[146659] in cryptography@c2.net mail archive
Re: [Cryptography] People should turn on PFS in TLS (was Re: Fwd:
daemon@ATHENA.MIT.EDU (Daniel Veditz)
Fri Sep 6 13:17:38 2013
X-Original-To: cryptography@metzdowd.com
Date: Fri, 06 Sep 2013 10:15:40 -0700
From: Daniel Veditz <dveditz@mozilla.com>
To: cryptography@metzdowd.com
In-Reply-To: <7d81a461df914d1e64646698d073d5a4@mail.sxpert.org>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
This is a cryptographically signed message in MIME format.
--===============1933286658203849996==
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha1; boundary="------------ms020003000300000505000006"
This is a cryptographically signed message in MIME format.
--------------ms020003000300000505000006
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
On 9/6/2013 9:52 AM, Rapha=C3=ABl Jacquot wrote:
> To meet today=E2=80=99s PCI DSS crypto standards DHE is not required.
PCI is about credit card fraud. Mastercard/Visa aren't worried that
criminals are storing all your internet purchase transactions with the
hope they can crack it later; if the FBI/NSA want your CC number they
can get it by asking.
-Dan Veditz
--------------ms020003000300000505000006
Content-Type: application/pkcs7-signature; name="smime.p7s"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="smime.p7s"
Content-Description: S/MIME Cryptographic Signature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--------------ms020003000300000505000006--
--===============1933286658203849996==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
--===============1933286658203849996==--
