Collisions on GPG signatures

I noticed that Full-Disclosure contained son discussion about a way to forge GPG key signatures.

Forging key signatures with collisions
Forging key signatures with collisions Georgi Guninski guninski at guninski.com Fri Jun 22 14:48:07 CEST 2012 Forging key signatures with...
Share
Share on Facebook
Share on Twitter
Share on Google+
Share on Linkedin
Share by email
Gnupg
Forging key signatures with collisions
Forging key signatures with collisions Georgi Guninski guninski at guninski.com Fri Jun 22 16:16:48 CEST 2012 This is getting stranger......
Share
Share on Facebook
Share on Twitter
Share on Google+
Share on Linkedin
Share by email
Gnupg
This basically says that we could sign a GPG key and make it look as though it was trusted by Richard Matthew Stallman. ;)
GPG-signed email from RMS
Share
Share on Facebook
Share on Twitter
Share on Pinterest
Share on Google+
Share on Linkedin
Share by email
hoerner_brett
·
Tue, Sep 29 2009 17:00:00
Security News @netsecu
-seclists.org: (Full Disclosure: Potential gpg forging key signatures with collisions netsecu.org/#249) #security
Fri, Jun 22 2012 08:46:29
Reply Retweet Favorite
So now we all need to start thinking the way @earthmelon is...
earthmeLon @earthmeLon
How does one verify a key revocation? crypto.stackexchange.com/questions/2904… #gpg #pgp #cryptography #security
Thu, Jun 14 2012 09:54:33
Reply Retweet Favorite
I'll keep you updated...

Did you find this story interesting? Be the first to like or comment.

Liked!

webhat/redhat

Total views