[Bro] Subclassing from SSL Analyzer

Alec Waters Alec.Waters at dataline.co.uk
Thu Jun 18 06:38:54 PDT 2015


Even if you've got the key, isn't the analyser going to be stymied in the 
presence of Diffie-Hellman in the cipher suite? SSL decryption (with the 
server's key) works well enough when the client is using the server's public 
key to encrypt the pre-master secret, but the private key is of no use when DH 
is in play.

alec
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6089 bytes
Desc: not available
Url : http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20150618/8a77c359/attachment.bin 


More information about the Bro mailing list