9004

Problems of information security. Computer systems

Проблемы информационной безопасности. Компьютерные системы

2071-8217

10.48612/jisp/8rnd-8vte-brfu

On the practicality of attacks on electronic document management systems when signature keys are jointly used in TLS 1.2

О практической реализуемости атак на системы электронного документооборота при использовании ключа подписи в протоколе TLS 1.2

0000-0002-6674-4374

Mesengiser

Yakob

myy@cryptopro.ru

0000–0002–1279–0359

Alekseev

Evgeny

alekseev@cryptopro.ru

0000-0003-4000-1174

Kyazhin

Sergey

snkyazhin@mephi.ru

0000-0001-8586-5959

Smyshlyaev

Stanislav

svs@cryptopro.ru

Crypto-Pro LLC National Research Nuclear University MEPhI (Moscow Engineering Physics Institute)

26 12 2025

4 89 101

Prohibiting the use of identical keys in different cryptographic algorithms and protocols is a prerequisite for the security of a wide variety of information systems. However, developers of such systems sometimes ignore this requirement since underestimate the threat. This paper addresses practical attack scenarios against electronic document management systems in a situation where the signature key is also used for client authentication in the TLS 1.2 protocol. As a result of one of the attacks, an adversary forms a signature for a selected PDF file up to 16 MB in size, which is correctly displayed by a number of popular applications. An analysis of the reasons for the feasibility of these attacks leads to the conclusion that a property exists in the TLS 1.2 protocol that leads to a vulnerability when the client authentication key is used as a signature key in electronic document management systems.

Cryptography digital signature TLS authentication joint using of a single key