[Wikimedia-l] Disinformation regarding perfect forward secrecy for HTTPS

James Salsman jsalsman at gmail.com
Sat Aug 3 03:09:43 UTC 2013


Anthony, padding in this context means adding null or random bytes to the
end of encrypted TCP streams in order to obscure their true length. The
process of adding padding is entirely independent of the choice of
underlying cipher.

In this case, however, we have been discussing perfect forward secrecy,
which is dependent on the particular cypher. ECDHE-RSA-RC4-SHA is an
example of a PFS cipher and TLS key exchange protocol choice widely
supported by Apache supporting PFS.

The English Wikipedia articles on these subjects are all mostly
start-class, so please try Google, Google Scholar, and WP:RX for more
information.


More information about the Wikimedia-l mailing list