Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

"Authentic" license key forgery vulnerability #377

Closed
ezekg opened this issue Oct 1, 2020 · 2 comments · Fixed by #419
Closed

"Authentic" license key forgery vulnerability #377

ezekg opened this issue Oct 1, 2020 · 2 comments · Fixed by #419
Labels
security: vulnerability

Comments

@ezekg
Copy link
Member

ezekg commented Oct 1, 2020
edited
Loading

There is a possible vulnerability where if an account is simply validating a license key's signature "authenticity" and not utilizing the dataset within the license key at all, an attacker could potentially utilize a signed response payload and signature from a public endpoint, such as /validate-key, to forge a "license key" that would pass the cryptographic verification.

  1. Perform a call to /validate-key with a bogus license key
  2. Extract response body and base64 encode it
  3. Extract signature
  4. Combine encoded response and signature: BODY.SIG to craft a "license key"
  5. Utilize the key within the software that only checks for license authenticity
@ezekg
Copy link
Member Author

ezekg commented Oct 1, 2020
edited
Loading

Possible remediation steps without having to manage separate keypairs for each signing subject:

  • Deprecate X-Signature header in favor of X-Keygen-Signature. Remove legacy signature header for all accounts moving forward, add an upgrade path for legacy accounts. (See: Stripe-Signature header)
    1. Generate signature by signing the following contents: authorization: Bearer admin-xxx\nmethod: GET\nuri: /v1/accounts\ndate: Fri, 09 Oct 2020 14:29:55 GMT\nbody: Zm9vCg== (or similar) [nonce?]
    2. Allow Ed25519 (default), RSA-2048-PKCS1-PSS and RSA-2048-PKCS1 in X-Keygen-Accept-Signature header.
  • Prefix license key and activation proof data before signing? E.g. sign('key:Zm9vCg=='), sign('proof:Zm9vCg==')
    1. Deprecate v1 schemes in favor of v2 versions which utilize the new prefixes

ezekg added a commit that referenced this issue Oct 1, 2020
@ezekg
add prefix to activation proofs
b29e376 
- related to #377
ezekg added a commit that referenced this issue Oct 2, 2020
@ezekg
add v2 schemes for pkcs1 and pkcs1 pss schemes
7f902f8 
- related to #377
This was referenced Oct 2, 2020
Merged
Merged
ezekg added a commit that referenced this issue Oct 2, 2020
@ezekg
add v2 schemes for pkcs1 and pkcs1 pss schemes
9d1faab 
- related to #377
ezekg added a commit that referenced this issue Oct 2, 2020
@ezekg
add prefix to activation proofs
71c9290 
- related to #377
@ezekg ezekg mentioned this issue Oct 2, 2020
Closed
@ezekg ezekg changed the title Use separate private keys for license keys, activation proofs and request/response signatures "Authentic" license key forgery vulnerability Oct 2, 2020
@ezekg
Copy link
Member Author

ezekg commented Mar 26, 2021

Let's include #362 in this convo so that it doesn't get lost.

@ezekg ezekg mentioned this issue Jun 7, 2021
Merged
@ezekg ezekg closed this as completed in #419 Jun 9, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
security: vulnerability
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Add improved response signatures keygen-sh/keygen-api
1 participant
@ezekg