.jpg)
.jpg)
[º¸¾È´º½º ±èÁö¾ð] SSL 3.0¿¡¼ º¸¾ÈÃë¾àÁ¡ÀÌ ¹ß°ßµÆ´Ù. À̹ø¿¡ ¹ß°ßµÈ Ãë¾àÁ¡Àº SSL 3.0ÀÇ CBC(Cipher Block Chaining) ¸ðµå¸¦ »ç¿ëÇÒ °æ¿ì Áß°£ÀÚ °ø°Ý(MITM)À» ÅëÇØ ¾ÏÈ£ÈµÈ µ¥ÀÌÅ͸¦ º¹È£ÈÇÒ ¼ö ÀÖ´Â Ãë¾àÁ¡(CVE-2014-3566)ÀÌ´Ù.
¿µÇâÀ» ¹Þ´Â ¹öÀüÀº SSL 3.0 ÇÁ·ÎÅäÄÝÀ» »ç¿ëÇÏ´Â ¾îÇø®ÄÉÀÌ¼Ç ¹× ½Ã½ºÅÛÀÌ´Ù.
ÀÌ¿¡ Ãë¾àÇÑ ¹öÀü »ç¿ëÀÚ´Â ¾îÇø®ÄÉÀÌ¼Ç ¹× ½Ã½ºÅÛ ¼³Á¤¿¡¼ SSL 3.0 Áö¿øÀ» ºñÈ°¼ºÈÇϰųª, SSL 3.0À» Áö¿øÇØ¾ß Çϴ ȯ°æÀÇ °æ¿ì TLS_FALLBACK_SCSV ÇÁ·ÎÅäÄÝ È®Àå±â´ÉÀ» »ç¿ëÇØ °ø°Ý¿¡ ´ëºñÇÒ ÇÊ¿ä°¡ ÀÖ´Ù.
Çѱ¹ÀÎÅͳÝÁøÈï¿ø ÃøÀº ¡°SSL 3.0Àº 1996³âµµ¿¡ °ø°³µÈ ¹öÀüÀ¸·Î ÀϺο¡¼ ÇÏÀ§ ȣȯ¼ºÀ» À§ÇØ Á¦°øÇÏ°í ÀÖÀ¸³ª º¸¾ÈÀÌ Ãë¾àÇϱ⿡ »ç¿ëÇÏÁö ¾Ê´Â °ÍÀÌ ÁÁ´Ù¡±°í ¹àÇû´Ù.
[¿ë¾î Á¤¸®]
¡¤SSL(Secure Socket Layer) : ³×Æ®¿öÅ© µ¥ÀÌÅ͸¦ ¾ÏÈ£ÈÇϱâ À§ÇØ »ç¿ëÇÏ´Â ÇÁ·ÎÅäÄݵéÀÇ ÁýÇÕ
¡¤CBC(Cipher Block Chaining) : ºí·Ï ¾ÏÈ£È ¾Ë°í¸®ÁòÀ» »ç¿ëÇÏ¿© °¡º¯ ±æÀÌÀÇ µ¥ÀÌÅ͸¦ ¾ÏÈ£ÈÇÏ´Â ¹æ½Ä
[±èÁö¾ð ±âÀÚ(boan4@boannews.com)]
<ÀúÀÛ±ÇÀÚ: º¸¾È´º½º(http://www.boannews.com/) ¹«´ÜÀüÀç-Àç¹èÆ÷±ÝÁö>
±èÁö¾ð±âÀÚ ±â»çº¸±â
[2024-11-22] 
.jpg)
.jpg)
.jpg)
.jpg)
