AnsweredAssumed Answered

Should the Sweet32 check be a potential vulnerability?

Question asked by Carl Song on May 3, 2017
Latest reply on Jul 28, 2017 by Mark Levi

Vulnerability QID 38657 - Birthday attacks against TLS ciphers with 64bit block size vulnerability (Sweet32) is listed as a confirmed vulnerability. However, it seems that the check is based solely on the supported cipher suites detected. One of the mitigations for this vulnerability is to implement a data size limit per unique session key. This mitigation would not be detected by the check logic and would lead to false positives. Should this check be potential instead?

Outcomes