Flaw found in SSH that might allow encrypted data to be accessed

Share this article:

Hackers may be able to access encrypted sensitive data due to a security flaw within the network protocol SSH.

 

Working with two PhD students from the Information Security Group, Martin Albrecht and Gaven Watson, Professor Kenny Paterson from Royal Holloway, University of London discovered a basic design flaw which opens up the possibility of limited plaintext recovery attacks against SSH.

 

It was previously believed that SSH was ‘regarded as impenetrable' as it aims to provide a secure channel between networked devices by encrypting and integrity-protecting data.

 

The team's attacks against the OpenSSH implementation of SSH exploits subtle differences in the way in which the software reacts when it encounters errors during cryptographic processing.

 

Professor Paterson said: “While the attacks have low success probabilities, it should be kept in mind that SSH is regarded as being a bullet-proof protocol and is widely used to protect remote logins to sensitive systems. So it's arguable that finding any chink in SSH's armour represents a significant result.

 

“The flaws that we found in SSH illustrate in a clear way the limitations that current theory has with respect to practice in the whole area of cryptographic protocol design. We need to develop better theory to help us study these kinds of attacks, and we need to develop better lines of communication to make sure that the theory gets translated into practice.”

 

Watson, who is sponsored by BT Research, said: “It is amazing to think that a short email from Kenny suggesting a paper I should take a look at, resulted in us researching exactly how SSH is implemented and ultimately led us to finding attacks against SSH.”

 

SSH is widely used by system administrators to allow them to securely access remote systems and to transfer sensitive data across the internet. OpenSSH is the leading SSH implementation, accounting for more than 80 per cent of SSH implementations on the internet.

 

Professor Paterson will present the findings at the IEEE Symposium on Security and Privacy in California, USA, on 18 May 2009.

Share this article: