SSL Man-in-the-Middle Attacks

TCP/IP protocols have long been subject to man-in-the-middle (MITM) attacks, but the advent of SSL/TLS was supposed to mitigate that risk for web transactions by providing endpoint authentication and encryption. The advent of Dug Song's 'webmitm' in late 2000 demonstrated the feasibility of...
Peter Burkholder
February 1, 2002

All papers are copyrighted. No re-posting of papers is permitted