Re: "Certification Authorities are recommended to stop using MD5 altogether"

To: debian-security@lists.debian.org
Subject: Re: "Certification Authorities are recommended to stop using MD5 altogether"
From: Sam Morris <sam@robots.org.uk>
Date: Thu, 1 Jan 2009 14:52:49 +0000 (UTC)
Message-id: <[🔎] pan.2009.01.01.14.52.48@robots.org.uk>
References: <0812310232100.8102@somehost>

On Wed, 31 Dec 2008 02:39:53 +0100, Cristian Ionescu-Idbohrn wrote:

> http://www.win.tue.nl/hashclash/rogue-ca/
> 
> Could some skilled person comment on the article?
> 
> I noticed around 20 certificates distributed with the package
> ca-certificates have "Signature Algorithm: md5WithRSAEncryption". Reason
> to worry?

Nah. What we really need to do, is patch the crypto libs use the 
certificates in ca-certificates to disable the use of broken algorithms 
such as MD5.

But at the end of the day, unless you actually do OCSP validation of 
every single connection you make, you are already running the risk of 
being MitM'd.

And even then, you are basically relying on the CA companies to perform 
the task of validating the identities of certificate-holders, when they 
make a lot more money by simply rubber-stamping everything they see. :)

> Cheers,

Happy new year, and sleep well. ;)

--

Reply to:

Prev by Date: Re: Certification Authorities are recommended to stop using MD5 altogether
Next by Date: Re: "Certification Authorities are recommended to stop using MD5 altogether"
Previous by thread: Re: "Certification Authorities are recommended to stop using MD5 altogether"
Next by thread: Re: "Certification Authorities are recommended to stop using MD5 altogether"
Index(es):
- Date
- Thread