CAPEC 475 Signature Spoofing by Improper Validation

Description

🇬🇧 English Original 🇮🇹 Italiano AI Translated

An adversary exploits a cryptographic weakness in the signature verification algorithm implementation to generate a valid signature without knowing the key.

AI Generated Translation

Un avversario sfrutta una vulnerabilità crittografica nell'implementazione dell'algoritmo di verifica della firma per generare una firma valida senza conoscere la chiave.

Mitigations

1

Use Programs And Products That Contain Cryptographic Elements That Have Been Thoroughly Tested For Flaws In The Signature Verification Routines.

Consequences

Consequence Information

{'impacts': [], 'impacts_translate': [], 'scopes': [], 'scopes_translate': []}

Relationships

Parent CAPECs

CAPEC-473