Despite being more than 40 years old, RSA is still a widely used cryptographic algorithms. PKCS#1 v1.5, an old standard which defines how to use it in practice, is even present in current specifications (e.g. TLS up to TLS 1.2), although most of its implementations are naturally vulnerable to an attack devised by Daniel Bleichenbacher in 1998. To be able to assess the prevalence of such a vulnerability in various protocols, we are developing Wombat, one more Bleichenbacher attack toolkit.
Présenté lors de la conférence GreHack à Grenoble, France en novembre 2019BibTeX Présentation Projet sur GitLab Vidéo