[Cryptography] What faults would you inject to test crypto mechanisms/protocols?
Viktor Dukhovni
cryptography at dukhovni.org
Tue May 13 10:28:16 EDT 2014
On Tue, May 13, 2014 at 05:03:25PM +1200, Peter Gutmann wrote:
> SSH and SSL/TLS:
>
> Wrong certificate/key
This one further refines into a lot of sub-cases, having to do with
chain validity, when the certificate is verified via a "trust-anchor".
Many DANE implementations I've seen fail to check that there is a
properly linked chain from the leaf to the root. This matters with
DANE certificate usage 2, where the chain is not otherwise also
validated by PKIX. Such implementations find a matching trust-anchor
in the server's "certificate message" and call the whole thing good!
--
Viktor.
More information about the cryptography
mailing list