print Print
Logo: Stiftung Secure Information and Communication Technologies SIC Stiftung Secure Information and Communication Technologies SIC

iSaSiLk 5.107 released!

13/12/2017

Recently a new variant of the PKCS#1 attack of Daniel Bleichenbacher has been published (https://robotattack.org/). Although testing with the provided tool showed that iSaSiLk 5.106 was not vulnerable against this ROBOT (Return Of Bleichenbacher's Oracle Threat)  attack we decided to improve the Bleichenbacher attack countermeasure to make it even more (timing) resistent. This improved countermeasure is now available with the new iSaSiLk 5.107 library.

Furthermore iSaSiLk 5.107 adds support for the Application Layer Protocol Negotiation (ALPN) extension (RFC 7301) allowing to negotiate the application layer protocol within the TLS handshake.

Please look at the iSaSiLk product page and visit our download center to get the new versions.

Kind regards,
Your SIC/IAIK Java Security Team!


print Print