ML
    • Register
    • Login
    • Search
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups

    Public and Private key Library Breached

    News
    rsa 1024-bit 2048-bit 3072-bit 4096-bit infineon
    3
    6
    775
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • DustinB3403
      DustinB3403 last edited by DustinB3403

      This Monday: Public and Private Keys have been broken

      Click baity I know : arstechnica news article.

      1 Reply Last reply Reply Quote 0
      • DustinB3403
        DustinB3403 last edited by

        To summarize, any TPM or RSA tokens using the Infineon library for encryption is able to be broken in as little as 100 years on a consumer grade desktop.

        Obviously this can be greatly decreased by splitting up the work load among a farm of systems or by using a higher end system (government grade servers) may be able to crack a 4096-bit key in a matter of minutes or less.

        1 Reply Last reply Reply Quote 0
        • DustinB3403
          DustinB3403 last edited by

          Worth noting in order to decypher any communication all that is needed is the public key.

          1 Reply Last reply Reply Quote 0
          • scottalanmiller
            scottalanmiller last edited by

            Not aware of anyone using that library. A major find, of course, but don't know anyone affected. Thank goodness for open source, once again 🙂

            1 Reply Last reply Reply Quote 2
            • scottalanmiller
              scottalanmiller last edited by

              Can't help but point out that the author of the article doesn't know what "ironic" means.

              wrx7m 1 Reply Last reply Reply Quote 2
              • wrx7m
                wrx7m @scottalanmiller last edited by wrx7m

                @scottalanmiller said in Public and Private key Library Breached:

                Can't help but point out that the author of the article doesn't know what "ironic" means.

                Now I have to read it. LOL

                Edit: It isn't ironic when TPM, which is created to be more secure than standard, is, in fact, less secure?

                1 Reply Last reply Reply Quote 1
                • First post
                  Last post