[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

X.509 certificate collision, via MD5 collisions

To: saag@xxxxxxx, ietf-pkix@xxxxxxx
Subject: X.509 certificate collision, via MD5 collisions
From: Russ Housley <housley@xxxxxxxxxxxx>
Date: Tue, 01 Mar 2005 18:24:00 -0500
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

I have not had an opportunity to review this document yet, but the findingsneed to be shared with the whole Internet security community.

We announce a method for the construction of pairs of valid X.509certificates in which the "tobe signed" parts form a collision for the MD5 hash function. As a resultthe issuer signaturesin the certificates will be the same when the issuer uses MD5 as its hashfunction.


http://eprint.iacr.org/2005/067

Follow-Ups:
- Re: [saag] X.509 certificate collision, via MD5 collisions
  - From: Paul Hoffman

Prev by Date: Re: One final week of Last Call for SCVP
Next by Date: Re: Comments to SCVP ID 17
Previous by thread: Re: One final week of Last Call for SCVP
Next by thread: Re: [saag] X.509 certificate collision, via MD5 collisions
Index(es):
- Date
- Thread