Links

Ben Laurie blathering


Exponent 3: With Pictures!

Thomas Ptacek blogged about the exponent 3 exploit, with pictures!

He only describes the simpler form of the attack, but still, its a lucid piece.

And to answer anonymous’ query, Google Security is a group of people at Google who do, err, security.

1 Comment

  1. […] Ben Laurie and Matasano Chargen describe a significant¬†attack on RSA signature implementation (not the algorithm itself).¬† Quoting from Matasano: Bell Labs crypto shaolin Daniel Bleichenbacher disclosed a freaky attack on RSA signature implementations that may, under some common circumstances, break SSL/TLS. […]

    Pingback by Kim Cameron’s Identity Weblog » Openssl vulnerability — 11 Sep 2006 @ 17:29

RSS feed for comments on this post.

Sorry, the comment form is closed at this time.

Powered by WordPress