Re: Security advisory for YubiKey 4: RSA generation broken

To: Yves-Alexis Perez <corsac@debian.org>, debian-project@lists.debian.org
Cc: keyring-maint@debian.org
Subject: Re: Security advisory for YubiKey 4: RSA generation broken
From: Christian Seiler <christian@iwakd.de>
Date: Mon, 16 Oct 2017 21:38:02 +0200
Message-id: <[🔎] 8deae4d5-9184-6025-74e5-90f43740a41b@iwakd.de>
In-reply-to: <[🔎] 1508181199.17141.125.camel@debian.org>
References: <[🔎] 16f69a34-1ea6-81df-c47d-1920128b3a97@iwakd.de> <[🔎] 1508181199.17141.125.camel@debian.org>

On 10/16/2017 09:13 PM, Yves-Alexis Perez wrote:
> On Mon, 2017-10-16 at 21:06 +0200, Christian Seiler wrote:
>> Unfortunately, as far as I understand it, there's no easy method for
>> detecting these kinds of broken keys without actually attempting to
>> factorize them - and while that's feasible (hence the vulnerability)
>> it is still quite expensive - so there is currently no easy method of
>> scanning through the Debian keyring for affected keys.
> 
> Actually that's wrong, the generation process leaves “fingerprints” which can
> be used to identify keys. See for example:
> 
> https://keychest.net/roca
> https://github.com/crocs-muni/roca
> 
> These tools have been used to identify three vulnerable (sub)keys in the
> Debian keyring (this is already been taken care of).

Oh, fantastic, thanks!

Regards,
Christian

Reply to:

References:
- Security advisory for YubiKey 4: RSA generation broken
  - From: Christian Seiler <christian@iwakd.de>
- Re: Security advisory for YubiKey 4: RSA generation broken
  - From: Yves-Alexis Perez <corsac@debian.org>

Prev by Date: Re: Security advisory for YubiKey 4: RSA generation broken
Next by Date: Re: Security advisory for YubiKey 4: RSA generation broken
Previous by thread: Re: Security advisory for YubiKey 4: RSA generation broken
Next by thread: Re: Security advisory for YubiKey 4: RSA generation broken
Index(es):
- Date
- Thread