Collaborate Disseminate
I sent a client hello indicating TLS1.3 support, and it contains a list of all ciphersuites that support TLS1.3, TLS1.2 and TLS1.1
And consider server negotiated TLS1.3 indicating serverHello.supported_versions=0304, but ciphersuite select… Continue reading server negotiating TLS1.3 but sent TLS1.2 ciphersuite
I sent a client hello indicating TLS1.3 support, and it contains a list of all ciphersuites that support TLS1.3, TLS1.2 and TLS1.1
And consider server negotiated TLS1.3 indicating serverHello.supported_versions=0304, but ciphersuite select… Continue reading server negotiating TLS1.3 but sent TLS1.2 ciphersuite
I am having a Handshake session of PSK_only mode in TLS1.3 , where I use PSK’s established out of band.
consider, client Hello is sent with the extensions of supported_versions, PreSharedKey, psk_key_exchange_modes
Q1)If server sends a Hel… Continue reading In TLS1.3 can the client hello have the extensions which were not sent as part of HelloRetryRequest
My intention is to transfer files between a computer and a cell phone in the same network. I have created a system consisting of two apps for this purpose (everyone should be able to use the apps): The one on the computer creates a Python … Continue reading Securing HTTP File Transfer over local network
My question is, if somebody, today, in 2024, sent a password or a credit card number to some random HTTP website just once, how likely is that password or credit card number to be found on a hacker site in the future?
Another way to ask th… Continue reading HTTP: how likely are you to be compromised by using it just once?
I’m using python-mbedtls library – https://github.com/Synss/python-mbedtls/tree/master
my goal is to create handshake with different cipher suites,
I’ve managed to do so with the given server and client files in the library – https://githu… Continue reading Define DH parametes in python-mbedtls
When I visit a particular site, foobar.com, I am being prompted for a client certificate, which is unexpected for this site.
I assumed there would be a Certificate Request message in the HTTPS handshake, so I fired up Wireshark 4.x and did… Continue reading Why is the browser being prompted for a client certificate without a Certificate Request in the handshake?
Do browsers save TLS 1.3 session tickets on the disk to resume a TLS session after the browser process has been killed and restarted?
Are there any glaring security risks of caching TLS 1.3 session tickets on the client side? I believe th… Continue reading Do browsers like FireFox, Chrome, Opera, and Tor store TLS 1.3 session tickets on the disk?
I am doing testing with some ethernet device, for which I use an own TLS implementation (using OpenSSL for the actual cryptographic functions). There are pre shared keys used. When I am connecting to the device using the cipher suite TLS_P… Continue reading Anlyzing PSK-TLS handshake (Handshake Finished record) in Wireshark
I want to configure a custom domain for open and click tracking in Amazon Simple Email Service (SES). However, I’ve encountered a limitation where Amazon SES only allows HTTPS domains for tracking link clicks, but it doesn’t support HTTPS … Continue reading What are the risk of using http when capturing open events on an email