Differences
This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
public:papers:rsabias [2018-05-17 08:40] – created xsvenda | public:papers:rsabias [2018-09-07 11:56] (current) – [Datasets] xnemec1 | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== RSA bias ====== | + | ====== |
- | | + | ===== Datasets ===== |
- | * Links to datasets | + | **Private and public RSA keys generated on smartcard or by software library** |
- | * Links to tooling | + | * Dataset: [[https:// |
- | * Links to related papers | + | * Separate zip files for every library and length of RSA keys. Naming format: // |
+ | * Dataset: [[https:// | ||
+ | * Separate zip files for every library and length of RSA keys. Format: // | ||
+ | * Updated | ||
+ | * https:// | ||
+ | |||
+ | **Random data generated by smartcards** | ||
+ | |||
+ | * Dataset: [[https:// | ||
+ | * Separate binary files for every smartcard obtained using RandomData.generate() on-card method. If more files for the same card were generated, appendix _0/1/2 is used. Format: // | ||
+ | * Dataset: [[https:// | ||
+ | * Separate binary files for every smartcard obtained using RandomData.generate() on-card method. If more files for the same card were generated, appendix _0/1/2 is used. Format: // | ||
+ | |||
+ | ===== Tooling ===== | ||
+ | * Tools for classification of single keys: https:// | ||
+ | * Tools for classification of large-scale datasets (e.g., IPv4 TLS scan, Certificate Transparency log...): https:// | ||
+ | * Detection tool for ROCA vulnerable keys: https:// | ||
+ | |||
+ | |||
+ | ===== Related research papers ===== | ||
+ | * The Million-Key Question – Investigating the Origins of RSA Public Keys (detection of bias in RSA keys, attribution of public key to generating library) [USENIX Security 2016] https:// | ||
+ | * The Million-Key Question - extended technical report [2016] https:// | ||
+ | * ROCA: Vulnerable RSA generation (CVE-2017-15361) [CCS 2017]: https:// | ||
+ | * Measuring Popularity of Cryptographic Libraries in Internet-Wide Scans [ACSAC 2017]: https:// | ||