MASWE-0009: Improper Cryptographic Key Generation

Content in BETA

This content is in beta and still under active development, so it is subject to change any time (e.g. structure, IDs, content, URLs, etc.).

Send Feedback

Overview

In cryptography, the security strength is heavily influenced by the methods used to generate cryptographic keys. One critical aspect is the key size, also known as the key length, which is measured in bits and must comply with the latest security best practices. Encryption algorithms that use insufficient key sizes are vulnerable to attack, while longer keys typically result in more complex encryption.

However, even with a sufficiently large key size, the security of the encryption can be compromised if the key generation process is flawed. Failing to use strong, cryptographically secure pseudorandom number generators (CSPRNGs) with sufficient entropy can generate predictable keys that are easier for attackers to guess or reproduce and that are susceptible to repetitive patterns.

Impact

• Risk of Brute-Force Attacks: Improper key generation, whether due to shorter key length or predictable random number generator (PRNG) inputs, increases the risk of brute-force attacks. Attackers can more easily guess or systematically try possible keys until they find the correct one.
• Loss of Confidentiality: Encryption relies on strong keys to maintain the confidentiality of sensitive data. Seed values with insufficient entropy can allow attackers to decrypt and access confidential information, leading to unauthorized disclosure and potential data breaches.
• Loss of Integrity: Improper key generation can compromise data integrity, allowing attackers to exploit vulnerabilities and potentially alter or tamper with the information without detection.

Modes of Introduction

• Insufficient Entropy: Using a source of randomness with insufficient entropy can lead to predictable cryptographic keys.
• Insufficient Key Length: Cryptographic keys that are too short provide inadequate security. For example, keys shorter than recommended lengths for modern algorithms may be vulnerable to brute force attacks, making them easier for attackers to break.
• Using Risky or Broken Algorithms: Relying on deprecated, risky or inherently broken cryptographic algorithms can result in the generation of weaker keys. As these algorithms often have vulnerabilities or support shorter key lengths, they are more susceptible to modern attacks, compromising the overall security of the app.

Mitigations

• Always use modern, well-established cryptographic libraries and APIs that follow best practices for entropy generation and key management.
• Ensure that key lengths meet or exceed current standards for cryptographic security, such as 256-bit for AES encryption and 2048-bit for RSA (considering quantum computing attacks). See "NIST Special Publication 800-57: Recommendation for Key Management: Part 1 – General" and "NIST Special Publication 800-131A: Transitioning the Use of Cryptographic Algorithms and Key Lengths" and "BlueKrypt's Cryptographic Key Length Recommendation" for more information on cryptographic key sizes.

Tests

MASTG-TEST-0208: Insufficient Key Sizes MASTG-TEST-0209: Insufficient Key Sizes