[cryptography] Microsoft Sub-CA used in malware signing

Thor Lancelot Simon tls at panix.com
Tue Jun 12 11:58:19 EDT 2012

On Tue, Jun 12, 2012 at 10:51:59AM -0500, Marsh Ray wrote:
> What is unclear is if there are any effective costs or rate
> limitations on how often one can 'activate' an MSTS license server.
> A compute cluster faster than 200 PS3s could cut down on the number
> of license certs that were burned to make the attack work.

One wonders what Microsoft knows about who requested all those licenses.
Presumably there was some effort put into plausible deniability.


More information about the cryptography mailing list