Certificates issued by Comodo are casualty neither to the "Null Character attack" nor to the "MD2 vulnerability" afresh appear at the Black Hat Briefings in Las Vegas.
Moxie Marlinspike's "Null Character attack" tricks a accessible affidavit ascendancy (CA) into arising a affidavit that includes a \0 appearance (NULL) aural the area name. This allows the antagonist to fool a accessible web browser into dupe the affidavit for a area name that the CA did not validate. Comodo's CA systems accept never been accessible to this attack.
Dan Kaminsky's "MD2 vulnerability" warns that pre-image attacks adjoin the MD2 assortment algorithm are acceptable to become accessible aural months. This would acquiesce an antagonist to assemble trusted certificates that appear to accept been issued by a trusted CA affidavit that has an MD2-based agenda signature. Comodo accept never acclimated the MD2 algorithm, so our CA systems and our customers' certificates will not be affected.
The Black Hat Briefings is a approved industry acquisition of computer aegis and government professionals, as able-bodied as admired hackers. http://www.blackhat.com/
"Comodo is appreciative to advertise that none of its certificates is accessible to either threat," said Melih Abdulhayoglu, CEO and Chief Security Architect of Comodo, the better issuer of high-assurance agenda certificates. "The abstraction is interesting, but, fortunately, it does not administer to Comodo's certificates."
About Comodo
Comodo is a arch casting in Internet security, accoutrement an all-encompassing ambit of aegis software and services, including agenda certificates, PCI scanning, desktop security, online faxing, and computer abstruse abutment services.
Business and consumers common admit Comodo as continuing for aegis and trust. Comodo articles defended and accurate online affairs for over 200,000 business and accept added than 18,000,000 installations of Comodo desktop aegis software, including an award-winning firewall and antivirus software offered at no charge.
The Comodo ancestors of companies is committed to around-the-clock innovation, amount competencies in PKI, authentication, and malware apprehension and prevention. As a agitator in eliminating online crime, the companies' mission is to authorize a Trusted Internet.
With US address overlooking Manhattan on New Jersey's beach and all-around assets in United Kingdom, China, India, Ukraine, and Romania, Comodo articles action able security, authentication, and assurance.
Comodo -- Creating Trust Online®. For added information, appointment Comodo's website.
For added information, reporters and analysts may contact:
Comodo Group, Inc
Newport Tower
525 Washington Blvd., Suite 1400
Jersey City, NJ 07310
Email: media-relations@comodo.com
+1 (201) 963 0004 x4073
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment