Author Topic: Digital Signature Hacks  (Read 6029 times)

Offline DonZ

  • Comodo's Hero
  • *****
  • Posts: 430
Digital Signature Hacks
« on: July 19, 2010, 03:45:35 PM »
Now that digital signatures have been hacked in the wild, I am curious as to Comodo's response to this.

I am specifically concerned about Comodo's CIS "whitelisting" capability. I assume they use digitial signatures in this feature to verifiy applications?

In particular does Defense+ use digital signatures to verify "safe" applications?

Offline SiberLynx

  • Comodo's Hero
  • *****
  • Posts: 2178
Re: Digital Signature Hacks
« Reply #1 on: July 21, 2010, 06:17:44 AM »
Now that digital signatures have been hacked in the wild, I am curious as to Comodo's response to this.

I am specifically concerned about Comodo's CIS "whitelisting" capability. I assume they use digitial signatures in this feature to verifiy applications?
In particular does Defense+ use digital signatures to verify "safe" applications?
Hi DonZ ,
Please read this & below & some other threads re:the matter  
https://forums.comodo.com/general-discussion-off-topic-anything-and-everything/why-cis-premium-is-superior-t57616.0.html;msg404852#msg404852

Many new "funny" things are coming  ;)... rest assured

Cheers!
XP Pro, SP3 (32bit), admin; CIS 3.14.130099.587 (firewall only; Proactive with Defense+)- that is the only Comodo's thing I need; Emsisoft Anti-Malware
Win 7 x64, admin (UAC off); Comodo Firewall 3.14; Emsisoft Anti-Malware

Offline DonZ

  • Comodo's Hero
  • *****
  • Posts: 430
Re: Digital Signature Hacks
« Reply #2 on: July 21, 2010, 05:21:09 PM »

Offline SiberLynx

  • Comodo's Hero
  • *****
  • Posts: 2178
Re: Digital Signature Hacks
« Reply #3 on: July 21, 2010, 06:39:25 PM »
Perhap Melih didn't see this: http://www.sophos.com/blogs/sophoslabs/?p=10078
Thanks for the reply, DonZ

Well, I am sure Melih have seen that already  :) ... but anyway thanks for the link

It's just interesting that questioning of "dig sigs" & creating huge trusted list  ??? was done way & long before ... but  88)

Cheers!
XP Pro, SP3 (32bit), admin; CIS 3.14.130099.587 (firewall only; Proactive with Defense+)- that is the only Comodo's thing I need; Emsisoft Anti-Malware
Win 7 x64, admin (UAC off); Comodo Firewall 3.14; Emsisoft Anti-Malware

Offline Melih

  • CEO - Comodo
  • Administrator
  • Comodo's Hero
  • *****
  • Posts: 13444
    • Video Blog
Re: Digital Signature Hacks
« Reply #4 on: July 21, 2010, 08:06:20 PM »
unfortunately Verisign (and Equifax, which is also a Verisign owned Root Key under Geotrust) are notoriously slow at responding. just check www.ccssforum.com malware section to see...

Melih

 

Seo4Smf 2.0 © SmfMod.Com | Smf Destek