Timing based static (EC)DH key recovery #681
Labels
complex
Issues that require good knowledge of tlsfuzzer internals
enhancement
new feature to be implemented
help wanted
new test script
will require creation of a new connection script
Projects
While most servers use an ECDH or FFDH key just once, some protocols, like ETS (formerly known as eTLS) suggest that servers should use a static DH key share.
We should add a test to see if the timing of server responses doesn't depend on client key shares.
The text was updated successfully, but these errors were encountered: