In “48 Dirty Little Secrets Cryptographers Don’t Want You To Know,” Thomas Ptacek and Alex Balducci will walk you through all 48 challenges. New attacks are being discovered against TLS at a steady rate. Antoine Delignat-Lavaud will present three new attacks against HTTPS. The final one exploits vulnerabilities in HTTPS deployments to achieve the holy grail of HTTPS attacks: full server impersonation of several thousands of websites, including Microsoft, Apple, Twitter, and PayPal.”]
Source: https://www.darkreading.com/black-hat/black-hat-usa-2014-can-you-keep-a-secret/d/d-id/1279061