all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Randomness of random in Cisco ASA

Add to bookmarks
June 12, 2023, 7:42 a.m. |

IACR News www.iacr.org

ePrint Report: Randomness of random in Cisco ASA

Ryad Benadjila, Arnaud Ebalard


It all started with ECDSA nonces and keys duplications in a large amount of X.509 certificates generated by Cisco ASA security gateways, detected through TLS campaigns analysis.


After some statistics and blackbox keys recovery, it continued by analyzing multiple firmwares for those hardware devices and virtual appliances to unveil the root causes of these collisions. It ended up with keygens to recover RSA keys, ECDSA keys and signatures …

analysis asa campaigns certificates cisco cisco asa ecdsa eprint report generated keys large random randomness recovery report security statistics tls

Visit resource

More from www.iacr.org / IACR News

EISA 2024: The 5th International Conference on Emerging Information Security and Applications 11 hours ago | www.iacr.org
applications august calendar china +13
Multiple academic teaching positions 11 hours ago | www.iacr.org
academic candidates computer computer science +12
ISCISC 2024: 21st International ISC Conference on Information Security and Cryptology 11 hours ago | www.iacr.org
august calendar conference cryptology +13
CRYPTOLOGY2024: 9th International Cryptology and Information Security Conference 2024 11 hours ago | www.iacr.org
calendar conference cryptology date +13
Security in Times of Surveillance 11 hours ago | www.iacr.org
calendar date event event calendar +4
Mempool Privacy via Batched Threshold Encryption: Attacks and Defenses 15 hours ago | www.iacr.org
applications attacks defenses defi +12
Blockchain Price vs. Quantity Controls 15 hours ago | www.iacr.org
blockchain blockchains controls cryptocurrency +8
Agile, Post-quantum Secure Cryptography in Avionics 22 hours ago | www.iacr.org
aaron agile alice avionics +20
Private Analytics via Streaming, Sketching, and Silently Verifiable Proofs 22 hours ago | www.iacr.org
ada analytics collection compute +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Cyber Security Culture – Communication and Content Specialist

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com

Container Hardening, Sr. (Remote | Top Secret)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

GRC and Information Security Analyst

@ Intertek | United States
View on infosec-jobs.com

Information Security Officer

@ Sopra Steria | Bristol, United Kingdom
View on infosec-jobs.com

Casual Area Security Officer South Down Area

@ TSS | County Down, United Kingdom
View on infosec-jobs.com
View more jobs