The TTLSRenegotiationIndicationExtension class represents the renegotiation indication extension to cryptographically tie renegotiations to the TLS connections they are being performed over, thus preventing a man-in-the-middle attack.

SSL and TLS renegotiation are vulnerable to an attack in which the attacker forms a TLS connection with the target server, injects content of his choice, and then splices in a new TLS connection from a client.


To use this extension it's enough to create the TTLSRenegotiationIndicationExtension instance and add it to the TScSSLClient.ClientHelloExtensions list.


This extension is described in RFC 5746.


See Also



SecureBridge Components, Copyright © 2007-2021 Devart. All Rights Reserved. Provide Feedback Visit Forum Request Support