English
German
French
Spanish
Russian
Romanian
Comodo SSL Certificates Safe from Black Hat Briefings Vulnerabilities
Moxie Marlinspike's "Null Character attack" tricks a vulnerable CA into issuing a certificate that includes a \0 character (NULL) within the domain name. This allows the attacker to fool a vulnerable web browser into trusting the certificate for a domain name that the CA did not validate. Comodo's CA systems have never been vulnerable to this attack.
Dan Kaminsky's "MD2 vulnerability" warns that pre-image attacks against the MD2 hash algorithm are likely to become possible within months. This would allow an attacker to construct trusted certificates that appear to have been issued by a trusted CA certificate that has an MD2-based digital signature. Comodo have never used the MD2 algorithm, so our CA systems and our customers' certificates will not be affected.
"Comodo is proud to announce that none of its certificates are vulnerable to either threat," said Melih Abdulhayoglu, CEO and Chief Security Architect of Comodo, the largest issuer of high-assurance digital certificates. "The study is interesting, but, fortunately, it does not apply to Comodo's certificates."
About the Black Hat Briefings
The Black Hat Briefings is a regular industry gathering of computer security and government professionals, as well as respected hackers. http://www.blackhat.com/
About Comodo
Comodo is a leading brand in Internet security, covering an extensive range of security software and services, including digital certificates, PCI scanning, desktop security, online faxing, and computer technical support services.
Business and consumers worldwide recognize Comodo as standing for security and trust. Comodo products secure and authentic online transactions for over 200,000 business and have more than 18,000,000 installations of Comodo desktop security software, including an award-winning firewall and antivirus software offered at no charge.
The Comodo family of companies is committed to continual innovation, core competencies in PKI, authentication, and malware detection and prevention. As a catalyst in eliminating online crime, the companies' mission is to establish a Trusted Internet.
With US headquarters overlooking Manhattan on New Jersey's waterfront and global resources in United Kingdom, China, India, Ukraine, and Romania, Comodo products offer intelligent security, authentication, and assurance.
Comodo -- Creating Trust Online®. For more information, visit Comodo's website.
Company:
comodo
Related downloads
-
Comodo i-Vault
Password management secure password storage
-
Comodo Backup 4.0.7.14
Backup fast, Restore easy, Files secure!
-
Comodo Firewall 5.9
Free Comodo Firewall
-
Comodo Dragon 17.0
The Web is what you make of it!
-
Comodo Antivirus 5.9
Free Comodo Antivirus
-
Comodo Unite 3.0.2.0
Comodo Unite
-
Comodo Internet Security 5.9
Award-winning Comodo Firewall, Antivirus Free
-
Comodo Programs Manager 1.3.2.30
Programs and Features made easy!
-
Comodo Online Storage 2.0.7.14
Your data is safe with Comodo Online Storage!
-
Comodo System Cleaner Portable 1.0
Comodo System Cleaner Portable
Related press releases
-
Comodo SSL Certificates Safe from Black Hat Briefings Vulnerabilities
[2009-08-17 23:58:37]
Jersey City, NJ, August 18, 2009 - Certificates issued by Comodo are prey neither to the "Null Character attack" nor to the "MD2 vulnerability" recently revealed at the Black Hat Briefings in Las Vega... -
Comodo Ranks # 1 Provider of High Assurance Certificates
[2010-07-23 04:15:27]
Jersey City, NJ, July 22, 2010 - Comodo announced today that it has a leading market share of High Assurance SSL certificates, those with business validation, based on its recent survey of 4 million c... -
Comodo SSL Certificates Not Affected By MD5 Flaw
[2009-01-08 05:28:16]
Jersey City, NJ, January 8, 2009 - Comodo CA Limited, the second-largest issuer of high-assurance digital certificates, today announced that none of its certificates is created using the MD5 hash func... -
Comodo Dragon Protects Online Privacy
[2010-02-16 03:20:48]
Jersey City, NJ, February 11, 2010 - Comodo, a leader in cybersecurity, announces its new Internet browser, Comodo Dragon. Like Google Chrome, Comodo Dragon is constructed on the open-source Chromium ... -
Comodo Email Certificates are Vista and Firefox Compatible
[2007-07-25 23:51:04]
Comodo Email Certificates are Vista and Firefox Compatible New compatibility makes these Email certificates available to many new users and remains free of charge Jersey City, NJ (July 26, 2007) -... -
Comodo to Continue Free Email Certificates for Personal Use
[2009-10-21 00:00:46]
Jersey City, NJ, October 20, 2009 - "Comodo continues its commitment to free email security," said Abdulhayoglu, the Chief Security Architect at Comodo. "We care for end users. We won't abandon them."... -
Comodo Digital Certificate Reporting Simplifies Inventory
[2009-04-07 03:19:01]
Jersey City, NJ, April 07, 2009 - Some of the world's largest companies still use spreadsheets to track their inventories of digital certificates. Even if IT departments use purpose-built certificate ... -
HostDime Offers Full Line of Comodo Certificates
[2009-12-02 02:23:08]
Jersey City, NJ, December 02, 2009 - HostDime customers in the US, Israel, India, the UK and Latin America can now benefit not only from the HostDime's flagship offering: the flexibility and control o... -
Comodo Offers FREE HackerGuardian Subscription for One Full Year With Purchase o...
[2010-09-14 04:13:00]
Comodo Offers FREE HackerGuardian Subscription for One Full Year With Purchase of SSL Certificate HackerGuardian for Everyone –Comodo’s Exclusive One Time Offer JERSEY CITY, NJ, September 14... -
Comodo Announces Agreement with SWsoft to Deliver Well-Rounded Portfolio of Infr...
[2007-09-16 12:53:44]
JERSEY CITY, N.J., September 14, 2007 - Comodo, a global Certification Authority, today announced they have entered into an agreement whereby SWsoft will become a reseller of Comodo security solutions...
Featured
Wise PC Engineer
Wise PC Engineer is a must-have system tune up utility for Windows OS. With it's thorough, safe and fast scanning engine, even the novice can easily keep the Windows Operating System secured, clean, fast.
Wise PC Engineer is a must-have system tune up utility for Windows OS. With it's thorough, safe and fast scanning engine, even the novice can easily keep the Windows Operating System secured, clean, fast.
AmphiSoft Photo Tinter
Photoshop plugin for copying photo tone from toned black and white photos to new images. Filter extract and save tone map of your favorite masterpiece and allow you to reapply it to another photo.
Photoshop plugin for copying photo tone from toned black and white photos to new images. Filter extract and save tone map of your favorite masterpiece and allow you to reapply it to another photo.
SecuKEEPER
Are your data safe?SecuKEEPER is an ALL-IN-ONE file encryption software design to secure your files and folders from prying eyes, which designing four protection method(hide/rapidly lock/encrypt/private coffer). Furthermore offer Password Manager.
Are your data safe?SecuKEEPER is an ALL-IN-ONE file encryption software design to secure your files and folders from prying eyes, which designing four protection method(hide/rapidly lock/encrypt/private coffer). Furthermore offer Password Manager.