CCC MD5 collision demo
The Computer Chaos Convention has spawned an example of how MD5 collisions can be used to create a rogue CA cert that has the same MD5 as a valid CA cert. The example is interesting but only affects CA Certs that rely on the MD5 checksumming algorithm for the digital signature. This is the minority [...]