CAPEC-485: Signature Spoofing by Key Recreation
Detailed
Draft
严重程度: High
攻击可能性: Low
CAPEC版本: 3.9
更新日期: 2023-01-24
攻击模式描述
An attacker obtains an authoritative or reputable signer's private signature key by exploiting a cryptographic weakness in the signature algorithm or pseudorandom number generation and then uses this key to forge signatures from the original signer to mislead a victim into performing actions that benefit the attacker.
前提条件
- An authoritative signer is using a weak method of random number generation or weak signing software that causes key leakage or permits key inference.
- An authoritative signer is using a signature algorithm with a direct weakness or with poorly chosen parameters that enable the key to be recovered using signatures from that signer.
所需技能
High
Cryptanalysis of signature generation algorithm
High
Reverse engineering and cryptanalysis of signature generation algorithm implementation and random number generation
High
Ability to create malformed data blobs and know how to present them directly or indirectly to a victim.
缓解措施
Ensure cryptographic elements have been sufficiently tested for weaknesses.
分类映射
| 分类名称 | 条目ID | 条目名称 |
|---|---|---|
| ATTACK | 1552.004 | Unsecure Credentials: Private Keys |