recentpopularlog in


« earlier   
CAs Reissue Over One Million Weak Certificates - Schneier on Security
Turns out that the software a bunch of CAs used to generate public-key certificates was flawed: they created random serial numbers with only 63 bits instead of the required 64. That may not seem like a big deal to the layman, but that one bit change means that the serial numbers only have half the required entropy. This really isn't a security problem; the serial numbers are to protect against attacks that involve weak hash functions, and we don't allow those weak hash functions anymore. Still, it's a good thing that the CAs are reissuing the certificates. The point of a standard is that it's to be followed.
ssl  security  cryptography  https  software 
2 days ago by jtyost2
VeraCrypt - Free Open source disk encryption with strong security for the Paranoid
VeraCrypt is free open-source disk encryption software for Windows, Mac OS X and Linux. In case an attacker forces you to reveal the password, VeraCrypt provides plausible deniability. In contrast to file encryption, data encryption performed by VeraCrypt is real-time (on-the-fly), automatic, transparent, needs very little memory, and does not involve temporary unencrypted files.
cryptography  encryption  security  oss  software 
3 days ago by danhorst
WireGuard: fast, modern, secure VPN tunnel
An extremely simple yet fast and modern VPN that utilizes state-of-the-art cryptography. It aims to be faster, simpler, leaner, and more useful than IPsec, while avoiding the massive headache. It intends to be considerably more performant than OpenVPN. WireGuard is designed as a general purpose VPN for running on embedded interfaces and super computers alike, fit for many different circumstances.
cryptography  vpn  opensource 
3 days ago by keimlink
Security dangers of the NIST curves
Lecture slides from Bernstein and Lange.
cryptography  ECC 
3 days ago by mattsk
OpenSSH : Guidelines, principles published on
security  ssh  cryptography  mozilla 
5 days ago by othertom

Copy this bookmark:

to read