Armadillo ECDSA-113

mr.exodia · #1 08-18-2017, 05:09

Very interesting! I could integrate this in my Armadillo Key Tool (https://github.com/mrexodia/akt)...

The previous attack (as far as I know) was on a weak implementation by Baboon (http://baboon.rce.free.fr/index.php?post/2010/09/04/Armadillo-mange-des-ours-en-slips) but I don't think a brute force approach was tested in public.

You can get the best target by making your own unpackme, or try Armadillo itself...

The latest public (and custom) v9.60 uses:

Code:

  Short V3 Level 10:
    Chk : B5EC5364
    Sym: BDA4FA1C
  BaseP : 1570789295 (Size=50, Diff=112C, MD5=0F656698)
  Pub.X : 2127081270816270912006137526418476
  Pub.Y : 7206819234412870204027887633390168

Feel free to ping me if you need something...

contextrax · #2 08-18-2017, 06:30

Quote:

Originally Posted by mr.exodia

You can get the best target by making your own unpackme, or try Armadillo itself...

I would not find it to interested breaking my own ecc parameters

Quote:

Originally Posted by mr.exodia

The latest public (and custom) v9.60 uses:

Code:

  Short V3 Level 10:
    Chk : B5EC5364
    Sym: BDA4FA1C
  BaseP : 1570789295 (Size=50, Diff=112C, MD5=0F656698)
  Pub.X : 2127081270816270912006137526418476
  Pub.Y : 7206819234412870204027887633390168

Feel free to ping me if you need something...

This is the real ecc parameters for armadillo itself?
I thought armadillo was obsolete

contextrax · #3 08-18-2017, 18:10

Quote:

Originally Posted by mr.exodia

Very interesting! I could integrate this in my Armadillo Key Tool (https://github.com/mrexodia/akt)...

Damn your tool roxx. I spend countless of hrs extracting the crypto params that your tool can do with just one click

Love it.

(Hope I wont get banned for this reply)

contextrax · #4 08-20-2017, 20:15

Quote:

Originally Posted by mr.exodia

Code:

  Short V3 Level 10:
    Chk : B5EC5364
    Sym: BDA4FA1C
  BaseP : 1570789295 (Size=50, Diff=112C, MD5=0F656698)
  Pub.X : 2127081270816270912006137526418476
  Pub.Y : 7206819234412870204027887633390168

I see there are many more of these certs in Armadillo. Did you verify that this is the correct ones to break?

I calculated the base point from basepoint init using the armadillo keygen source "KeyMakerV420j.c".
Don't know if this is the latest code so if you could check and see if they matches yours.

Code:

Target: "Armadillo v9.64 Public"

Optimal Normal Base Type II
BasepointInit: 1570789295 (0x5DA057AF)
ONB2 Base.X  : 4089747062247003654720736468506441
ONB2 Base.Y  : 10111618751385367037406972360317044
ONB2 Pub.X   : 2127081270816270912006137526418476
ONB2 Pub.Y   : 7206819234412870204027887633390168

And here they are in polynomial base if anyone wants to play with them

Code:

Polynomial base (t^113 + t^9 + 1)
Poly Base.X  : 1C1A1BB26597755705B9D996CC209
Poly Base.Y  : 7229DDE3CDDFAC01016B1E84D648
Poly Pub.X   : 4CA5BE7E12F5B8C8CAA93744E99
Poly Pub.Y   : 788BCC901CC832FAA020610A14EB

Thread Tools
Show Printable Version Email this Page
Display Modes
Switch to Linear Mode Hybrid Mode Switch to Threaded Mode

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Replacing ECDSA in Target (arma)	Mynotos	General Discussion	3	11-22-2019 00:49

The Following 2 Users Say Thank You to mr.exodia For This Useful Post:
contextrax (08-18-2017)

The Following User Says Thank You to contextrax For This Useful Post:
the_beginner (04-21-2019)

The Following 2 Users Say Thank You to contextrax For This Useful Post:
Apuromafo (03-05-2019), mr.exodia (08-18-2017)

The Following 2 Users Say Thank You to contextrax For This Useful Post:
Apuromafo (03-04-2019), tonyweb (08-26-2017)