Slashdot Mirror

← Back to Stories (view on slashdot.org)

XML Encryption Broken, Need To Fix W3C Standard

Posted by timothy on from the let's-keep-this-in-the-open dept.

gzipped_tar writes "Researchers from Ruhr University Bochum demonstrated the insecurity of XML encryption standard at ACM Conference on Computer and Communications Security in Chicago this week. 'Everything is insecure,' is the uncomfortable message from Bochum. As pointed out by the Ars Technica article, XML Encryption is used widely as part of server-to-server Web services connections to transmit secure information mixed with non-sensitive data, based on cipher-block chaining. But it is apparently too weak, as demonstrated by Juraj Somorovsky and Tibor Jager. They were able to decrypt data by sending modified ciphertexts to the server by gathering information from the received error messages. The attack was tested against a popular open source implementation of XML Encryption, and against the implementations of companies that responded to the responsible disclosure — in all cases the result was the same: the attack worked. Fixing the vulnerability will require a revision of the W3C XML encryption standard, Somorovsky said. The researchers informed all possibly affected companies through the mailing list of W3C, following a clear responsible disclosure process."

7 of 80 comments (clear)

  1. Why is there such a thing as XML encryption? by SpazmodeusG · · Score: 4, Insightful

    Use encryption algorithms to encrypt data.

    Use document formats to contain data.

    But don't go creating specific encryption algorithms for specific document formats. That's just reinventing the wheel.

    1. Re:Why is there such a thing as XML encryption? by Schmorgluck · · Score: 4, Insightful

      XML is very useful as an unified markup language. I'm fond of its versatility, relative legibility, and yeah, the various applications that are made to apply to itself especially Schema and XSLT. But it's not relevant to everything, and theres a fad to use it even where it's stupid.

      Some times ago, in GNU/Linux Magazine France, someone who signed "Jean-Pierre Troll" wrote an article to protest against the tendancy to put XML everywhere. He for example rightfully shot down XML as a programming language, and as a way to carry binary data. Even for the transmission of structured text data, JSON is a better solution in most cases.

      Said Jean-Pierre Troll wrote that the best reason to use XML is to be able to transform the data with XSLT. I tend to agree. If this possibility is not to be considered, then XML may not be the best solution.

      --
      There's nothing like $HOME
  2. The abstract of the article is here by fgrieu · · Score: 5, Informative

    http://dl.acm.org/citation.cfm?id=2046756

    "..we describe a practical attack on XML Encryption, which allows to decrypt a ciphertext by sending related ciphertexts to a Web Service and evaluating the server response. We show that an adversary can decrypt a ciphertext by performing only 14 requests per plaintext byte on average."

    Impressive!

  3. Re:....What??? by EdIII · · Score: 5, Interesting

    I was thinking the exact same thing. W.T.F....

    XML is used in my projects all the time to transfer data around between processes but security is typically provided by SSL via HTTPS. Some of the extra security we have added is by encrypting specific fields, and we do that with AES 256.

    Till today I did not even know there *was* an encryption standard for XML docs and I still don't know *where* to use it. Is it built in to PHP? Is it part of the standard parsers out there?

    My biggest question is why was the standard even developed in the first place and who actually uses it?

  4. Re:Never was a good idea by Darinbob · · Score: 4, Funny

    No, it's more like alcohol in that sense. The more you use the less you worry about the underlying problems.

  5. Re:....What??? by dkf · · Score: 4, Informative

    Till today I did not even know there *was* an encryption standard for XML docs and I still don't know *where* to use it. Is it built in to PHP? Is it part of the standard parsers out there?

    It's certainly not in a majority of them.

    My biggest question is why was the standard even developed in the first place and who actually uses it?

    It was developed to allow a document to be handed round with parts of it shrouded so that only one individual (or service) can read it while still allowing other parts of the document to be read by anyone. AIUI, it's relevant in complex uses of SOAP where you've got a complex message bus in use and where the endpoints don't particularly trust the conveying services. Some of the B2B stuff is a bit that way inclined. I've never needed it myself though (unlike XML Signature, which is closely related and much more relevant since guaranteeing document integrity makes a lot of sense for things like invoices).

    I bet IBM has a full implementation of this. It's exactly the heavyweight thing that's right up their street.

    --
    "Little does he know, but there is no 'I' in 'Idiot'!"
  6. Padding Oracle by cachimaster · · Score: 5, Informative

    For those without access to the ACM paywall, this is an extension of Rizzo-Duong practical padding oracle attack published last year (citation needed in the ACM paper?)