Logjam TLS vulnerability is academic, not catastrophic

June 5, 2015


Logjam is a new weakness in TLS that allows an attacker to downgrade the cryptography on a connection; it is similar to another recent on TLS calledFREAK. To help us understand why widespread panic is unnecessary, let’s look at what a practical attack would get the attacker, and what that attack would require.

An attacker leveraging Logjam could see all the data that the victim thought was protected by TLS.

Read More