Safest ciphers to use with the BEAST? (TLS 1.0 exploit) I've read that RC4 is immune

security ssl tls exploit

Now that the BEAST is public knowledge, TLS 1.0 is NOT safe to use (nor is SSL 3.0). I have seen reports that the RC4 cipher is unaffected (and is widely supported). Is that true?

I know that TLS 1.1 is immune. But out of the 1,000,000 most popular SSL/TLS enabled websites, only a few (221) support TLS 1.1 or higher.

The exploit is restricted to browsers because it requires JavaScript or Browser Plugins via MITM. PayPal.com is vulnerable, as of this writing.


Solution 1:

Correct; RC4 is a stream cipher, and is not affected.

The flaw is in CBC message construction, so the ciphers using CBC (there's a bunch, but AES and 3DES are the most popular) are all affected.

Related

Akamai / CDN - How much do CDNs like akamai cost? [closed]
Third Party Wildcard Certificates for use with Microsoft NPS / RADIUS / PEAP
Can a virus spread through a network share used by an RDP connection?
Issues with ProxyPass and ProxyPassReverse when proxying to localhost and a different TCP port
Virtual Machine Host within Ubuntu Server
How can I tell who/what shutdown my CentOS VPS?
Number of logical processors per VM?
Windows Task Scheduler - Run Action when Process (EXE) is NOT running
How does Apache interpret multiple SSLRandomSeed sources
How to manually run application as "IIS APPPOOL\MyAppPool" user
How to copy many Scheduled Tasks between Windows Server 2008 machines?
How do I convince Dell blades to PXE Boot