all InfoSec news
Randomness of random in Cisco ASA
June 12, 2023, 7:42 a.m. |
IACR News www.iacr.org
ePrint Report: Randomness of random in Cisco ASA
Ryad Benadjila, Arnaud Ebalard
It all started with ECDSA nonces and keys duplications in a large amount of X.509 certificates generated by Cisco ASA security gateways, detected through TLS campaigns analysis.
After some statistics and blackbox keys recovery, it continued by analyzing multiple firmwares for those hardware devices and virtual appliances to unveil the root causes of these collisions. It ended up with keygens to recover RSA keys, ECDSA keys and signatures …
analysis asa campaigns certificates cisco cisco asa ecdsa eprint report generated keys large random randomness recovery report security statistics tls
More from www.iacr.org / IACR News
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Senior - Penetration Tester
@ Deloitte | Madrid, España
Associate Cyber Incident Responder
@ Highmark Health | PA, Working at Home - Pennsylvania
Senior Insider Threat Analyst
@ IT Concepts Inc. | Woodlawn, Maryland, United States