[44953] in cryptography@c2.net mail archive

home help back first fref pref prev next nref lref last post

RE: [cryptography] Re: Why the exponent 3 error happened:

daemon@ATHENA.MIT.EDU (Kuehn, Ulrich)
Wed Sep 20 18:34:54 2006

X-Original-To: cryptography@metzdowd.com
X-Original-To: cryptography@metzdowd.com
Date: Wed, 20 Sep 2006 15:10:05 +0200
In-Reply-To: <0E4B6517-9862-44A6-BD9C-2D23160C4B4B@cdc.informatik.tu-darmstadt.de>
From: "Kuehn, Ulrich" <Ulrich.Kuehn@telekom.de>
To: <weinmann@cdc.informatik.tu-darmstadt.de>, <eay@pobox.com>
Cc: <pychkine@cdc.informatik.tu-darmstadt.de>,
	<e_tews@cdc.informatik.tu-darmstadt.de>, <cryptography@metzdowd.com>

=20
> From: Ralf-Philipp Weinmann=20
> [mailto:weinmann@cdc.informatik.tu-darmstadt.de]=20
[...]
> Unfortunately we only found out that there has been prior art=20
> by Yutaka Oiwa et al. *AFTER* we successfully forged a=20
> certificate using this method (we being Andrei Pyshkin, Erik=20
> Tews and myself).
>=20
> The certificate we forged however adheres to the padding=20
> specifications unlike the one by Yutaka Oiwa that Simon=20
> Josefsson forwarded to the list a couple of days ago:
>=20
> -----BEGIN CERTIFICATE-----
> MIICgzCCAWugAwIBAgIBFzANBgkqhkiG9w0BAQUFADBoMQswCQYDVQQGEwJVUzEl
> MCMGA1UEChMcU3RhcmZpZWxkIFRlY2hub2xvZ2llcywgSW5jLjEyMDAGA1UECxMp
> U3RhcmZpZWxkIENsYXNzIDIgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwHhcNMDYw
> ODE5MTY1MTMwWhcNMDYxMDE4MTY1MTMwWjARMQ8wDQYDVQQDEwZIYWNrZXIwgZ8w
> DQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAKSu6ChWttBsOpaBrYf4PzyCGNe6DuE7
> rmq4CMskdz8uiAJ3wVd8jGsjdeY4YzoXSVp+9mEF6XqNgyDf8Ub3kNgPYxvJ28lg
> QVpd5RdGWXHo14LWBTD1mtFkCiAhVlATsVNI/tjv2tv7Jp8EsylbDHe7hslA0rns
> Rr2cS9bvpM03AgMBAAGjEzARMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQEF
> BQADggEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
> AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADLL/Up63HkFWD15INcW
> Xd1nZGI+gO/whm58ICyJ1Js7ON6N4NyBTwe8513CvdOlOdG/Ctmy2gxEE47HhEed
> ST8AUooI0ey599t84P20gGRuOYIjr7c=3D
> -----END CERTIFICATE-----
>=20
> Broken implementations can successfully verify it using the=20
> Starfield Class 2 Certification Authority:
>=20

I tried to parse and verify this certificate using openssl's asn1parse =
command. However, I get an error:

Error in encoding
7469:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too =
long:asn1_lib.c:150:

I am using openssl version 0.9.8c as of Sep 05, 2006 (Linux/Debian =
system).

Any ideas what I am doing wrong?

Cheers,
Ulrich


---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com

home help back first fref pref prev next nref lref last post