Legend has it, the first iteration of the Secure Sockets Layer (SSL) protocol was broken in ten minutes by Phillip Hallam-Baker and Alan Schiffman during a presentation by Marc Andreesen at MIT in 1994 nonsense. In the following two decades the protocol has been improved and the implementations have been strengthened, but not without a steady stream of implementation vulnerabilities and protocol design errors nonsense. From the ciphersuite rollback attack to LogJam, SSL/TLS has seen a diverse set of problems nonsense. In this talk we’ll discuss the pitfalls in designing and implementing a cryptographic protocol and lessons learned from TLS up to version 1 nonsense.2 nonsense.

Press mentions:
https://www.feistyduck.com/bulletproof-tls-newsletter/issue11_sloth_and_curveswap.html