Subscribe to our newsletters
Sign Up

The Hacker News — Cyber Security, Hacking, Technology News

Monday, August 29, 2016 Swati Khandelwal

github-ssl-certificate
A Chinese certificate authority (CA) appeared to be making a significant security blunder by handing out duplicate SSL certificates for a base domain if someone just has control over its any subdomain.

The certificate authority, named WoSign, issued a base certificate for the Github domains to an unnamed GitHub user.

But How? First of all, do you know, the traditional Digital Certificate Management System is the weakest link on the Internet today and has already been broken?

Billions of Internet users blindly rely on hundreds of Certificate Authorities (CA) around the globe to ensure the confidentiality and integrity of their personal data.

But, these CAs have powers to issue valid SSL cert for any domain you own, despite the fact you already have one purchased from another CA.

...and that's the biggest loophole in the CA system.

In the latest case as well, WoSign issued a duplicate SSL certificate for GitHub domains without verifying ownership of the base domain.

The incident was first publicly disclosed by British Mozilla programmer Gervase Markham on Mozilla's security policy mailing list saying the issue occurred over a year ago in July 2015 but went unreported.
"In June 2015, an applicant found a problem with WoSign's free certificate service, which allowed them to get a certificate for the base domain if they were able to prove control of a subdomain," Markham wrote in the mailing list.
According to Markham, an unnamed security researcher accidentally discovered this security blunder when trying to get a certificate for 'med.ucf.edu' but mistakenly also applied for 'www.ucf.edu' and WoSign approved it, handing over the certificate for the university's primary domain.

For testing purpose, the researcher also used this trick against Github base domains i.e. github.com and github.io, by proving his control over a user-based subdomain.

...And guess what? WoSign handed over the certificate for GitHub main domains, too.

The researcher reported this issue to WoSign by giving only the Github certificate as an example. Thus, the Chinese CA only revoked the GitHub certificate, despite revoking both the certificates.

Why Just One? It is quite possible that the CA company doesn't have any tracking ability to discover and revoke all mistakenly issued base certificates for other domains by self-investigation even after getting informed of the problem.

The researcher recently got in touch with Google and reported that the ucf.edu cert had still not been revoked almost a year later.

How to check whether a rogue cert for your domain has been issued to someone else, probably a malicious attacker?
what-is-certificate-transparency

Solution: Certificate Transparency or CT, a public service that allows individuals and companies to monitor how many digital security certs have secretly been issued for their domains.

Certificate Transparency requires CAs to declare publicly (to Certificate Log) every digital cert they have generated. Even WoSign has participated in CT.

Certificate Log offers you a way to look up all of the digital certificates that have been issued for your domain name.

Also read: Learn How Certificate Transparency Monitoring Tool Helped Facebook Early Detect Duplicate SSL Certs?

Although Certificate Transparency doesn't prevent CA from issuing forged certificates, it makes the process of detecting rogue certificates much easier.

Currently, Google, Symantec, DigiCert, and a few other CAs are hosting public CT logs.

You can try Google's Certificate Transparency Lookup Tool or Comodo's Certificate Transparency Search tool to check all certificates present in public Certificate Transparency logs that have been issued for your domain.

If you find a fraud certificate issued for your domain, report respective CA and address it immediately.

Monday, April 11, 2016 Mohit Kumar

certificate-transparency-log-monitoring-service
Earlier this year, Facebook came across a bunch of duplicate SSL certificates for some of its own domains and revoked them immediately with the help of its own Certificate Transparency Monitoring Tool service.

Digital certificates are the backbone of our secure Internet, which protects sensitive information and communication, as well as authenticate systems and Internet users.

The Online Privacy relies heavily on SSL/TLS Certificates and encryption keys to protect millions of websites and applications.

As explained in our previous article on The Hacker News, the current Digital Certificate Management system and trusted Certificate Authorities (CAs) are not enough to prevent misuse of SSL certificates on the internet.

In short, there are hundreds of Certificate Authorities, trusted by your web browsers and operating systems, that has the ability to issue certificates for any domain, despite the fact you already have one purchased from another CA.

An improperly issued certificate could be used in man-in-the-middle (MITM) attacks to compromise encrypted HTTPS connections, putting millions of users' privacy at risk.

To solve CA trust issues, Google had launched 'Certificate Transparency' project in the year 2013, enabling anyone to detect easily fraudulent and stolen certificates.

Explained — What is Certificate Transparency

what-is-certificate-transparency
Before proceeding you should read: What is Certificate Transparency and how it could help individuals and companies to quickly identify if any Certificate Authority has issued forged certificates for their domains, mistakenly or maliciously.

Are you Back? OK.

First, let's talk about how Facebook and other large organizations manage their multiple subdomains, blogs, marketing and events websites?

Typically, these sites are built and hosted separately from the company’s core platform. For example, the portal for Facebook Live (https://live.fb.com/) is hosted and managed by WordPress VIP services.

How Facebook Early Detected Duplicate SSL Certificates

facebook-forged-SSL-certificate
Facebook security team shared an incident with The Hacker News:

Earlier this year, Let's Encrypt issued some duplicate digital certificates signed for multiple fb.com subdomains, and the Facebook’s own-developed Certificate Transparency monitoring service immediately detected those certificates within an hour.

However, later the Facebook’s core security team found that those certificates were actually requested by one of its hosting vendors, employed for managing fb.com subdomains for several of its microsites.
"The vendor had authorization from another Facebook team to use Let's Encrypt, but that was not communicated to our security team," David Huang and Brad Hill, Security Engineers at Facebook explain in a blog post.
"The investigation was completed in a matter of hours, and the certificates were revoked. We found no indications that these certificates were ever controlled by unauthorized parties, and we were able to respond before they had been deployed on the production hosts."
That's how Certificate Transparency and its monitoring service helps Facebook to manage all of its active digital certificates efficiently and quickly respond to such threats.

It is worth noting that Certificate Transparency system does not come with any in-built monitoring, and alert service i.e. CT do not automatically notify domain owners if any new certificate (legitimate/forged) has been issued for their domain.

So, the domain owners are themselves responsible for remaining vigilant and checking the logs regularly. Otherwise, if no one checks, suspicious behaviors will go undetected.

However, the Facebook security team was able to immediately detect fraudulent certificates with the help of its experimental monitoring tool.

Also Read: How Certificate Transparency helps to Detect Forged SSL Certificates

How Does Facebook Certificate Transparency Monitoring Tool Work?


Simply… It continuously scans all public Certificate Transparency logs and alerts when any CA issues a new certificate for root domain and subdomains of facebook.com and fb.com.
"Facebook advocates for CT because it offers the ability to know the certificates a CT-enforcing browser will trust," the Facebook engineer says.

"We recommend other organizations start monitoring CT logs to understand issuance for domains they control."
Certificate Transparency overall is an open framework that involves browser vendors, monitors, as well as Certificate Authorities. Whereas, Facebook's CT Monitoring Service works independently and does not require additional participation from browser vendors or CAs.

Though Facebook's Certificate Transparency Monitoring service does not provide an option to revoke detected forged certificates, it provides information required to revoke rogue certs.

"The process for revoking them still requires that you ask the issuing CA to revoke them or ask the browser vendors to blacklist them," Facebook Spokesperson told The Hacker News via email.

On asking, Is it possible to monitor rogue certificates issued by CAs, who have not yet adopted CT, Facebook spokesperson replied:
"Technically, yes. Plenty of certs in the CT logs are uploaded by web crawlers (3rd-party) rather than by the issuing CAs themselves, so it is already possible to monitor certs issued by non-participating CAs."
For now, Facebook's Certificate Transparency Monitoring service is only being used for company's own domains.

But, Facebook confirmed that it would soon make its experimental Certificate Transparency Monitoring Service available to everyone for free in the coming months.
certificate-transparency-monitoring-service
Certificate Transparency project aims to mitigate flaws in the structure of the SSL certificate system by introducing an extra layer of verification.

With Certificate Transparency, Digital signature itself will not be enough, and the web server also has to prove that the certificate is registered with CT log before it can be trusted.

Despite Google's hard effort on pushing every CA to adopt Certificate Transparency, its adoption is still in a very early stage.

Facebook Spokesperson says:
Currently, Google's Root Certificate Policy requires that EV (Extended Validation) certificates must be logged to CT. This means that CAs must log EV certs to CT (whether they like it or not). Otherwise, their EV certs won't work in modern browsers. However, CAs can still issue DV (Domain Validation) certs without logging them to CT.
Chrome is working on a short-term solution with a new "expect-ct" feature that will allow sites to detect any certificates seen by browsers that are hidden from CT logs. Long term, browsers may require CT for all certs, which will address this problem.
The idea behind this design is to encourage all Certificate Authorities to log every certificate before issuing them.

Stay Tuned to our Facebook and Twitter Page. Stay Secure.

Monday, April 11, 2016 Swati Khandelwal

what-is-certificate-transparency-log
Do you know there is a huge encryption backdoor still exists on the Internet that most people don't know about?

I am talking about the traditional Digital Certificate Management System… the weakest link, which is completely based on trust, and it has already been broken several times.

To ensure the confidentiality and integrity of their personal data, billions of Internet users blindly rely on hundreds of Certificate Authorities (CA) around the globe.

In this article I am going to explain:
  • The structural flaw in current Digital Certificate Management system.
  • Why Certificate Authorities (CA) have lost the Trust.
  • How Certificate Transparency (CT) fixes issues in the SSL certificate system.
  • How to early detect every SSL Certificates issued for your Domain, legitimate or rogue?

First, you need to know Certificate Authority and its role:

Certificate Authority and its Role

Rogue-SSL-Certificate-Authority
A Certificate Authority (CA) is a third-party organization that acts as a central trusted body designed to issue and validate digital SSL/TLS certificates.

There are hundreds of such trusted organizations that have the power to issue valid SSL certificate for any domain you own, despite the fact you already have one purchased from another CA.

...and that's the biggest loophole in the CA system.

SSL Chain-of-Trust is Broken!

Last year, Google discovered that Symantec (one of the CAs) had improperly issued a duplicate certificate for google.com to someone else, apparently mistakenly.

This was not the first time when the power of CA was abused or mistakenly used to issue forged digital certificates that put millions of Internet users' privacy at risk.

In March 2011, Comodo, a popular Certificate Authority, was hacked to issue fraudulent certificates for popular domains, including mail.google.com, addons.mozilla.org, and login.yahoo.com.

In the same year, the Dutch certificate authority DigiNotar was also compromised and issued massive amounts of fraudulent certificates.

Since the chain of trust has been broken, millions of users were subject to the man-in-the-middle attack.

 Also Read: How CT Monitoring Tool Helped Facebook to Early Detect Fake SSL Certs

Further, the documents leaked by Edward Snowden revealed that the NSA (National Security Agency) intercepted and cracked massive numbers of HTTPS encrypted web sessions, indicating that some so-called trusted CAs are widely suspected to be controlled or under the authority of Governments.

What if, Government asks any of these ‘trusted-turn-evil’ certificate authorities to issue duplicate SSL certificates for secure and popular websites like, Facebook, Google or Yahoo?

That's not just my speculation; it has already happened in the past when Government organizations and state-sponsored hackers have abused trusted CAs to get fake digital certs for popular domains to spy on users.

Examples of Incidents that involved Governments

1.) In 2011, forged digital certificates issued by DigiNotar CA were used to hack Gmail accounts of approximately 300,000 Iranian users.

2.) In late 2013, Google discovered fake digital certificates for its domains were being used by the French government agency to perform man-in-the-middle attacks.
forged or fake SSL certificates
3.) In mid-2014, Google identified another incident: National Informatics Centre (NIC) of India was using unauthorized digital certificates for some its domains.
    You can see here, how easy it is to compromise the security of HTTPS websites protected by other well-behaved CAs.

    Do you still Blindly Trust CA Organizations?


    The DigiNotar and Comodo incidents worked as a wake-up call, ending an era of blindly trusting CAs to issue digital certificates.

    Problem: How are you supposed to check whether a rogue certificate for your domain has been issued to someone else, probably a malicious attacker?

    Solution: Certificate Transparency or CT, a public service that allows individuals and companies to monitor how many digital security certificates have been issued secretly for their domains.

    In 2013, Google started an industry-wide initiative, called Certificate Transparency (CT), an open framework to log, audit, and monitor certificates that CAs have issued.

    What is Certificate Transparency system?

    What is Certificate Transparency system
    The Certificate Transparency (CT) framework includes:
    • Certificate Logs
    • Certificate Monitors
    • Certificate Auditors
    Certificate Transparency requires CAs to publicly declare (to Certificate Log) every digital certificate they have generated.

    Certificate Log offers users a way to look up all of the digital certificates that have been issued for a given domain name.

    It is worth noting that Certificate Transparency model does not replace traditional CA-based authentication and verification procedure though it is an additional way to verify that your certificate is unique.

    Certificate logs have three important qualities:

    1. Append-only: Certificates records can only be added to a log. They can not be deleted, modified, or retroactively inserted into a log.

    2. Cryptographically assured: Certificates Logs use a special cryptographic mechanism known as ‘Merkle Tree Hashes’ to prevent tampering.

    3. Publicly auditable: Anyone can query a log and verify its behavior, or verify that an SSL certificate has been legitimately appended to the log.

    In CT, Digital Certificate contains a Signed Certificate Timestamp (SCT), which proves that it has been submitted to the log before being issued.

    Google, DigiCert, Symantec, and a few other CAs are currently hosting public logs.
    Facebook-Certificate-Transparency-Monitoring-Service
    Although CT does not prevent CA from issuing forged certificates, it makes the process of detecting rogue certificates much easier.

    Such transparency offers them the ability to quickly identify digital certificates that have been issued mistakenly or maliciously and help them mitigate security concerns, such as man-in-the-middle attack.

    Earlier this year, Certificate Transparency system and monitoring service helped Facebook security team to early detect duplicate SSL certificates issued for multiple fb.com subdomains.

    In a separate article, I have provided details about Facebook’s Certificate Transparency Monitoring Service that is designed to discover SSL issues instantly and automatically.

    Facebook confirmed to The Hacker News (THN) that it will soon make its experimental Certificate Transparency Monitoring Service available for free to the broader community in the coming months.

    Certificate Transparency Search tool


    Sounds interesting?

    Comodo has launched a Certificate Transparency Search tool that lists all issued certificates for any given domain name.

    Or, try Google's Certificate Transparency Lookup Tool to check all certificates present in public Certificate Transparency logs that have been issued for a given hostname

    If you find a fraud certificate issued for your domain, report respective CA and address it immediately.

    Newsletter Subscription

    Subscribe to our newsletter and get all latest hacking news, free eBooks delivered to your inbox.

    Join Over 450,000 Subscribers!