Comment by Empedocles99 - Hacker Neue

Empedocles99 Sep 1, 2011 parent

I thought the 40-bit keys were used due to cryptographic export restrictions, and not lack of randomness?

http://en.wikipedia.org/wiki/40-bit_encryption

Seems to agree with me.

oasisbob Sep 1, 2011

The authors didn't cite Netscape because the 40-bit key is too short, they cited it because the the PNRG in the SSL implementation was faulty.

They link to this page with more details: http://www.cs.berkeley.edu/~daw/papers/ddj-netscape.html

This item has no comments currently.

It looks like you have JavaScript disabled. This web app requires that JavaScript is enabled. Please enable JavaScript to use this site (or just go read Hacker News).