Fix wording of ChangeLog and 3DES_REMOVE docs

commit: 22a8905686836b79db01363fc29c462c9dcd8cd2 [log] [tgz]
author: Andres Amaya Garcia <andres.amayagarcia@arm.com> Mon Nov 26 20:57:49 2018 +0000
committer: Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Fri Mar 01 10:21:11 2019 +0100
tree: 5f498a8efd7e0ce29e5f6711cb11a43e289d1671
parent: 4a512281eccdac959f1a62a3047111120768c198 [diff] [blame]
diff --git a/include/mbedtls/config.h b/include/mbedtls/config.h
index 131ef23..7f38ab9 100644
--- a/include/mbedtls/config.h
+++ b/include/mbedtls/config.h

@@ -696,6 +696,13 @@
  * to enable (some of) them with mbedtls_ssl_conf_ciphersuites() by including
  * them explicitly.
  *
+ * A man-in-the browser attacker can recover authentication tokens sent through
+ * a TLS connection using a 3DES based cipher suite (see "On the Practical
+ * (In-)Security of 64-bit Block Ciphers" by Karthikeyan Bhargavan and Gaëtan
+ * Leurent, see https://sweet32.info/SWEET32_CCS16.pdf). If this attack falls
+ * in your threat model or you are unsure, then you should keep this option
+ * enabled to remove 3DES based cipher suites.
+ *
  * Comment this macro to keep 3DES in the default ciphersuite list.
  */
 #define MBEDTLS_REMOVE_3DES_CIPHERSUITES
commit	22a8905686836b79db01363fc29c462c9dcd8cd2	[log] [tgz]
author	Andres Amaya Garcia <andres.amayagarcia@arm.com>	Mon Nov 26 20:57:49 2018 +0000
committer	Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com>	Fri Mar 01 10:21:11 2019 +0100
tree	5f498a8efd7e0ce29e5f6711cb11a43e289d1671
parent	4a512281eccdac959f1a62a3047111120768c198 [diff] [blame]