[110287] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Security team successfully cracks SSL using 200 PS3's and MD5 flaw.

daemon@ATHENA.MIT.EDU (Rodrick Brown)
Fri Jan 2 09:04:41 2009

Date: Fri, 2 Jan 2009 09:04:26 -0500
From: "Rodrick Brown" <rodrick.brown@gmail.com>
To: "nanog@nanog.org" <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org

A team of security researchers and academics has broken a core piece
of Internet technology. They made their work public at the 25th Chaos
Communication Congress in Berlin today. The team was able to create a
rogue certificate authority and use it to issue valid SSL certificates
for any site they want. The user would have no indication that their
HTTPS connection was being monitored/modified.

http://hackaday.com/2008/12/30/25c3-hackers-completely-break-ssl-using-200-ps3s/
http://phreedom.org/research/rogue-ca/

--
[ Rodrick R. Brown ]
http://www.rodrickbrown.com http://www.linkedin.com/in/rodrickbrown


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[110287] in North American Network Operators' Group

Security team successfully cracks SSL using 200 PS3's and MD5 flaw.

daemon@ATHENA.MIT.EDU (Rodrick Brown)Fri Jan 2 09:04:41 2009

daemon@ATHENA.MIT.EDU (Rodrick Brown)
Fri Jan 2 09:04:41 2009