Experimental detection of anomalies in public key infrastructure

Autores
Castro Lechtaler, Antonio; Cipriano, Marcelo; Malvacio, Eduardo
Año de publicación
2012
Idioma
inglés
Tipo de recurso
documento de conferencia
Estado
versión publicada
Descripción
Cryptographic techniques authenticate users and protect information confidentiality. These tasks are performed by subsystems called Oracles. The most popular Oracle is the RSA system based on two large primes granting secure services. In 2008, a programming error in Open-SSL of the Debian system was detected. Its biased number generator created system vulnerabilities by turning certificates predictable. This paper analyses the generic performance of a RSA cryptographic Oracle and develops a methodology to detect irregularities and anomalies in the quality of the certificates. Ten million certificates delivered by a private PKI were analyzed and found significant differences between theoretical predictions and experimental results.
Eje: Workshop de seguridad informática (WSI)
Red de Universidades con Carreras en Informática (RedUNCI)
Materia
Ciencias Informáticas
informática
asymmetric cryptography
SSL
RSA
prime integers
predictable primes
Nivel de accesibilidad
acceso abierto
Condiciones de uso
http://creativecommons.org/licenses/by-nc-sa/2.5/ar/
Repositorio
SEDICI (UNLP)
Institución
Universidad Nacional de La Plata
OAI Identificador
oai:sedici.unlp.edu.ar:10915/23843

id SEDICI_a3bf29d77007759d24bf51e23a307c27
oai_identifier_str oai:sedici.unlp.edu.ar:10915/23843
network_acronym_str SEDICI
repository_id_str 1329
network_name_str SEDICI (UNLP)
spelling Experimental detection of anomalies in public key infrastructureCastro Lechtaler, AntonioCipriano, MarceloMalvacio, EduardoCiencias Informáticasinformáticaasymmetric cryptographySSLRSAprime integerspredictable primesCryptographic techniques authenticate users and protect information confidentiality. These tasks are performed by subsystems called Oracles. The most popular Oracle is the RSA system based on two large primes granting secure services. In 2008, a programming error in Open-SSL of the Debian system was detected. Its biased number generator created system vulnerabilities by turning certificates predictable. This paper analyses the generic performance of a RSA cryptographic Oracle and develops a methodology to detect irregularities and anomalies in the quality of the certificates. Ten million certificates delivered by a private PKI were analyzed and found significant differences between theoretical predictions and experimental results.Eje: Workshop de seguridad informática (WSI)Red de Universidades con Carreras en Informática (RedUNCI)2012-10info:eu-repo/semantics/conferenceObjectinfo:eu-repo/semantics/publishedVersionObjeto de conferenciahttp://purl.org/coar/resource_type/c_5794info:ar-repo/semantics/documentoDeConferenciaapplication/pdfhttp://sedici.unlp.edu.ar/handle/10915/23843enginfo:eu-repo/semantics/openAccesshttp://creativecommons.org/licenses/by-nc-sa/2.5/ar/Creative Commons Attribution-NonCommercial-ShareAlike 2.5 Argentina (CC BY-NC-SA 2.5)reponame:SEDICI (UNLP)instname:Universidad Nacional de La Platainstacron:UNLP2025-09-29T10:55:36Zoai:sedici.unlp.edu.ar:10915/23843Institucionalhttp://sedici.unlp.edu.ar/Universidad públicaNo correspondehttp://sedici.unlp.edu.ar/oai/snrdalira@sedici.unlp.edu.arArgentinaNo correspondeNo correspondeNo correspondeopendoar:13292025-09-29 10:55:36.638SEDICI (UNLP) - Universidad Nacional de La Platafalse
dc.title.none.fl_str_mv Experimental detection of anomalies in public key infrastructure
title Experimental detection of anomalies in public key infrastructure
spellingShingle Experimental detection of anomalies in public key infrastructure
Castro Lechtaler, Antonio
Ciencias Informáticas
informática
asymmetric cryptography
SSL
RSA
prime integers
predictable primes
title_short Experimental detection of anomalies in public key infrastructure
title_full Experimental detection of anomalies in public key infrastructure
title_fullStr Experimental detection of anomalies in public key infrastructure
title_full_unstemmed Experimental detection of anomalies in public key infrastructure
title_sort Experimental detection of anomalies in public key infrastructure
dc.creator.none.fl_str_mv Castro Lechtaler, Antonio
Cipriano, Marcelo
Malvacio, Eduardo
author Castro Lechtaler, Antonio
author_facet Castro Lechtaler, Antonio
Cipriano, Marcelo
Malvacio, Eduardo
author_role author
author2 Cipriano, Marcelo
Malvacio, Eduardo
author2_role author
author
dc.subject.none.fl_str_mv Ciencias Informáticas
informática
asymmetric cryptography
SSL
RSA
prime integers
predictable primes
topic Ciencias Informáticas
informática
asymmetric cryptography
SSL
RSA
prime integers
predictable primes
dc.description.none.fl_txt_mv Cryptographic techniques authenticate users and protect information confidentiality. These tasks are performed by subsystems called Oracles. The most popular Oracle is the RSA system based on two large primes granting secure services. In 2008, a programming error in Open-SSL of the Debian system was detected. Its biased number generator created system vulnerabilities by turning certificates predictable. This paper analyses the generic performance of a RSA cryptographic Oracle and develops a methodology to detect irregularities and anomalies in the quality of the certificates. Ten million certificates delivered by a private PKI were analyzed and found significant differences between theoretical predictions and experimental results.
Eje: Workshop de seguridad informática (WSI)
Red de Universidades con Carreras en Informática (RedUNCI)
description Cryptographic techniques authenticate users and protect information confidentiality. These tasks are performed by subsystems called Oracles. The most popular Oracle is the RSA system based on two large primes granting secure services. In 2008, a programming error in Open-SSL of the Debian system was detected. Its biased number generator created system vulnerabilities by turning certificates predictable. This paper analyses the generic performance of a RSA cryptographic Oracle and develops a methodology to detect irregularities and anomalies in the quality of the certificates. Ten million certificates delivered by a private PKI were analyzed and found significant differences between theoretical predictions and experimental results.
publishDate 2012
dc.date.none.fl_str_mv 2012-10
dc.type.none.fl_str_mv info:eu-repo/semantics/conferenceObject
info:eu-repo/semantics/publishedVersion
Objeto de conferencia
http://purl.org/coar/resource_type/c_5794
info:ar-repo/semantics/documentoDeConferencia
format conferenceObject
status_str publishedVersion
dc.identifier.none.fl_str_mv http://sedici.unlp.edu.ar/handle/10915/23843
url http://sedici.unlp.edu.ar/handle/10915/23843
dc.language.none.fl_str_mv eng
language eng
dc.rights.none.fl_str_mv info:eu-repo/semantics/openAccess
http://creativecommons.org/licenses/by-nc-sa/2.5/ar/
Creative Commons Attribution-NonCommercial-ShareAlike 2.5 Argentina (CC BY-NC-SA 2.5)
eu_rights_str_mv openAccess
rights_invalid_str_mv http://creativecommons.org/licenses/by-nc-sa/2.5/ar/
Creative Commons Attribution-NonCommercial-ShareAlike 2.5 Argentina (CC BY-NC-SA 2.5)
dc.format.none.fl_str_mv application/pdf
dc.source.none.fl_str_mv reponame:SEDICI (UNLP)
instname:Universidad Nacional de La Plata
instacron:UNLP
reponame_str SEDICI (UNLP)
collection SEDICI (UNLP)
instname_str Universidad Nacional de La Plata
instacron_str UNLP
institution UNLP
repository.name.fl_str_mv SEDICI (UNLP) - Universidad Nacional de La Plata
repository.mail.fl_str_mv alira@sedici.unlp.edu.ar
_version_ 1844615815713783808
score 13.070432