[cryptography] Non-governmental exploitation of crypto flaws?
solar at openwall.com
Sun Nov 27 23:37:14 EST 2011
On Mon, Nov 28, 2011 at 04:57:03PM +1300, Peter Gutmann wrote:
> Marsh Ray <marsh at extendedsubset.com> writes:
> >* Here's an example of RSA-512 certificates being factored and used to sign
> That's an example of *claims* of 512-bit keys being factored, with the
> thinking being "everyone knows 512-bit keys are weak, the certs used 512-bit
> keys, therefore they must have got them by factoring". Unfortunately this
> doesn't explain how they go the 1024-bit and longer keys that were also used
> in the attack.
Here are some examples of 512-bit RSA keys factored:
As far as I'm aware, these are real (not just claims).
More information about the cryptography