Paper Reading Questions

For each paper, you should submit two text files via the Gradescope submission web site, as described below. The submission is due before lecture. (The Gradescope entry code for 6.5660 is 3JZ23X.)

Lecture 16

Two simple questions to make you think about this paper: 1) Why does the SSL 3.0 design accept SSL 2.0 connections? It is simpler to only accept SSL 3.0 connections, and it avoids the risk of rollback attacks described in Section 4.6. 2) The second figure of Section 4.3 shows the attack flow for deleting a change-cipher message. The fix requires an additional check. Where in the flow should SSL perform this check?