Wednesday, October 25, 2017

ROCA: Vulnerable RSA generation (CVE-2017-15361) [CRoCS wiki]

ROCA: Vulnerable RSA generation (CVE-2017-15361) [CRoCS wiki]: "The first step is to detect if you use a chip with the vulnerable library. As the vulnerability is present in the on-chip software library and not limited just to a particular batch of hardware, the only reliable way is to generate an RSA keypair on the device and test the public key by the provided tools (see below). "



'via Blog this'