h1

RSA Schadenfreude #2

March 18, 2011

Here’s an interesting thought experiment for the vulnerability researchers out there.  Let’s say the signing key RSA uses for seed files has been compromised.

  • Can you “root” either the Authentication Manager or soft token by having someone load up a malformed seed file?
  • Can you “root” either the Authentication Manager or soft token by having someone load up a malformed, but properly signed seed file?
<span>%d</span> bloggers like this: