[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
DSS flaw reported
-----BEGIN PGP SIGNED MESSAGE-----
I found this in the EDUPAGE clipping service. Does anyone have further
information?
BACK TO THE DRAWING BOARD ON DIGITAL SIGNATURES
The Digital Signature Standard approved by the Commerce Department
last May is in trouble. The algorithm may have a fatal flaw that would
allow hackers to forge digital signatures needed for electronic funds
transfers and alter supposedly secure documents. NIST (National Institute
for Standards and Technology) claims all that's needed is a one-line fix,
and an unfazed AT&T still plans to release a new version of its
DSS-compatible Secretagent encryption software sometime soon. (Data
Communications 8/94 p.11)
DEADBEAT <[email protected]>
-----BEGIN PGP SIGNATURE-----
Version: 2.4
iQBFAgUBLki4FPFZTpBW/B35AQG1WAF9Gu8qR0PZcipTw3c121kxIxwcbXVmMtGS
tLN4XFjP+M672PigFQ7qCUWHgy94EP+v
=J5f7
-----END PGP SIGNATURE-----
-------------------------------------------------------------------------
To find out more about the anon service, send mail to [email protected].
Due to the double-blind, any mail replies to this message will be anonymized,
and an anonymous id will be allocated automatically. You have been warned.
Please report any problems, inappropriate use etc. to [email protected].