Angels of security » kaspersky http://angelsofsecurity.com/blog Musings of an infosec renegade Tue, 02 Aug 2011 19:01:53 +0000 en hourly 1 http://wordpress.org/?v=3.2.1 1024 bit RSA key circumvented http://angelsofsecurity.com/blog/2008/06/18/1024-bit-rsa-key-circumvented/ http://angelsofsecurity.com/blog/2008/06/18/1024-bit-rsa-key-circumvented/#comments Thu, 19 Jun 2008 02:05:42 +0000 admin http://angelsofsecurity.com/blog/2008/06/18/1024-bit-rsa-key-circumvented/ The gpcode virus has been making news of late. It’s ransom-ware that encrypted the infected machine’s files with a 1024 bit RSA key, demanding a monetary payment in exchange for the decryption key. Kaspersky labs announced that they would try to brute force the key if people would just loan them some spare CPU cycles. They took some flak for even trying this, including a rebuke from the master cryptographer himself, Bruce Schneier.

Now it appears they’ve found a solution. No, they haven’t cracked a 1024 bit RSA key this quickly, they’ve discovered that the files can be undeleted, and released a utility to assist in the endeavor. This is another example of Shamir’s third law of security. For those of you who don’t know, Adi Shamir, recipient of the turing award and the S in RSA once delivered his 3 laws of security:

  1. Absolutely secure systems do not exist
  2. To halve your vulnerability you need to double your expenditure
  3. Cryptography is typically bypassed, not penetrated

This is about as good an example of law number three as I can think of. Kaspersky would have found it nearly impossible to break the key in a meaningful amount of time, however circumventing the cryptography proved itself to be much easier.

]]> http://angelsofsecurity.com/blog/2008/06/18/1024-bit-rsa-key-circumvented/feed/ 0