[Security] Rogue CAs

Ralph J.Mayer rmayer at vinotech.de
Wed Dec 31 10:32:55 CST 2008

> Again, this isn't correct. If the CCC team ever starts issuing false
> certificates

They just presented their talk at the Congress, they are not part of the

> for real, the browser manufacturers will just blacklist it. It's really quite
> straightforward.

That's NOT the problem.

What they showed is:
- predictable serialnumbers suck
- MD5 is weak enough to find a useable collision within a few days on a
  a cluster of 200 PS3s (if you dont own that much PS3s, go to Amazon

The weakness of MD5 is known since 2004! So they proofed, that this
attack not only works in theorie.

There are too many certificates out there that rely on MD5 and they
should be replaced asap since you can not trust them anymore.


More information about the Security mailing list