[Bro-Dev] #462: topic/seth/ssl-binpac - core SSL/TLS analyzer work

Bro Tracker bro at tracker.bro-ids.org
Tue May 24 13:33:53 PDT 2011


#462: topic/seth/ssl-binpac - core SSL/TLS analyzer work
---------------------------+--------------------
 Reporter:  seth           |      Owner:
     Type:  Merge Request  |     Status:  new
 Priority:  Normal         |  Milestone:  Bro1.6
Component:  Bro            |    Version:
 Keywords:                 |
---------------------------+--------------------
 This is the core analyzer work minus the scripts which will be developed
 in the policy-scripts-new branch.

 * The core events have been reworked.  Less state is kept in the analyzer
 itself so that more can be done in policy scripts.
 * All certificates (including chained) are passed through to script-land
 as DER certificates and they are just strings in Bro.
 * A new BiF for doing certificate validation.
 * NotValidBefore and NotValidAfter dates extracted from certificates.
 * Lots of simplification to the core analyzer.

-- 
Ticket URL: <http://tracker.bro-ids.org/bro/ticket/462>
Bro Tracker <http://tracker.bro-ids.org/bro>
Bro Issue Tracker



More information about the bro-dev mailing list