Bug #400: secp192r1 is accepted in TLS 1-2 handshake - Open eCard - Open eCard Development Center

Actions

Copy link

Bug #400

closed

secp192r1 is accepted in TLS 1-2 handshake

Added by Hans-Martin Haase almost 9 years ago. Updated almost 9 years ago.

Status:

Rejected

Priority:

Normal

Assignee:

Target version:

1.1.0

Start date:

07/03/2015

Due date:

% Done:

Estimated time:

Reviewer:

Build Version:

Description

If the used cipher is TLS_DHE_RSA_WITH_AES_* and the elliptic curve is secp192r1 which is not allowed according to BSI-TR03116 or BSI-TR02102-2 the handshake is completed without problems.

History
Notes

Actions

Copy link

Updated by Hans-Martin Haase almost 9 years ago

The TLS version used by the tests was 1.2

Actions

Copy link

Updated by Tobias Wich almost 9 years ago

Status changed from New to Rejected

Test is wrong. ECDHE and ECDSA must be used in order to use EC crypto.

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Open eCard

Bug #400

secp192r1 is accepted in TLS 1-2 handshake

Updated by Hans-Martin Haase almost 9 years ago

Updated by Tobias Wich almost 9 years ago