Open spyd3r opened 5 years ago
Googling for "enveloping attack" because I red it in the ASVS brought me to this issue :D Also I'm not sure what a null cipher attack is and how to protect from it. Is it about cipher algorithm negotiation during the handshake of TLS or something?
what it is enveloping attack?