This is all my personal point of view. INRIA published an official press release (no longer available on-line).

On July 14, Hal posted his SSL challenge: a record of a "secure" Netscape session encrypted with the RC4-128-EXPORT-40 algorithm.

I succeeded in cracking the challenge, but I was only the second one to find the key and read the contents of his session.

If you're a journalist, be sure to read my virtual press conference. If you have more questions, feel free to send me some e-mail:

This is a more-or-less chronological account of what happened:

Related topics

Cute quote:
"Just remember, in 10 years no one will care. In fact most people probably don't care right now."
-- Conrad E. Muller