How to generate RSA CSR vulnerable to ROCA with openssl?

Asked Nov 17 '17 at 15:41

Active Nov 17 '17 at 15:41

Viewed 168 times

I need to generate vulnerable to ROCA RSA CSR (ROCA vulnerability CVE-2017-15361). Is it possible to do it with openssl and how?

As I understood the point is in modulus, but what kind of modulus it should be and how can I pass it to openssl in generating keypair?

asked Nov 17 '17 at 15:41

irina

While there is [a way](https://stackoverflow.com/questions/19850283) to generate a key using user supplied numbers, I am not familiar enough with the specific properties of keys vulnerable to ROCA to provide an example. Perhaps reviewing the code from [this repository](https://github.com/crocs-muni/roca), which tests for ROCA vulnerable keys, might be of use. – AfroThundr Nov 27 '17 at 23:26

0 Answers0