View Document Preview and Link Open Document File Size: 158,11 KB Share Result on Facebook
City Unicode / / Company Verisign / Len Sassaman2 1 2 1 IOActive Inc. / Microsoft / Badguy Inc / / IndustryTerm cross-site / browser software / web browsers / These systems / named server / hash algorithm / web form / bank / greater Internet / command-line tools / Internet Explorer / / NaturalFeature BGP stream / / OperatingSystem Android / Startcom / / Organization Certification Authority / Organizational Unit / Katholieke Universiteit Leuven / / Person Mike Zusman / Moxie Marlinspike / String / Collin Jackson / Meredith L. Patterson / Adam Barth / / Position representative / / Product PKCS#10-Tunneled SQL Injection / SHA-1 / SQL injection / MD2 / Textual CN injection / Verisign MD2 / / ProgrammingLanguage HTML / Perl / SQL / / ProvinceOrState California / / RadioStation X509 N AM / / Technology SNMP / 2 Background The SSL protocol / hash algorithm / API / PKI / MD2 algorithm / command line interface / Perl / Android / HTML / SSL / encryption / public key / DNS / ASN.1-based protocols / submitting a public key / / URL www.bank.com.badguy.com / www.live.com / www.bank-of-foo.com / www.bank.comx00.badguy.com / www.bank.com\x00.badguy.com / www.bank.com / www.bank.com\x00.badguy.com? / www.bankoffoo.com / www.badguy.com / www.bankofoo.com / www.amazon.com / / SocialTag 
PKI Layer Cake: New Collision Attacks Against the Global X.509 Infrastructure Dan Kaminsky1 , Meredith L. Patterson, and Len Sassaman2 1 2