VeriSign addresses MD5 flaw

By Robert Westervelt, News Editor 05 Jan 2009 | SearchSecurity.com

Security Wire Daily News Digg This!     StumbleUpon     Del.icio.us

VeriSign Inc. is addressing a flaw discovered in the MD5 hash algorithm that could be used by attackers to create false SSL certificates.

SearchSecurity.com: To get security news and tips delivered to your inbox, click here to sign up for our free newsletter.

Digital certificates are used as part of the trust infrastructure on the Internet to prove the legitimacy and security of a website. A method, discovered by a team of seven researchers, exploits a weakness in the MD5 hash function to construct a rogue certificate authority and issue digital certificates that will be trusted by all of the common Web browsers in use today. The researchers delivered the details Dec. 30 at the Chaos Communication Congress in Berlin.

Most certificate authorities (CA) have already moved away from MD5 in favor of the newer SHA-1 hash function. The attack cannot be used against those CAs.

Digital certificates: Rogue digital certificates strike blow to Internet security:Security researchers exploit weaknesses in digital certificates to bypass browser security. Experts say the method is within reach of well-funded cybercriminals. PKI and digital certificates: Security, authentication and implementation: Get more information about PKI and digital certificates, such as how to implement PKI, how to ensure security and available implementation. EV SSL certificates won't stop phishers, researchers say: Two researchers call Extended Validation (EV) SSL certificates a Band-Aid approach, and share their research of the phishing underground.

Tim Callan, a product manager for VeriSign's SSL business unit, said the company completely switched to the more secure SHA-1 algorithm for its new RapidSSL brand certificates. The vendor said it would also replace md5-based certificates for existing customers free of charge.

"We've confirmed that all other SSL certificates we sell are not vulnerable to this attack," Callan wrote in a blog posting. "We'll continue on our path to discontinue MD5 in all end entity certificates by the end of January 2009."

Meanwhile, Microsoft issued an advisory telling customers that it was unaware of any specific attacks against MD5. Microsoft urged customers to contact their issuing Certificate Authority for guidance.

"This new disclosure does not increase risk to customers significantly, as the researchers have not published the cryptographic background to the attack, and the attack is not repeatable without this information," Microsoft said in its advisory.

Damian Hasse, an engineer with the Microsoft Security Response Center, said serious weaknesses in MD5 have been known for many years. Hasse said the new Extended Validation certificates are not affected by the bug. EV SSL is supported by Internet Explorer 7, Mozilla Firefox and Opera browsers and highlight the address bar in green to confirm a legitimate website.

"It is because of these weaknesses that MD5 is banned in new code under the Microsoft Security Development Lifecycle (SDL)," Hasse wrote in the Microsoft Security Vulnerability Research and Defense blog.

Johnathan Nightingale of Mozilla Foundation advised users to "exercise caution when interacting with sites that require sensitive information, particularly when using public internet connections." In a post on the Mozilla Security blog, Nightingale wrote Mozilla was working with certificate authorities to ensure their issuing processes are updated to prevent this threat.

Tags: PKI and Digital Certificates,  Web Browser Security,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT PKI and Digital Certificates Portable security storage device could replace OTP devices What is most misunderstood about EV SSL certificates? Rogue digital certificates strike blow to Internet security Can any firm or organization get a digital signature certificate? How to obtain a digital certificate for a server PKI and digital certificates: Security, authentication and implementation What is the best way to administer exams to students via computer? Should computer exams be transmitted as PDF files or Word files? Should PKI systems be used for laptop encryption? Email authentication showdown: IP-based vs. signature-based PKI and Digital Certificates Research Web Browser Security Security researchers develop browser-based darknet Microsoft cracks down on click fraud ring Mozilla patches 11 Firefox security flaws, JavaScript errors Microsoft patches WebDAV security vulnerability in bevy of updates IT pros can detect, prevent website vulnerabilities, thwart attacks Stolen FTP credentials likely in massive website attacks Trust eroding as social engineering attacks climb in 2009, says Kaspersky expert US-CERT warns of Gumblar, Martuz drive-by exploits Google study backs browser silent auto update feature Firefox update addresses several security flaws Web Browser Security Research

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary authentication server  (SearchSecurity.com) Certificate Revocation List  (SearchSecurity.com) Digital Signature Standard  (SearchSecurity.com) HDCP  (SearchSecurity.com) MD2  (SearchSecurity.com) MD4  (SearchSecurity.com) MD5  (SearchSecurity.com) nonrepudiation  (SearchSecurity.com) PKI  (SearchSecurity.com) public key  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary