[Bro-Dev] #462: topic/seth/ssl-binpac - core SSL/TLS analyzer work
Bro Tracker
bro at tracker.bro-ids.org
Tue May 24 13:33:53 PDT 2011
#462: topic/seth/ssl-binpac - core SSL/TLS analyzer work
---------------------------+--------------------
Reporter: seth | Owner:
Type: Merge Request | Status: new
Priority: Normal | Milestone: Bro1.6
Component: Bro | Version:
Keywords: |
---------------------------+--------------------
This is the core analyzer work minus the scripts which will be developed
in the policy-scripts-new branch.
* The core events have been reworked. Less state is kept in the analyzer
itself so that more can be done in policy scripts.
* All certificates (including chained) are passed through to script-land
as DER certificates and they are just strings in Bro.
* A new BiF for doing certificate validation.
* NotValidBefore and NotValidAfter dates extracted from certificates.
* Lots of simplification to the core analyzer.
--
Ticket URL: <http://tracker.bro-ids.org/bro/ticket/462>
Bro Tracker <http://tracker.bro-ids.org/bro>
Bro Issue Tracker
More information about the bro-dev
mailing list