picture of tbs certificates
picture of tbs certificates
Our products range

20150303 - Freak attack

On Tuesday, March 3, 2015, researchers announced a new SSL/TLS vulnerability called the FREAK attack. It allows an attacker to intercept HTTPS connections between vulnerable clients and servers and force them to use weakened encryption, which the attacker can break to steal or manipulate sensitive data. This site is dedicated to tracking the impact of the attack and helping users test whether they’re vulnerable.* <br /><br />*Extract from the site

There are 2 families of risk:

Regarding the server

  • do not use weak cipher (export)
    «Servers that accept RSA_EXPORT cipher suites put their users at risk»
  • ciphers recommanded by TBS INTERNET on Apache and unix products are safe
  • regarding the other servers, such as Microsoft, it is difficult and even impossible to change that

Regarding the client

External links