Certs revoked, but where are the updates?
By John Leyden 15 Nov 2017
The impact of a recently discovered cryptographic vulnerability involving smartcards is causing issues in Spain similar to those previously experienced in Estonia.
RSA keys produced by smartcards, security tokens, laptops and other devices using cryptography chips made by Infineon Technologies are weak and crackable – and therefore need to be regenerated with stronger algorithms. The security weakness arises from faulty crypto libraries bundled with Infineon TPMs – AKA trusted platform modules. Vendors were given time to address the issue before security researchers went public last month.
Full Article.
