RSA Signature Forgery Still Effective After 10 Years π΅οΈββοΈ
A decade after Bleichenbacher's attack, RSA signature forgery remains feasible, revealed through dynamic symbolic execution analysis.
Black Hat
849 views β’ Jan 15, 2020
About this video
Our investigation leverages dynamic symbolic execution to systematically analyze the signature verification logic in different implementations. We have released our toolchain and relevant artifacts. This research has resulted in 6 new CVEs (3 high and 3 medium severity) being assigned, and vendors were notified to harden their signature verification code. This briefing will conclude with a discussion on why such flaws happened and how to avoid similar mistakes.
By: Sze Yiu Chau
Full Abstract & Presentation Materials: https://www.blackhat.com/us-19/briefings/schedule/#a-decade-after-bleichenbacher--rsa-signature-forgery-still-works-16143
By: Sze Yiu Chau
Full Abstract & Presentation Materials: https://www.blackhat.com/us-19/briefings/schedule/#a-decade-after-bleichenbacher--rsa-signature-forgery-still-works-16143
Video Information
Views
849
Likes
14
Duration
24:06
Published
Jan 15, 2020
Related Trending Topics
LIVE TRENDSRelated trending topics. Click any trend to explore more videos.