Slashdot Mirror

← Back to Stories (view on slashdot.org)

Researchers Break Digital Signatures For Most Desktop PDF Viewers (zdnet.com)

Posted by BeauHD on from the fake-it-till-you-break-it dept.

An anonymous reader quotes a report from ZDNet: A team of academics from the Ruhr-University Bochum in Germany say they've managed to break the digital signing system and create fake signatures on 21 of 22 desktop PDF viewer apps and five out of seven online PDF digital signing services. This includes apps such as Adobe Acrobat Reader, Foxit Reader, and LibreOffice, and online services like DocuSign and Evotrust --just to name the most recognizable names. The five-person research team has been working since early October 2018 together with experts from Germany's Computer Emergency Response Team (BSI-CERT) to notify impacted services. The team went public with their findings over the weekend after all affected app makers and commercial companies finished patching their products. In research published today, the Ruhr-University Bochum team described three vulnerabilities that they found in the digital signing process used by several desktop and web-based PDF signing services. Summarized, they are:

1. Universal Signature Forgery (USF) -- vulnerability lets attackers trick the signature verification process into showing users a fake panel/message that the signature is valid.
2. Incremental Saving Attack (ISA) -- vulnerability lets attackers add extra content to an already signed PDF document via the "incremental saving (incremental update)" mechanism, but without breaking the already-existing signature.
3. Signature Wrapping (SWA) -- vulnerability is similar to ISA, but the malicious code also contains extra logic to fool the signature validation process into "wrapping" around the attacker's extra content, effectively digitally signing the incremental update. Additional details about the three vulnerabilities are available in this PDF research paper [1, 2], this blog post, and this dedicated website.

28 comments

  1. Available in PDF? by PaulBu · · Score: 5, Funny

    And how then we are supposed to know that this is really from these researchers??? :)
    Paul B.

    1. Re: Available in PDF? by TimMD909 · · Score: 1

      Cuz it says so. Right on the PDF.

    2. Re: Available in PDF? by Narcocide · · Score: 2

      You guys both think you're funny, but you're actually highlighting the really horrifying facet of this problem here. You might be able to tell yourselves "It's fine I'll just use GPG too." but for the vast majority of the population and major institutions, security is effectively dead now, and they're trying to alter their business plans to adapt to making money in an environment where the forgone conclusions are that no system is secure-able and the only thing left with any value is your stolen identity.

    3. Re: Available in PDF? by Jakester2K · · Score: 1

      You guys both think you're funny, but you're actually highlighting the really horrifying facet of this problem here. You might be able to tell yourselves "It's fine I'll just use GPG too." but for the vast majority of the population and major institutions, security is effectively dead now, and they're trying to alter their business plans to adapt to making money in an environment where the forgone conclusions are that no system is secure-able and the only thing left with any value is your stolen identity.

      If they're just doing that now they're at least a decade too late.

  2. Get woke by Anonymous Coward · · Score: 0

    There is no digital security.

  3. What about Poppler? by Anonymous Coward · · Score: 0

    Didn't they bother to test it or was it not vulnerable?

    1. Re:What about Poppler? by Anonymous Coward · · Score: 0

      Replying to self: The FAQ says they didn't test it yet...

    2. Re:What about Poppler? by arglebargle_xiv · · Score: 4, Insightful

      I would be very surprised if, given enough time, they couldn't find vulns in any PDF reader there is. You're trying to sign a Turing machine that can do anything it wants, at some point that's going to include bypassing the signature guarantees. More generally, you can't safely sign active content if the content is hostile, or there's a means of getting it to pull in hostile content. XMLDsig is a prime example of this.

    3. Re:What about Poppler? by Anonymous Coward · · Score: 0

      if it's digital, and if there's sufficient interest or 'motivation' (whether it be for 'good' or 'evil'), it will be hacked by someone, somewhere. period. so, don't be too surprised.

    4. Re:What about Poppler? by technosaurus · · Score: 2

      Xpdf, evince, mupdf,... lots of open source viewers missing

    5. Re:What about Poppler? by tarokejihi · · Score: 1

      Indeed, adding to that list others ways of reading PDF: Okular, Firefox, Safari, Preview, ... I would also find interesting to know which PDF reading component or library is impacted and whether it is reused in several programs.

    6. Re: What about Poppler? by basecastula+ · · Score: 1

      I was wondering if Okular was affected.

    7. Re:What about Poppler? by amorsen · · Score: 2

      Xpdf, evince, mupdf,... lots of open source viewers missing

      The justification is this:

      "In the first phase of our security evaluation we concentrated on pdf viewer and online validation services, since they give a clear indication wether the attack was successful. To this point, we did not analyze PDF libraries like poppler (pdfsig) or pdfbox, since different configurations are possible. For example, the validation of a signed pdf can be executed with different calls in pdfbox."

      Of course they could have tested evince as a proxy for poppler. But they didn't.

      --
      Finally! A year of moderation! Ready for 2019?
    8. Re: What about Poppler? by rastos1 · · Score: 1

      Poppler is used in okular, evince, gimp ... ( source )

  4. My case in point. by Narcocide · · Score: 0

    (see previous post)

    1. Re:My case in point. by Jakester2K · · Score: 0

      There never was.

  5. who cares by Anonymous Coward · · Score: 0

    Signed PDF - huh? Does anyone even care about PDF or anything else from Adoobie Doo? Purveyors of Flash, the ultimate, long-surviving malware vector and pain-in-the-****. PDF "Reader" that is a heap of spyware under one roof, up to and including built-in mail-home "features", etc, etc.

    1. Re:who cares by Anonymous Coward · · Score: 0

      Evidently they do care. Also would you submit to sending pictures of your anus?

  6. This is important by Anonymous Coward · · Score: 0

    "The reason why researchers were willing to wait months so all products would receive fixes is because of the importance of PDF digital signatures."

    Very important.

    Meanwhile, I didn't realize this feature existed. If I even see a PDF it's because someone else chose to obfuscate text using that particular format.

    1. Re:This is important by Anonymous Coward · · Score: 0

      Meanwhile, I didn't realize this feature existed. If I even see a PDF it's because someone else chose to obfuscate text using that particular format.

      And yet you're posting here in HTML, which obfuscates text, on a digital medium that further obfuscates text by storing it in ones and zeros.

  7. Ghostscript by Anonymous Coward · · Score: 0

    And I was wondering, why Ghostscript had two updates with so short timespan.

  8. Adobe 9 for Linux is the only secure reader? by Anonymous Coward · · Score: 1

    According to the article, Adobe 9 for Linux is the only secure reader. TLDR, don't run windows or mac!

  9. Lawyers bill you more by Anonymous Coward · · Score: 0

    Lawyers love PDF and bitmaps because you know, they are more secure. Rather than fire ff a word document - they bilk their clients and call it photocopy or electronic file fees, sometimes at $1 per page.

    Demand your lawyer not PDF everything.

    1. Re: Lawyers bill you more by Anonymous Coward · · Score: 0

      Lawyers and everybody else loves PDFs because it's the only thing that will reliably the same on any device and requires a non trivial amount of effort to modify (i.e. it can't happen by accident).

  10. Comment by WallyL · · Score: 1

    So, can somebody who RTFA or otherwise knows this topic, did they crack PGP or are we still good here?

    1. Re:Comment by Anonymous Coward · · Score: 0

      They are adding stuff to signed PDFs, so that the displayed pages show something else, but the signature verification still only looks at the old contents.

  11. Digital signature by KishankantYadav · · Score: 1

    How can i validate my class 3 digital signature online