DROWN: Breaking TLS Using SSLv2
USENIX Security Symposium, pp. 689-706, 2016.
We present DROWN, a novel cross-protocol attack on TLS that uses a server supporting SSLv2 as an oracle to decrypt modern TLS connections. We introduce two versions of the attack. The more general form exploits multiple unnoticed protocol flaws in SSLv2 to develop a new and stronger variant of the Bleichenbacher RSA padding-oracle attack....More
Full Text (Upload PDF)
PPT (Upload PPT)