Unit

ScSSLExtensions

 

Description

The TTLSRenegotiationIndicationExtension class represents the renegotiation indication extension to cryptographically tie renegotiations to the TLS connections they are being performed over, thus preventing a man-in-the-middle attack.

SSL and TLS renegotiation are vulnerable to an attack in which the attacker forms a TLS connection with the target server, injects content of his choice, and then splices in a new TLS connection from a client.

 

To use this extension it's enough to create the TTLSRenegotiationIndicationExtension instance and add it to the TScSSLClient.ClientHelloExtensions list.

 

This extension is described in RFC 5746.

 

See Also

TTLSHelloExtension

 

SecureBridge Components, Copyright © 2007-2024 Devart. All Rights Reserved. Provide Feedback Visit Forum Request Support