lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <b879u0$sks$1@abraham.cs.berkeley.edu>
Date: 24 Apr 2003 00:08:32 GMT
From: daw@...art.cs.berkeley.edu (David Wagner)
To: bugtraq@...urityfocus.com
Subject: Re: Cracking preshared keys


Michael Thumann  wrote:
>we would like to announce the publication of a proof of concept paper 'PSK 
>cracking using IKE Aggressive Mode'. Paper can be downloaded from 
>www.ernw.de/download/pskattack.pdf .
[...]
>4. Of course the psk must be weak to crack it in an acceptable amount of time

Well, what did you expect?  In your example, the pre-shared key was
derived from the ``secret'' string "cisco".  Of course, if you choose
a key that the attacker can guess, the system won't be secure.  Surprise!

What do you expect IPSec to do if you give it an insecure, guessable key?
Noone claimed it would be secure in such a situation.

I find your recommendations hard to take seriously.  This is not a
vulnerability in IPSec, a good reason to disable vpn access, or anything
like that.  Just use some common sense in how you use the crypto.  If you
must use pre-shared keys, choose strong keys; or, use public keys instead
of pre-shared keying.  Surely you agree?

User: "Doctor, doctor, it hurts when I use insecure crypto keys."
Doctor: "Don't do that, then."


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ