all InfoSec news
New SSH Vulnerability
Schneier on Security www.schneier.com
This is interesting:
For the first time, researchers have demonstrated that a large portion of cryptographic keys used to protect data in computer-to-server SSH traffic are vulnerable to complete compromise when naturally occurring computational errors occur while the connection is being established.
[…]
The vulnerability occurs when there are errors during the signature generation that takes place when a client and server are establishing a connection. It affects only keys using the RSA cryptographic algorithm, which the researchers found …
academic papers compromise computational computer cryptographic cryptography data errors keys large protect researchers server signature signatures ssh traffic vulnerabilities vulnerability vulnerable