This security advisory discusses how attackers can exploit the downgrade dance and break the cryptographic security of SSL 3.0.
b2ffe2b23e29fc61a2e99711e7ff799ee26f04addd8cccd1516efb84b8489efe
Browser Exploit Against SSL/TLS, or BEAST, is a proof of concept tool that demonstrates a weakness in the SSL protocol. It allows attackers to silently decrypt data that's passing between a webserver and an end-user browser.
8526928f509f97d7e0834f717c78107205e579fe4ff0afe98df28f0c90da1eca
These are slides from the Practical Padding Oracle Attack presentation given at BlackHat Europe 2010.
44d6bd6f34982348a4af9f4bd0fe7a99db3855f3ff6cb55230636fab6a2bbf7b
Flickr's API suffered from an API signature forgery vulnerability.
5ccd31c5ca0a4a2de399439bd373a24fdf78b60509f8b7a1c5a3ea0ac654b463