ã¦ã„ã‚‹ã®ã ã€‚ BEASTæ”»æ’ƒã«ã¤ã„ã¦ ãŸã å½“æ™‚ã¨ã¯çŠ¶æ³ãŒå¤‰ã‚ã‚Šã€RC4ã‚’è¨å®šã™ã‚‹ã®ãŒæœ€é©ã¨ã¯è¨€ãˆãªããªã£ã¦ããŸã€‚ ç†ç”±1 RC4ã¯éžæŽ¨å¥¨ã¨ãªã£ãŸ ã¾ãšæœ‰æ¨©è€…ã«è¨´ãˆãŸã„ã®ã¯ã€ç¾åœ¨RC4ã¯è„†å¼±æ€§ãŒç™ºè¦‹ã•ã‚Œã€ã€Œé›»åæ”¿åºœã«ãŠã‘ã‚‹èª¿é”ã®ãŸã‚ã«å‚ç…§ã™ã¹ãæš—å·ã®ãƒªã‚¹ãƒˆï¼ˆCRYPTRECæš—å·ãƒªã‚¹ãƒˆï¼‰ã€ã«ã¦æŽ¨å¥¨ã•ã‚Œãªã„é‹ç”¨ç›£è¦–æš—å·ã®å¯¾è±¡ã«
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
TLS æš—å·åŒ–é€šä¿¡ã«å¯¾ã™ã‚‹æ”»æ’ƒã® Firefox ã¸ã®å½±éŸ¿ | Mozilla Japan ãƒ–ãƒã‚°
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
JVNDB-2011-002305 - JVN iPedia - è„†å¼±æ€§å¯¾ç–æƒ…å ±ãƒ‡ãƒ¼ã‚¿ãƒ™ãƒ¼ã‚¹
SSL ãƒ—ãƒãƒˆã‚³ãƒ« ãƒãƒ¼ã‚¸ãƒ§ãƒ³ 3.0 TLS ãƒ—ãƒãƒˆã‚³ãƒ« ãƒãƒ¼ã‚¸ãƒ§ãƒ³ 1.0 TLS 1.1 ãŠã‚ˆã³ TLS 1.2 ã¯ã€æœ¬è„†å¼±æ€§ã®å½±éŸ¿ã‚’å—ã‘ãªã„ã¨ã®ã“ã¨ã§ã™ã€‚ SSL ãŠã‚ˆã³ TLS ã‚’ä½¿ç”¨ã™ã‚‹è¤‡æ•°ã®ãƒ™ãƒ³ãƒ€è£½å“ãŒå½±éŸ¿ã‚’å—ã‘ã‚‹å¯èƒ½æ€§ãŒã‚ã‚Šã¾ã™ã€‚ Google GoogleÂ Chrome MozillaÂ Foundation MozillaÂ Firefox OperaÂ SoftwareÂ ASA Opera VMware VMwareÂ ESX 3.5 VMwareÂ ESX 4.0 VMwareÂ ESX 4.1 VMwareÂ vCenter 4.0Â (Windows) VMwareÂ vCenter 4.1Â (Windows) VMwareÂ vCenter 5.0Â (Windows) VMwareÂ VirtualCenter 2.5Â (Windows) ã‚¢ãƒƒãƒ—ãƒ« AppleÂ TV 4.0Â ã‹ã‚‰Â
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
SSL broken. (TLS 1.0 cryptographic attack that works. Not just fake certs.) | Hacker News
I happen to know the details of this attack since I work on Chrome's SSL/TLS stack.The linked article is sensationalist nonsense, but one should give the authors the benefit of the doubt because the press can be like that. Fundamentally there's nothing that people should worry about here. Certainly it's not the case that anything is 'broken'. But http://eprint.iacr.org/2006/136 sure looks like a r
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
Hackers break SSL encryption used by millions of sites
Researchers have discovered a serious weakness in virtually all websites protected by the secure sockets layer protocol that allows attackers to silently decrypt data that's passing between a webserver and an end-user browser. The vulnerability resides in versions 1.0 and earlier of TLS, or transport layer security, the successor to the secure sockets layer techno logy that serves as the internet's
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
https://josefsson.org/talks/secheads-tls-stream.pdf
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒ›ãƒ¼ãƒ« memo - 2011.09
ã€‹ ãƒ—ãƒ©ã‚¤ãƒã‚·ä¿è·å›£ä½“ãŒFacebookæ–°æ©Ÿèƒ½ã«ç•°è°ã€FTCã¸èª¿æŸ»è¦è«‹ (æ—¥çµŒ IT Pro, 9/30)ã€‚EPIC ã®è¦è«‹ã€‚ ã€‹ Operation Shady RATã®å…¨è²Œ (ãƒžã‚«ãƒ•ã‚£ãƒ¼) ã€‹ å›½å†…ã®æˆ¦é—˜æ©Ÿç”Ÿç”£ãŒ55å¹´ã¶ã‚Šã«é€”çµ¶ èˆªç©ºæ©Ÿç”£æ¥ç•ŒãŒè¦‹å®ˆã‚‹ï¼¦ï¼¸ï¼ˆæ¬¡æœŸä¸»åŠ›æˆ¦é—˜æ©Ÿï¼‰ã®è¡Œæ–¹ (é€±åˆŠãƒ€ã‚¤ãƒ¤ãƒ¢ãƒ³ãƒ‰, 9/30) é’æœ¨æ°ã«ã‚ˆã‚Œã°ã€ã€Œï¼¦-15å¾Œç¶™æ©Ÿã‚’é¸ã¶æ®µéšŽã§ã‚‚ã€æ—¥æœ¬ãŒèª¿é”å¯èƒ½ãªæˆ¦é—˜æ©Ÿã®é¡”ã¶ã‚Œã¯ç¾åœ¨ã¨å¤‰ã‚ã£ã¦ãŠã‚‰ãšã€ä»Šå›žã¨åŒã˜3æ©Ÿç¨®ãŒå€™è£œã«æŒ™ãŒã‚‹å¯èƒ½æ€§ãŒé«˜ã„ã€ã€‚ç´„200æ©ŸãŒé…å‚™ã•ã‚Œã¦ã„ã‚‹ï¼¦-15ã®å¾Œç¶™æ©Ÿã¨ãªã‚‹ã¨ãƒ“ã‚¸ãƒã‚¹ãƒãƒ£ãƒ³ã‚¹ã‚‚å¤§ããã€ä»®ã«ãã“ã¾ã§ã‚’ç¨ã‚“ã§ãƒãƒƒã‚ãƒ¼ãƒ‰ãƒ»ãƒžãƒ¼ãƒãƒ³ãŒï¼©ï¼°ã§æ—¥æœ¬ä¼æ¥ã«æœ‰åˆ©ãªææ¡ˆã‚’ã—ã¦ã„ã‚‹ã‚ˆã†ãªã‚‰ã€ï¼¦-35ã®ãƒãƒ£ãƒ³ã‚¹ãŒåºƒãŒã£ã¦ãã‚‹ã€‚ æ£ç›´ã€ç¾æ™‚ç‚¹ã§ãã‚Œã¯ãªã„ã¨æ€ã†ã‘ã©ãªã‚ã€‚ ã€‹ TOMOYO Linux 1.8.3 / AKARI 1.0.20 ãŒå…¬é–‹ã•ã‚Œã¾ã—ãŸã€‚
ra1gawa 2014/03/14
CBC

BEAST
ãƒªãƒ³ã‚¯
SSL/TLSã®è„†å¼±æ€§ã‚’æ”»æ’ƒã™ã‚‹â€BEASTâ€ã‚’é˜²ãä¿®æ£ã‚’ChromeãŒè¿½åŠ - ã†ã•ãŽæ–‡å¦æ—¥è¨˜
ä»Šé€±ã®Ekoparty security conference ã§ç™ºè¡¨ã•ã‚Œã‚‹äºˆå®šã®ã€SSL/TLSã«ã‚ˆã‚‹æš—å·åŒ–ã®è„†å¼±æ€§ã‚’æ”»æ’ƒã™ã‚‹PoC â€BEASTâ€ã®æ”»æ’ƒã‹ã‚‰ã®é˜²å¾¡ç–ã‚’Chromeãƒ–ãƒ©ã‚¦ã‚¶ãŒæè¼‰ã™ã‚‹ã‚ˆã†ã§ã™ã€‚ Googleã¯Chromeãƒ–ãƒ©ã‚¦ã‚¶ã®ã‚¢ãƒƒãƒ—ãƒ‡ãƒ¼ãƒˆã®æº–å‚™ãŒå®Œäº†ã—ã¦ã„ã‚‹ã‚ˆã†ã§ã€ã™ã§ã«é–‹ç™ºè€…ãƒãƒ¼ã‚¸ãƒ§ãƒ³ã«ã¯è¿½åŠ æ¸ˆã¿ã¨ã®ã“ã¨ã€‚ Google preps Chrome fix to slay SSL-attacking BEAST â€¢ The Register BEASTã¯ã€SSLã‚„TLSã«å¯¾ã—ã¦AESæš—å·ã«å¯¾ã™ã‚‹é¸æŠžå¹³æ–‡æ”»æ’ƒã‚’ä»•æŽ›ã‘ã¾ã™ã€‚å‰ã®å¹³æ–‡ãƒ–ãƒãƒƒã‚¯ã‚’æš—å·åŒ–ã—ãŸçµæžœã‚’ã€æ¬¡ã®ãƒ–ãƒãƒƒã‚¯ã®å¹³æ–‡ã«XORæ¼”ç®—ã—ã¦ã€ãã®çµæžœã«å¯¾ã—ã¦æš—å·åŒ–ã‚’è¡Œã†â€æš—å·æ–‡ãƒ–ãƒãƒƒã‚¯é€£éŽ–ãƒ¢ãƒ¼ãƒ‰(CBCï¼šCipher Block Chaining)â€ã«å¯¾ã—ã¦ã®æ”»æ’ƒã®ã‚ˆã†ã§ã™ã€‚ Chromeã¯ã“ã®æ”»æ’ƒã‚’é˜²ããŸã‚ã«æ”»æ’ƒè€…ãŒ
ra1gawa 2014/03/14
CBC

BEAST

chrome
ãƒªãƒ³ã‚¯
ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ ã‚µãƒ¼ãƒ“ã‚¹ï¼ˆNSSï¼‰
ãƒ‹ãƒ¥ãƒ¼ã‚¹ã‚°ãƒ«ãƒ¼ãƒ—ï¼š netscape.public.mozilla.crypto ãƒ¡ã‚¤ãƒ³ ãƒ†ã‚¯ãƒ‹ã‚«ãƒ« ã‚³ãƒ³ã‚¿ã‚¯ãƒˆï¼š Bob Relyea ç®¡ç†äººï¼šWan-Teh Chang ãƒãƒƒãƒˆãƒ¯ãƒ¼ã‚¯ ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ ã‚µãƒ¼ãƒ“ã‚¹ ï¼ˆNetwork Security Servicesï¼š NSSï¼‰ã¨ã¯ã€ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¼·åŒ–å¯èƒ½ãªã‚¯ãƒ©ã‚¤ã‚¢ãƒ³ãƒˆã‚„ã‚µãƒ¼ãƒã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã®ã‚¯ãƒã‚¹ãƒ—ãƒ©ãƒƒãƒˆãƒ•ã‚©ãƒ¼ãƒ é–‹ç™ºã‚’æ”¯æ´ã™ã‚‹ã‚ˆã†ã«è¨è¨ˆã•ã‚ŒãŸãƒ©ã‚¤ãƒ–ãƒ©ãƒªãƒ¼ã®ä¸€å¼ã§ã™ã€‚NSS ã¨å…±ã«ãƒ“ãƒ«ãƒ‰ã•ã‚ŒãŸã‚¢ãƒ—ãƒªã‚±ãƒ¼ã‚·ãƒ§ãƒ³ã¯ã€ SSL v2 ãŠã‚ˆã³ v3ã€ TLSã€ PKCS #5ã€ PKCS #7ã€ PKCS #11ã€ PKCS #12ã€ S/MIMEã€ X.509 v3 è¨¼æ˜Žæ›¸ã€ ãã®ä»–ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£è¦æ ¼ã‚’ã‚µãƒãƒ¼ãƒˆã—ã¾ã™ã€‚ã‚µãƒãƒ¼ãƒˆã•ã‚Œã¦ã„ã‚‹è¦æ ¼ã«ã¤ã„ã¦ã®è©³ç´°æƒ…å ±ã¯ã€NSS æ¦‚è¦³ ã‚’ã”è¦§ãã ã•ã„ã€‚ NSS ã¯ Mozill
ra1gawa 2014/03/14
CBC

BEAST

Mozilla

Firefox
ãƒªãƒ³ã‚¯
1 2 æ¬¡ã®ãƒšãƒ¼ã‚¸