With a 19 year old vulnerability, we were able to sign a message with the private key of Facebook. I'll show how we found one of the oldest TLS vulnerabilities in products of 10 different vendors and how we practically exploited it on famous sites. I'll also discuss how the countermeasures introduced back in TLS 1.0 and expanded over the years failed to prevent this and why RSA PKCS #1 v1.5 encryption should be deprecated. Finally, I'll present what related problems are still present and unfixed in many popular TLS libraries.

---

Speakers for Return of Bleichenbacher's Oracle Threat (ROBOT):

---

Metadata for Return of Bleichenbacher's Oracle Threat (ROBOT)

To be recorded: Yes

---

URLs for Return of Bleichenbacher's Oracle Threat (ROBOT)

Recording: https://www.youtube.com/watch?v=Cpt3Na0Kqr4

---

Schedule for Return of Bleichenbacher's Oracle Threat (ROBOT)

• Tuesday, Aug 21st, 2018, 14:00 (CEST) - Tuesday, Aug 21st, 2018, 15:00 (CEST) at Speakers Tent