{"id":478,"date":"2008-12-31T21:36:06","date_gmt":"2009-01-01T02:36:06","guid":{"rendered":"http:\/\/www.coresecuritypatterns.com\/blogs\/?p=478"},"modified":"2008-12-31T21:36:06","modified_gmt":"2009-01-01T02:36:06","slug":"exploiting-md5-collisions-and-creating-fake-ca-certificates","status":"publish","type":"post","link":"https:\/\/websecuritypatterns.com\/blogs\/2008\/12\/31\/exploiting-md5-collisions-and-creating-fake-ca-certificates\/","title":{"rendered":"Exploiting MD5 collisions and Creating Fake CA certificates."},"content":{"rendered":"<p>It&#8217;s been a while, MD5 has been known for its several weaknesses and multiple proven attack scenarios showing how it can be <a href=\"http:\/\/events.ccc.de\/congress\/2008\/\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft\" src=\"http:\/\/events.ccc.de\/congress\/2008\/wiki\/skins\/CCC\/header_wiki.jpg\" alt=\"\" width=\"475\" height=\"137\" \/><\/a>compromised &#8211; For those known reasons, a lot of us try our best to stay away from using MD5.  Last week at the  <a href=\"http:\/\/events.ccc.de\/congress\/2008\/\" target=\"_blank\">Chaos Communication Congress Conference &#8211; Berlin<\/a> a bunch of researchers disclosed this eye-raising <em><strong>MD5 collision exploit and how it can be used for creating a rogue CA certificate<\/strong><\/em> &#8211; particularly using a bunch of commercial CAs, couple of them you and I always considered them ;-(.<\/p>\n<h3><\/h3>\n<p>The researchers did a terrific job exposing the nitty-dritty details of the attack showing how to abuse MD5 collisions and explore creating fake CA certificates (..precisely fake).\u00a0 This demonstrates a huge vulnerability of using MD5 with SSL, digital signature, etc.<\/p>\n<h3><\/h3>\n<p> You may find the details of their work <a href=\"http:\/\/www.win.tue.nl\/hashclash\/rogue-ca\/\" target=\"_blank\">here<\/a> &#8230; and download their <a href=\"http:\/\/events.ccc.de\/congress\/2008\/Fahrplan\/events\/3023.en.html\" target=\"_blank\">presentations from 25C3<\/a> web site.<\/p>\n<h3><\/h3>\n<p>You may not be surprised,  the most popular OS and Linux OS  allow using MD5 checksum to check integrity of files and also couple of freeware SSL solutions still issues certificates with <strong>MD5withRSAEncryption<\/strong> by default &#8211; Here is a <a href=\"http:\/\/www.microsoft.com\/technet\/security\/advisory\/961509.mspx\">Microsoft Security advisory in response<\/a> ! For those curious, you would able to stay away from those known MD5 vulnerabilities by choosing SHA-1 or SHA-2  (for now !!)<\/p>\n","protected":false},"excerpt":{"rendered":"<p>It&#8217;s been a while, MD5 has been known for its several weaknesses and multiple proven attack scenarios showing how it can be compromised &#8211; For those known reasons, a lot of us try our best to stay away from using MD5. Last week at the Chaos Communication Congress Conference &#8211; Berlin a bunch of researchers disclosed this eye-raising MD5 collision&#8230; <a href=\"https:\/\/websecuritypatterns.com\/blogs\/2008\/12\/31\/exploiting-md5-collisions-and-creating-fake-ca-certificates\/\">Read more &raquo;<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[6,8,9],"tags":[57,62],"class_list":["post-478","post","type-post","status-publish","format-standard","hentry","category-main","category-pki-main","category-security","tag-pki-main","tag-security"],"jetpack_sharing_enabled":true,"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/posts\/478","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/comments?post=478"}],"version-history":[{"count":0,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/posts\/478\/revisions"}],"wp:attachment":[{"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/media?parent=478"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/categories?post=478"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/websecuritypatterns.com\/blogs\/wp-json\/wp\/v2\/tags?post=478"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}