Freak Attack – Surprised? No. Worried? A little. , (Wed, Mar 4th)

There has been some press surrounding the SSL issue published recently dubbed Freak. “>1 and other sites, but what does it really mean?

The issue relates to the use of Export Ciphers (the crypto equivalent of keeping the good biscuit yourself and giving the smaller broken one to your little brother or sister). The Export Ciphers were used as the allowed ciphers for non US use. The ciphersare part of OpenSSL and the researchers2 have identified a method of forcing the exchange between a client and server to use these weak ciphers, even if the cipher suite is not officially supported3. “>)attack. When you do aMITMattack you have full control over the connection anyway, so why bother decrypting anything?However, if Im reading and interpreting the examples correctly (kind of hoping Im wrong), it looks like this particular attack solves one challenge that a MITM has. For HTTPS intercept you usually generate a new certificate with the information of the site and resign the certificate before presenting it to the client. Whenever you present this newly signed certificatethe client receives an error message stating that the certificate does not match the expected certificate for the site. From the vids2 it looks like this attack could fix that particular problem. So now when you perform a MITM attack you retain the original certificate and the user is none the wiser. This could open up a whole new avenue of attacks against clients and potentially simplify something that was quite difficult to do.

What is the impact to organisations? Well it is quite possible that your sites will be impersonated and there wont be much that can be done about it and you may not even know that your customers are being attacked. To prevent your site from being used in this attack youll need to patch openSLL4 (yes again). This issue will remainuntil systems have been patched and updated, not just servers, but also client software. Client software should be updated soon(hopefully), but there will no doubt be devices that will be vulnerable to this attack for years to come (looking at you Android).

Matthew Green in his blog3describes the attack well and he raises a very valid point. Backdoors will always come back to bite.

The researchers have set up a site with more info5.


Mark H “>(Thanks Ugo for bringing it to our attention).


2 -
4 –
5 -

(c) SANS Internet Storm Center. Creative Commons Attribution-Noncommercial 3.0 United States License.

Reposted from SANS. View original.