<div dir="ltr"><div><div><div><div><div>Hi Alan,<br><br>may I suggest to check the ciphers that are active on your browser:<br><a href="https://www.ssllabs.com/ssltest/viewMyClient.html">https://www.ssllabs.com/ssltest/viewMyClient.html</a><br>
</div>And provide the Ciphers you get back from <a href="http://ssllabs.com">ssllabs.com</a>.<br></div><div>(This is the expected standard for Chrome 34: <a href="https://www.ssllabs.com/ssltest/viewClient.html?name=Chrome&version=34&platform=OS%20X">https://www.ssllabs.com/ssltest/viewClient.html?name=Chrome&version=34&platform=OS%20X</a>)<br>
</div><div><br></div><div>According to ssllabs, the server '<span class=""><a href="http://bettercrypto.org">bettercrypto.org</a></span>' should choose: <table class=""><tbody><tr><td class="" width="180"><a href="https://www.ssllabs.com/ssltest/viewClient.html?name=Chrome&version=34&platform=OS%20X">Chrome 34 / OS X</a>
                                                 <span class=""><font color="green">R</font></span>                </td>
                
                                                
                <td class="" width="60">
                                <font color="green">TLS 1.2</font>
                                </td>
                
                <td class=""><span style="font-size:11px">
                TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 (<code>0x9e</code>)
                 <span class="">
                                <span class="">FS</span>
                                </span></span></td></tr></tbody></table></div><br></div>from the ciphers that your browser supports.<br><br></div>Kind regards <br></div>Torsten <br><div><div><div><div class="gmail_extra"><br><br><div class="gmail_quote">
2014-07-08 11:06 GMT+02:00 Aaron Zauner <span dir="ltr"><<a href="mailto:azet@azet.org" target="_blank">azet@azet.org</a>></span>:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">
Hi Alan,<br>
<br>
Alan Orth wrote:<br>
> Thanks for the explanation, Pepi and Aaron.  The choices seem reasonable<br>
> now that you explained the logic.<br>
Short update on that; I asked Adam Langley from Google via Twitter<br>
yesterday why Chrome does not support a stronger HMAC. He pointed out<br>
that AES-CBC mode is still susceptible to the Lucky13 Attack, which I -<br>
to be honest - totally forgot about.  So your concern is valid.<br>
<br>
What I don't understand is why your Chrome did not negotiate for<br>
AES-GCM. On which platform are you testing this (OS and architecture)?<br>
<span class=""><font color="#888888"><br>
Aaron<br>
<br>
</font></span><br>_______________________________________________<br>
Ach mailing list<br>
<a href="mailto:Ach@lists.cert.at">Ach@lists.cert.at</a><br>
<a href="http://lists.cert.at/cgi-bin/mailman/listinfo/ach" target="_blank">http://lists.cert.at/cgi-bin/mailman/listinfo/ach</a><br>
<br></blockquote></div><br></div></div></div></div></div>