This is our old Q&A Site. Please post any new questions and answers at ask.wireshark.org.

Is it possible to decrypt Connect Direct Secure Plus with Wireshark?

asked 23 Apr '13, 15:51

Steve%20Fenter's gravatar image

Steve Fenter
11334
accept rate: 0%


Although Connect Direct Secure Plus uses TLS, there is no decryption support for that protocol in Wireshark.

Apparently they use a variation of Diffie Hellman to establish a crypto key, which makes it impossible harder to decrypt the data stream, as there is no way to generate the required session key, unless either party (client or server) discloses that key.

From: http://www.commoncriteriaportal.org/files/epfiles/sterling-v37-sec-e.pdf

"STS is a Sterling Commerce, Inc. proprietary protocol that includes a variation of the basic Diffie-Hellman protocol"

Regards
Kurt

permanent link

answered 24 Apr '13, 04:09

Kurt%20Knochner's gravatar image

Kurt Knochner ♦
24.8k1039237
accept rate: 15%

Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×165
×8
×5
×4
×2

question asked: 23 Apr '13, 15:51

question was seen: 2,700 times

last updated: 24 Apr '13, 04:09

p​o​w​e​r​e​d by O​S​Q​A