Log in or Sign up

Google Implements Forward Secrecy

Discussion in 'other security issues & news' started by MrBrian, Nov 23, 2011.

Thread Status:: Not open for further replies.

MrBrian Registered Member

Joined:

Feb 24, 2008

Posts:

6,032

Location:

USA

From http://threatpost.com/en_us/blogs/google-implements-forward-secrecy-112311:

[Google's] latest move focuses on long-term data security, putting to rest almost any concerns that hackers could store encrypted communications then use improved technology in the future to crack it and view the contents.
Click to expand...

MrBrian, Nov 23, 2011

#1
Hungry Man Registered Member

Joined:

May 11, 2011

Posts:

9,146

I'll be honest, while this is nice it was never a big deal. Keys are created for every session so at most what a hacker could do (after spending a LONG time cracking the key or managing to get their hands on a key) is access a single session.

Still, it's nice to know that they've thought ahead.

Hungry Man, Nov 23, 2011

#2
MrBrian Registered Member

Joined:

Feb 24, 2008

Posts:

6,032

Location:

USA

From Protecting data for the long term with forward secrecy:

Chrome, Firefox (all platforms) and Internet Explorer (Vista or later) support forward secrecy using elliptic curve Diffie-Hellman. Initially, only Chrome and Firefox will use it by default with Google services because IE doesn’t support the combination of ECDHE and RC4. We hope to support IE in the future.
Click to expand...

MrBrian, Nov 23, 2011

#3

Thread Status:: Not open for further replies.

This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.

Accept Learn More...