[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Cfrg] Fwd: [saag] X.509 certificate collision, via MD5 collisions

To: "'cfrg at ietf.org'" <cfrg at ietf.org>
Subject: [Cfrg] Fwd: [saag] X.509 certificate collision, via MD5 collisions
From: "David A. McGrew" <mcgrew at cisco.com>
Date: Tue, 1 Mar 2005 15:38:33 -0800
List-help: <mailto:cfrg-request@ietf.org?subject=help>
List-id: Crypto Forum Research Group <cfrg.ietf.org>
List-post: <mailto:cfrg@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@ietf.org?subject=unsubscribe>
Sender: cfrg-bounces at ietf.org

FYI. Comments welcome.

David

Begin forwarded message:

From: Russ Housley <housley at vigilsec.com>
Date: March 1, 2005 3:24:00 PM PST
To: saag at mit.edu, ietf-pkix at imc.org
Subject: [saag] X.509 certificate collision, via MD5 collisions
I have not had an opportunity to review this document yet, but the findings need to be shared with the whole Internet security community.

We announce a method for the construction of pairs of valid X.509 certificates in which the "to be signed" parts form a collision for the MD5 hash function. As a result the issuer signatures in the certificates will be the same when the issuer uses MD5 as its hash function.
http://eprint.iacr.org/2005/067
_______________________________________________
saag mailing list
saag at mit.edu
https://jis.mit.edu/mailman/listinfo/saag


_______________________________________________
Cfrg mailing list
Cfrg at ietf.org
https://www1.ietf.org/mailman/listinfo/cfrg

Prev by Date: Re: [saag] Re: [Cfrg] Re: universal MACs
Next by Date: [Cfrg] Colliding RFC 3161 time-stamp tokens based on MD5-collisions
Previous by thread: [Cfrg] Re: universal MACs
Next by thread: [Cfrg] Colliding RFC 3161 time-stamp tokens based on MD5-collisions
Index(es):
- Date
- Thread