Google, Yahoo and Microsoft fix email security flaw

The companies, which had been using insufficiently long keys to sign emails coming from their domains, have brought in longer keys after being warned of a serious spoofing risk.
Written by David Meyer, Contributor

Google, Yahoo and Microsoft have all fixed a vulnerability in their email-signing mechanisms that made it possible for people to spoof messages coming from their systems.

The problem was that they were using keys of less than 1,024 bits in length in their implementations of the DomainKeys Identified Mail (DKIM) mechanism. Some consider even 1,024-bit RSA keys as being too easy to crack, but shorter keys are definitely too insecure for serious use these days, as the computational power available in the cloud makes it relatively easy to crack them by brute force.

According to a US-CERT note released on Wednesday, Google, Microsoft and Yahoo were all using too-short RSA signing keys, and all three vendors have now fixed the problem after being notified.

The vulnerability was first reported by a mathematician named Zachary Harris, who received an email purporting to come from a Google headhunter. The email's header information, which proves who sent it, apparently looked in order, but Harris noticed that a weak DKIM key was being used.

According to an account in Wired, Harris cracked the key and emailed Google founders Larry Page and Sergey Brin, thinking that this may all have been an elaborate recruitment test. He got no reply, but saw that Google subsequently started using 2,048-bit keys.

Harris also said other companies such as eBay and Twitter are using 512-bit keys, and financial services such as PayPal and HSBC are using only 768-bit keys.

According to the US-CERT note, "system administrators should replace all RSA signing keys fewer than 1,024 bits and configure their systems to not use or allow testing mode on production servers".

ZDNet has contacted both PayPal and HSBC to ask for comment, and will add that in if and when it arrives.

Editorial standards