Skip to content
This repository has been archived by the owner on Mar 24, 2022. It is now read-only.

Latest commit

 

History

History
13 lines (10 loc) · 1.33 KB

README.md

File metadata and controls

13 lines (10 loc) · 1.33 KB
Raw

e=3 Bleichenbacher's Signature Forgery

Prerequisites:

  1. RSA Encryption/Decryption
  2. RSA Digital Signatures on padded messages using PKCS#1 v1.5

The following blog posts/articles have explained e=3 Bleichenbacher's Signature Forgery attack clearly and can be useful:

  1. Filippo Valsorda's CVE --> This was a CVE by Filippo Valsorda on python-rsa module due to fault in implementation of signatures of PKCS#1 v1.5 padded messages
  2. Karabut's writeup for RSA CTF Challenge, Google CTF Quals 2017
  3. Hal Finney's write-up on Bleichenbacher's Signature Forgery
  4. Interesting explanation on Stack Exchange

Check out the original paper describing the attack by Daniel Bleichenbacher- http://archiv.infsec.ethz.ch/education/fs08/secsem/bleichenbacher98.pdf