[VOIPSEC] Why a secure keyechange for media encryption?
Michael Prochaska
tm021090 at fh-stpoelten.ac.at
Mon May 1 16:15:50 CDT 2006
Hadriel Kaplan schrieb:
> Hmm, I'm still not clear what you're referring to. Presumably you mean
> before the TLS connection is secure, that a MITM can become a TLS hop
> between each "end"? Because after that the only things I know of a MITM can
> do is bring the connection down or jam it. (not that I'm the tls guru at my
> company, but I talk to them a lot)
a MITM can share the keys with both TLS end points and they have no
chance to detect him. if there is a third person (the CA) this cannot
happen.
regards,
michael
More information about the Voipsec
mailing list