StuartMWWho Is John Galt?Premium
|reply to Name Game |
Re: Flame: Massive cyber-attack discovered, researchers say
What I got out of the article.
What we do know is the bogus certificates for signing Windows Updates were created, and we know what Microsoft has said about it. We know that CAs using MD5 in their digital signatures are vulnerable in the way discussed, and we know that that the bogus certificates were signed by those weak CAs.
The cryptanalytic technique used to create the MD5 collision is new. It isnt radically different than previous known techniques, but this is using a technique that would have taken a great deal of expertise to develop.
Read "Nation State" but which one?--
Don't feed trolls--it only makes them grow!