logo
allArticlesConferencesPresentations

How to Break PDF Encryption

Conference:  BlackHat EU 2019

2019-12-05

Summary

PDF documents are vulnerable to diode exfiltration attacks due to partial encryption and the use of legacy crypto like unauthenticated CBC. These vulnerabilities can be exploited through gadgets and hyperlinks, allowing for the leakage of plaintext and other sensitive information.
  • PDF documents allow for partial encryption, leading to diode exfiltration attacks
  • Legacy crypto like unauthenticated CBC is used in PDF documents, making them vulnerable to plaintext leakage
  • Gadgets and hyperlinks can be used to exploit these vulnerabilities and leak sensitive information
The presenter demonstrated how a script could be used to automatically extract plaintext from a PDF document using gadgets and hyperlinks. They also discussed the issues with using hyperlinks, such as the short length of gadgets and the random bytes in the URL that can break the link. The presenter also explained how compression can be used to hide plaintext in PDF documents, but it can also make exfiltration more complicated.

Abstract

PDF is among the most widely used document formats worldwide. To ensure confidentiality, PDF supports document encryption. In this talk, we analyze PDF encryption and show two novel techniques for breaking the confidentiality of encrypted documents. First, we abuse the PDF feature of partially encrypted documents to wrap the encrypted part of the document within attacker-controlled content and therefore, exfiltrate the plaintext once the document is opened by a legitimate user. Second, we abuse a flaw in the PDF encryption specification to arbitrarily manipulate encrypted content. The only requirement is one single block of known plaintext, which we show is fulfilled by design. Our attacks allow the recovery of the entire plaintext of encrypted documents by using exfiltration channels, based on standard compliant PDF properties. We evaluated our attacks on 27 widely used PDF viewers and found all of them to be vulnerable. We responsibly disclosed the vulnerabilities and supported the vendors mitigating the issues.
Materials:
Slides
Paper
Tags:

Post a comment

Related work

Portable Document Flaws 101

Conference:  BlackHat USA 2020
Authors:
2020-08-06

Efail: Breaking S/MIME and OpenPGP Email Encryption using Exfiltration Channels

Conference:  BlackHat USA 2018
Authors:
2018-08-09

Re: What's up Johnny? – Covert Content Attacks on Email End-to-End Encryption

Conference:  Defcon 27
Authors:
2019-08-01

Portable Data exFiltration: XSS for PDFs

Conference:  BlackHat EU 2020
Authors:
2020-12-10

DBREACH: Database Reconnaissance and Exfiltration via Adaptive Compression Heuristics

Conference:  BlackHat USA 2021
Authors:
2021-08-05

FragAttacks: Breaking Wi-Fi through Fragmentation and Aggregation

Conference:  BlackHat USA 2021
Authors:
2021-08-05