Comments on: Playing With Authenticode and MD5 Collisions http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/ (blog 'DidierStevens) Fri, 12 Mar 2010 08:07:51 +0000 http://wordpress.com/ hourly 1 By: David http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/#comment-37727 David Sat, 20 Feb 2010 10:20:12 +0000 http://blog.didierstevens.com/?p=1156#comment-37727 Hi guys, Great post by the day! For some of you looking for an online encoder, check this <a href="http://www.stringfunction.com/md5-hash.html" rel="nofollow">online md5 converter</a> Pretty Cool! David Hi guys,
Great post by the day!
For some of you looking for an online encoder, check this online md5 converter
Pretty Cool!
David

]]> By: 3medya Blog » Blog Archive » MD5 Collision Demo http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/#comment-36060 3medya Blog » Blog Archive » MD5 Collision Demo Mon, 02 Nov 2009 10:10:45 +0000 http://blog.didierstevens.com/?p=1156#comment-36060 [...] Stevens used the evilize program (below) to create two different programs with the same Authenticode digital signature. Authenticode is Microsoft’s code signing mechanism, and although it uses SHA1 by default, it [...] [...] Stevens used the evilize program (below) to create two different programs with the same Authenticode digital signature. Authenticode is Microsoft’s code signing mechanism, and although it uses SHA1 by default, it [...]

]]> By: Criza algoritmilor de criptare? « 0×30 0×20 0×61 0×6e 0×64 0×20 0×31 http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/#comment-34166 Criza algoritmilor de criptare? « 0×30 0×20 0×61 0×6e 0×64 0×20 0×31 Sat, 31 Jan 2009 09:34:41 +0000 http://blog.didierstevens.com/?p=1156#comment-34166 [...] asta nu a fost tot. Didier Stevens s-a gandit sa treaca la nivelul urmator. Asa ca s-a folosit de scula celor de la Microsoft (special [...] [...] asta nu a fost tot. Didier Stevens s-a gandit sa treaca la nivelul urmator. Asa ca s-a folosit de scula celor de la Microsoft (special [...]

]]> By: SecurityGuy.org » Blog Archive » Playing With Authenticode and MD5 Collisions - The IT Security Blog http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/#comment-34128 SecurityGuy.org » Blog Archive » Playing With Authenticode and MD5 Collisions - The IT Security Blog Sun, 25 Jan 2009 15:34:26 +0000 http://blog.didierstevens.com/?p=1156#comment-34128 [...] http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/ [...] [...] http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/ [...]

]]> By: Didier Stevens http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/#comment-34104 Didier Stevens Wed, 21 Jan 2009 07:42:01 +0000 http://blog.didierstevens.com/?p=1156#comment-34104 In general, for a new development, design your system for "easy" swap-out of the hashing function. Take one of the SHA2 functions, and in a couple of years, switch to the new SHA3 standard. Can you give more details of your performance requirements? In general, for a new development, design your system for “easy” swap-out of the hashing function. Take one of the SHA2 functions, and in a couple of years, switch to the new SHA3 standard.

Can you give more details of your performance requirements?

]]> By: Didier Stevens http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/#comment-34103 Didier Stevens Wed, 21 Jan 2009 07:37:08 +0000 http://blog.didierstevens.com/?p=1156#comment-34103 Thanks Thierry! Thanks Thierry!

]]> By: Thierry Zoller http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/#comment-34100 Thierry Zoller Tue, 20 Jan 2009 23:39:28 +0000 http://blog.didierstevens.com/?p=1156#comment-34100 Great work Didier, thanks for investing time to explain it step by step. Great work Didier, thanks for investing time to explain it step by step.

]]> By: k http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/#comment-34099 k Tue, 20 Jan 2009 18:16:30 +0000 http://blog.didierstevens.com/?p=1156#comment-34099 SHA-1 is showing cracks. AES does not yet have an accepted/standardized hashing algorithm. In your opinion, currently, what is the next best hashing standard if a developer is concerned about performance (and not limited to microsoft's signing tools)? SHA-1 is showing cracks. AES does not yet have an accepted/standardized hashing algorithm. In your opinion, currently, what is the next best hashing standard if a developer is concerned about performance (and not limited to microsoft’s signing tools)?

]]> By: Interesting Information Security Bits for 01/19/2009 at Infosec Ramblings http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/#comment-34093 Interesting Information Security Bits for 01/19/2009 at Infosec Ramblings Mon, 19 Jan 2009 21:08:57 +0000 http://blog.didierstevens.com/?p=1156#comment-34093 [...] is at it again. Good thing he is on our side :0 Playing With Authenticode and MD5 Collisions << Didier Stevens Tags: ( md5 malware [...] [...] is at it again. Good thing he is on our side :0 Playing With Authenticode and MD5 Collisions << Didier Stevens Tags: ( md5 malware [...]

]]> By: Forscher erstellt Dateien mit “Fake” Microsoft Authenticode™ « Netzhappen http://blog.didierstevens.com/2009/01/17/playing-with-authenticode-and-md5-collisions/#comment-34087 Forscher erstellt Dateien mit “Fake” Microsoft Authenticode™ « Netzhappen Mon, 19 Jan 2009 10:44:02 +0000 http://blog.didierstevens.com/?p=1156#comment-34087 [...] Forscher Didier Stevens ist es in einer Studie gelungen Dateien zu generieren deren Signatur identisch  mit einer Authenticode-signierten [...] [...] Forscher Didier Stevens ist es in einer Studie gelungen Dateien zu generieren deren Signatur identisch  mit einer Authenticode-signierten [...]

]]>