Yahoo + iPhone = replay attacks

Thread: Yahoo + iPhone = replay attacks

Search this list only Search all lists
Yahoo + iPhone = replay attacks
United States	2007-07-19 17:54:27
A blog entry which claims that the proprietary "Push IMAP" protocol that Apple and Yahoo came up with is deeply flawed -- the entry states that the entire thing is vulnerable to trivial replay attacks. http://blog.dave. cridland.net/?p=32 Hat tip: Marshall Rose If true, this is yet more evidence for the ancient hypothesis that it is foolish to roll your own security protocols. Perry -- Perry E. Metzger perrypiermont.com ------------------------------------------------------------ --------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to majordomometzdowd.com

[1]