[16995] in cryptography@c2.net mail archive
Re: MD5 collision in X509 certificates
daemon@ATHENA.MIT.EDU (Ben Laurie)
Thu Mar 3 19:16:55 2005
X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Wed, 02 Mar 2005 16:23:02 +0000
From: Ben Laurie <ben@algroup.co.uk>
To: Dan Kaminsky <dan@doxpara.com>
Cc: Cryptography <cryptography@metzdowd.com>
In-Reply-To: <4225E357.6010405@doxpara.com>
Dan Kaminsky wrote:
> The x.509 cert collision is a necessary consequence of the earlier
> discussed prime/not-prime collision. Take the previous concept, make
> both prime, and surround with the frame of an x.509 cert, and you get
> the new paper.
Actually, not - an RSA public key is not prime. Generating colliding
public keys takes quite a bit more work.
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html http://www.thebunker.net/
"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
