"Serious Encryption Flaw in Infineon RSA Chips Exposes Billions of Devices to Attack"
A security flaw within Infineon’s RSA library has been discovered by researchers, which could allow the RSA private key that matches with a generated RSA public key to be determined by attackers. The exploitation of this security vulnerability could allow attackers to perform malicious activities with the use of the determined private key, such as impersonation, decryption of encrypted messages, and more. Usage domains that have been affected by this vulnerability include identity documents, programmable smart cards, authentication tokens, and much more. This article discusses the CVE-2017-15361 vulnerability, its impact, and risk mitigation.
Submitted by Anonymous
on