LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Weekly Edition

Return to the Security page

Recent Features

LWN.net Weekly Edition for May 24, 2012

A uTouch architecture introduction

LWN.net Weekly Edition for May 17, 2012

Tasting the Ice Cream Sandwich

Highlights from the PostgreSQL 9.2 beta

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Paper on SSH insecurity

[Posted June 21, 2002 by dave]

From: "Tadayoshi Kohno" <tkohno@cs.ucsd.edu>

As Wei Dai recently pointed out, the current SSH protocol is insecure (because of problems with way CBC mode is used).

In the paper

http://eprint.iacr.org/2002/078/

Mihir Bellare, Chanathip Namprempre, and I show how to provably fix the SSH protocol. We have placed a summary of our recommendations at

http://www-cse.ucsd.edu/users/tkohno/papers/SSH/sshadvice.html

We hope that our provable security results will be of use to the IETF SSH Working Group.

Yoshi

(Log in to post comments)

Paper on SSH insecurity

Posted Jun 22, 2002 12:38 UTC (Sat) by DeletedUser2205 ((unknown), #2205) [Link]

There are 2 versions of the SSH protocol.
Does this apply to SSHv1 or SSHv2 or both ?

Copyright © 2002, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds