Corpus ID: 3697345

Variants of Bleichenbacher's Low-Exponent Attack on PKCS#1 RSA Signatures

@inproceedings{Khn2008VariantsOB,
  title={Variants of Bleichenbacher's Low-Exponent Attack on PKCS#1 RSA Signatures},
  author={Ulrich K{\"u}hn and A. Pyshkin and E. Tews and R. Weinmann},
  booktitle={Sicherheit},
  year={2008}
}

Ulrich Kühn, A. Pyshkin, +1 author R. Weinmann
Published in Sicherheit 2008
Computer Science

We give three variants and improvements of Bleichenbacher’s low-exponent attack from CRYPTO 2006 on PKCS#1 v1.5 RSA signatures. For each of these three variants the fake signature representatives are accepted as valid by a flawed implementation. Our attacks work against much shorter keys as Bleichenbacher’s original attack, i.e. even for usual 1024 bit RSA keys. The first two variants can be used to break a certificate chain for vulnerable implementations, if the CA uses a public exponent of 3… Expand

Share This Paper

7 Citations

Highly Influential Citations

2

Background Citations

3

Methods Citations

2

Topics from this paper

On the security of authentication protocols on the web. (La sécurité des protocoles d'authentification sur leWeb)

Antoine Delignat-Lavaud
Computer Science
2016

1
PDF

Analyzing Semantic Correctness with Symbolic Execution: A Case Study on PKCS#1 v1.5 Signature Verification

S. Y. Chau, M. Yahyazadeh, Omar Chowdhury, Aniket Kate, N. Li
Computer Science
NDSS
2019

1
Highly Influenced
PDF

Proving the TLS Handshake Secure (as it is)

K. Bhargavan, C. Fournet, Markulf Kohlweiss, A. Pironti, P. Strub, Santiago Zanella Béguelin
Computer Science
IACR Cryptol. ePrint Arch.
2014

80
PDF

Web PKI: Closing the Gap between Guidelines and Practices

Antoine Delignat-Lavaud, M. Abadi, A. Birrell, Ilya Mironov, Ted Wobber, Yinglian Xie
Computer Science
NDSS
2014

27
PDF

MEFORMA Security Evaluation Methodology - A Case Study

Ernö Jeges, Balázs Berkes, Balázs Kiss, G. Eberhardt
Computer Science
PECCS
2014

2
PDF

THE PURDUE UNIVERSITY GRADUATE SCHOOL STATEMENT OF DISSERTATION APPROVAL

A. Reibman, Fengqing M Zhu, +7 authors Shuo Han
2017

Highly Influenced
PDF

Breaking Mobile Firmware Encryption through Near-Field Side-Channel Analysis

Aurélien Vasselle, P. Maurine, Maxime Cozzi
Computer Science
ASHES@CCS
2019

References

SHOWING 1-10 OF 15 REFERENCES

SORT BY

TWENTY YEARS OF ATTACKS ON THE RSA CRYPTOSYSTEM

D. Boneh
Computer Science
1999

606
PDF

Collision-Resistant Hashing: Towards Making UOWHFs Practical

M. Bellare, P. Rogaway
Computer Science, Mathematics
CRYPTO
1997

245
PDF

PKCS # 1 : RSA Encryption Standard

A. Bosselaers
1991

31

RSA/SHA-1 SIGs and RSA KEYs in the Domain Name System (DNS)

D. Eastlake
Computer Science, Engineering
RFC
2001

45
PDF

Bleichenbacher's RSA signature forgery based on implementation error. Post to the IETF OpenPGP mailing list

Bleichenbacher's RSA signature forgery based on implementation error. Post to the IETF OpenPGP mailing list
2006

Bleichenbacher’s RSA signature forgery based on implementation error

Post to the IETF OpenPGP mailing list, August
2006

GNUTLS-SA-2006-4 vulnerability report

Post to the gnutls-dev mailing list, September
2006

GNUTLS-SA-2006-4 vulnerability report. Post to the gnutls-dev mailing list

GNUTLS-SA-2006-4 vulnerability report. Post to the gnutls-dev mailing list
2006

Re: Why the exponent 3 error happened

Post to cryptography mailing list, September
2006

Re: Why the exponent 3 error happened. Post to cryptography mailing list

Re: Why the exponent 3 error happened. Post to cryptography mailing list
2006