MD5 collision in X509 certificates

Ben Laurie ben at algroup.co.uk
Wed Mar 2 11:23:02 EST 2005


Dan Kaminsky wrote:
>     The x.509 cert collision is a necessary consequence of the earlier
> discussed prime/not-prime collision.  Take the previous concept, make
> both prime, and surround with the frame of an x.509 cert, and you get
> the new paper.

Actually, not - an RSA public key is not prime. Generating colliding 
public keys takes quite a bit more work.

Cheers,

Ben.

-- 
http://www.apache-ssl.org/ben.html       http://www.thebunker.net/

"There is no limit to what a man can do or how far he can go if he
doesn't mind who gets the credit." - Robert Woodruff

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com



More information about the cryptography mailing list