The researchers use a timing attack to break SSL

Lucky Thirteen: Breaking the TLS and DTLS Record Protocols.