Daniel Bleichenbacher

From Wikipedia, the free encyclopedia

Daniel Bleichenbacher (born August 4, 1964) is a German cryptographer, currently a researcher at Bell Labs. He received his Ph.D. from the University of Bern in 1996 for contributions to computational number theory, particularly concerning message verification in the ElGamal and RSA public-key cryptosystems.[1]

In 2006 at a rump session at CRYPTO, Bleichenbacher described a "pencil and paper"-simple attack against RSA signature validation as implemented in common cryptographic toolkits. Both OpenSSL and the NSS security engine in Firefox were later found to be vulnerable to the attack, which would allow an attacker to forge the SSL certificates that protect sensitive websites.[2]

[edit] References

  1. ^ http://cr.yp.to/bib/1996/bleichenbacher-thesis.ps
  2. ^ Bleichenbacher's RSA signature forgery based on implementation error

[edit] External links


 This cryptography-related article is a stub. You can help Wikipedia by expanding it.
 This biographical article relating to a computer scientist is a stub. You can help Wikipedia by expanding it.