Practical Decryption exFiltration : Breaking PDF Encryption

Cite This

Files in this item

Files Size Format View

There are no files associated with this item.

MÜLLER, Jens, Fabian ISING, Vladislav MLADENOV, Christian MAINKA, Sebastian SCHINZEL, Jörg SCHWENK, 2019. Practical Decryption exFiltration : Breaking PDF Encryption. The 26th ACM Conference on Computer and Communications Security. London, Nov 11, 2019 - Nov 15, 2019. In: CCS ’19- Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security. New York:Association for Computing Machinery, pp. 15-29. ISBN 978-1-4503-6747-9. Available under: doi: 10.1145/3319535.3354214

@inproceedings{Muller2019Pract-50112, title={Practical Decryption exFiltration : Breaking PDF Encryption}, year={2019}, doi={10.1145/3319535.3354214}, isbn={978-1-4503-6747-9}, address={New York}, publisher={Association for Computing Machinery}, booktitle={CCS ’19- Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security}, pages={15--29}, author={Müller, Jens and Ising, Fabian and Mladenov, Vladislav and Mainka, Christian and Schinzel, Sebastian and Schwenk, Jörg} }

<rdf:RDF xmlns:dcterms="" xmlns:dc="" xmlns:rdf="" xmlns:bibo="" xmlns:dspace="" xmlns:foaf="" xmlns:void="" xmlns:xsd="" > <rdf:Description rdf:about=""> <dc:creator>Ising, Fabian</dc:creator> <dcterms:rights rdf:resource=""/> <void:sparqlEndpoint rdf:resource="http://localhost/fuseki/dspace/sparql"/> <dc:rights>terms-of-use</dc:rights> <dc:contributor>Ising, Fabian</dc:contributor> <dc:contributor>Schwenk, Jörg</dc:contributor> <dc:contributor>Mainka, Christian</dc:contributor> <dcterms:issued>2019</dcterms:issued> <dc:contributor>Müller, Jens</dc:contributor> <dc:date rdf:datatype="">2020-07-03T07:47:00Z</dc:date> <dc:contributor>Schinzel, Sebastian</dc:contributor> <dc:creator>Schwenk, Jörg</dc:creator> <dcterms:title>Practical Decryption exFiltration : Breaking PDF Encryption</dcterms:title> <dc:creator>Müller, Jens</dc:creator> <dc:contributor>Mladenov, Vladislav</dc:contributor> <bibo:uri rdf:resource=""/> <dcterms:abstract xml:lang="eng">The Portable Document Format, better known as PDF, is one of the most widely used document formats worldwide, and in order to ensure information confidentiality, this file format supports document encryption. In this paper, we analyze PDF encryption and show two novel techniques for breaking the confidentiality of encrypted documents. First, we abuse the PDF feature of partially encrypted documents to wrap the encrypted part of the document within attacker-controlled content and therefore, exfiltrate the plaintext once the document is opened by a legitimate user. Second, we abuse a flaw in the PDF encryption specification to arbitrarily manipulate encrypted content. The only requirement is that a single block of known plaintext is needed, and we show that this is fulfilled by design. Our attacks allow the recovery of the entire plaintext of encrypted documents by using exfiltration channels which are based on standard compliant PDF properties. We evaluated our attacks on 27 widely used PDF viewers and found all of them to be vulnerable. We responsibly disclosed the vulnerabilities and supported the vendors in fixing the issues.</dcterms:abstract> <dc:language>eng</dc:language> <dc:creator>Mladenov, Vladislav</dc:creator> <dcterms:available rdf:datatype="">2020-07-03T07:47:00Z</dcterms:available> <dspace:isPartOfCollection rdf:resource=""/> <dc:creator>Schinzel, Sebastian</dc:creator> <dc:creator>Mainka, Christian</dc:creator> <foaf:homepage rdf:resource="http://localhost:8080/jspui"/> <dcterms:isPartOf rdf:resource=""/> </rdf:Description> </rdf:RDF>

This item appears in the following Collection(s)

Search KOPS


My Account