PADDING-ORACLE-Vulnerability-POP3S/EN/Background

Aus Siwecos
Version vom 26. Oktober 2019, 13:03 Uhr von Siwebot (Diskussion | Beiträge) (Die Seite wurde neu angelegt: „The Padding-Oracle attack can be used by attackers to attack secured connections. It establishes a connection to the server…“)
(Unterschied) ← Nächstältere Version | Aktuelle Version (Unterschied) | Nächstjüngere Version → (Unterschied)
Wechseln zu: Navigation, Suche

The Padding-Oracle attack can be used by attackers to attack secured connections. It establishes a connection to the server and sends very specially prepared encrypted messages. These messages are almost correctly encrypted, but have errors in critical positions. A server that receives such a message must always reject these messages in the same way. An attacker evaluates the error messages sent and can use this information to partially decrypt the connection to the server, making the connection insecure.

Abgerufen von „https://www.siwecos.de/wiki/index.php?title=PADDING-ORACLE-Vulnerability-POP3S/EN/Background&oldid=12649