At the renowned Eurocrypt cryptosource presents a work about vulnerabilities of the random number generator of the OpenSSL cryptographic library


May 12th 2016



Secure random number generation is an essential prerequisite for the use of cryptography in IT systems. In the recent past, a number of security vulnerabilities has surfaced in this context. This especially applies to mobile and embedded platforms, which usually provide insufficient entropy sources for the secure initialisation of the random number generator. In a scientific analysis, cryptosource has identified a number of conceptual security vulnerabilities in the random number generator of the widely used OpenSSL cryptographic library. Under certain circumstances, which are typically encountered on embedded platforms, they may lead to a considerable reduction of the security level of generated cryptographic keys. The work was presented at the renowned Eurocrypt conference in Vienna. Further details are available here.

Announcements


cryptosource GmbH has an exhibition at the "Internet of Things" conference on October 19th, 2017 in Munich.


News

cryptosource GmbH has an exhibition at the embedded world 2017 in Nurnberg, Germany March 21st 2017

At Eurocrypt 2016 cryptosource presents a work about vulnerabilities of the random number generator of OpenSSL May 12th 2016