I forgot your password: Randomness attacks against PHP applications∗

Proceedings of the 21st USENIX Security Symposium

Volumn , Issue , 2012, Pages 81-96

  Argyros, George ^a   Kiayias, Aggelos ^a,b  

^a UNIVERSITY OF ATHENS   (Greece)

^b UNIVERSITY OF CONNECTICUT   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

AUTHENTICATION; ENTROPY; LINEAR SYSTEMS; ONLINE SYSTEMS;

DERANDOMIZING; EXPERIMENTAL ANALYSIS; LARGE SPARSE LINEAR SYSTEMS; MERSENNE TWISTERS; PASSWORD RESET; TIME VARIABLE; WEAK RANDOMNESS; WEB APPLICATION;

RANDOM PROCESSES;

EID: 84910678443     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (17)

1. George Argyros and Aggelos Kiayias. I forgot your password: randomness attacks against php applications. http://crypto.di.uoa.gr/CRYPTO.SEC/Randomness_Attacks.html, 2012.
2. Unknown Author. openssl random pseudo bytes() painfully slow. PHP Bug # 51636, https://bugs.php.net/bug.php?id=51636, 2010.
3. Scott Contini and Igor Shparlinski. On stern’s attack against secret truncated linear congruential generators. In Colin Boyd and Juan Manuel González Nieto, editors, ACISP, volume 3574 of Lecture Notes in Computer Science, pages 52–60. Springer, 2005.
4. Stefan Esser. Joomla weak random password reset token vulnerability. SektionEins GmbH, Security Advisory 2008/09/11, 2008.
5. Stefan Esser. Lesser known security problems in php applications. In Zend Conference, 2008.
6. Stefan Esser. mt srand and not so random numbers. http://www.suspekt.org/2008/08/17/mt_srand-and-not-so-random-numbers/, 2008.
7. Oded Goldreich, Shafi Goldwasser, and Silvio Micali. How to construct random functions. J. ACM, 33(4):792–807, 1986.
8. Johan Håstad and Adi Shamir. The cryptographic security of truncated linearly related variables. In Robert Sedgewick, editor, STOC, pages 356–362. ACM, 1985.
9. Robert”Hackajar” Imhoff-Dousharm. Economics of password cracking in the gpu era. In DEFCON 19, 2011.
10. Samy Kamkar. phpwn: Attacking sessions and pseudo-random numbers in php. In Blackhat USA, Las Vegas, NV 2010, 2010.
11. Gregor Kopf. Non-obvious bugs by example. In 27th Chaos Communication Congress CCC, 2010.
12. Henrik Koy and Claus-Peter Schnorr. Segment lll-reduction of lattice bases. In Joseph H. Silverman, editor, CaLC, volume 2146 of Lecture Notes in Computer Science, pages 67–80. Springer, 2001.
13. A.K. Lenstra, H.W.jun. Lenstra, and Lászlo Lovász. Factoring polynomials with rational coefficients. Math. Ann., 261:515–534, 1982.
14. Arjen K. Lenstra, James P. Hughes, Maxime Augier, Joppe W. Bos, Thorsten Kleinjung, and Christophe Wachter. Ron was wrong, whit is right. IACR Cryptology ePrint Archive, 2012:064, 2012.
15. Makoto Matsumoto and Takuji Nishimura. Mersenne twister: A 623-dimensionally equidistributed uniform pseudo-random number generator. ACM Trans. Model. Comput. Simul., 8(1):3–30, 1998.
16. HD Moore and Valsmith. Tactical exploitation. In DEFCON 15, 2007.
17. Jacques Stern. Secret linear congruential generators are not cryptographically secure. In FOCS, pages 421–426. IEEE Computer Society, 1987.