Interesting...
What are people commenting on here? Apart from the usual PS3 fanboy eruptions, we have claims that SSL is broken and verbal attacks against this or that certification authority. WTF?
Ok, let's make things precise:
- SSL/TLS is NOT broken. It is not even involved.If you don't use certificates, no problem
- Certification of public keys, however is holed below the waterline:
-- you find a pair (public key 1, distinguished name 1 , certificate authority = true) and (public key 2, distinguished name 2, certificate authority = false) which hashes to the same MD5 value. This has been done using lots of processors which happen to be PS3 Cell chips. So who cares.
-- you find a certification authority which still uses MD5 as hashing algorithm, i.e. which still has
"default_md = md5" in its openssl.cnf file in spite of CAN-2005-2946.
-- you submit (public key 2, distinguished name 2, certificate authority = false) to your slowpoke certification authority for signature.
-- you set up a webserver for bank0famerica.com, apparently signed by slowpoke certification authority by making good use of (public key 1, distinguished name 1 , certificate authority = true) in the certification chain
-- profit!
Signature algorithms can be found listed for example here:
http://bouncycastle.gva.es/www.bouncycastle.org/docs/docs1.4/org/bouncycastle/jce/provider/JDKDigestSignature.MD5WithRSAEncryption.html