You are here

Home » Forums » Other Forums » Off Topic Forum

MD5 CA certificates compromised

2 posts / 0 new
Log in or register to post comments
Last post
January 1, 2009 - 3:07am
#1
Bahamut
Bahamut's picture
Offline
Last seen: 13 years 8 months ago
Joined: 2006-04-07 08:44
MD5 CA certificates compromised

http://www.win.tue.nl/hashclash/rogue-ca/

They made a rogue CA certificate.

Top
January 1, 2009 - 8:13am
ottosykora
Offline
Last seen: 22 hours 47 min ago
Joined: 2007-10-11 17:48
interesting way

of implementation, one more clear argument for not using the md5 for too serious matters.
OK, it is not that simple to modify the content and make the md5 be the same, but as we see possible.
I am just surprised that they use it in this extend still.

I find it is not a big problem to use the md5 for quick checking the files downloaded from a ftp server, but not so for some very important applications.

Otto Sykora
Basel, Switzerland

Top
Log in or register to post comments