"In a First, Cryptographic Keys Protecting SSH Connections Stolen in New Attack"

Researchers have demonstrated for the first time that a large portion of the cryptographic keys used to protect data in computer-to-server SSH traffic are vulnerable to complete compromise when natural computational errors happen during the establishing of the connection. They used their findings to calculate the private portion of about 200 unique SSH keys they observed in public Internet scans carried out over the past seven years. The researchers believe that keys used in IPsec connections may face the same fate. This article continues to discuss the new attack.

Ars Technica reports "In a First, Cryptographic Keys Protecting SSH Connections Stolen in New Attack"

Submitted by grigby1

Submitted by Gregory Rigby on