recentpopularlog in

mcherm : crypto   10

Satoshi's Genius: Unexpected Ways in which Bitcoin Dodged Some Cryptographic Bullets – Bitcoin Magazine
Bitcoin did several things surprisingly well. It's numbers are always less than MAX_FLOAT (so it works in languages with just one number type), it publishes a hash of the public key not the key so it's resistant to quantum computers, and it picked an elliptic curve that's clearly not compromised by the NSA.
security  cryptography  crypto  bitcoin  via:HackerNews 
october 2013 by mcherm
Twitter's Killer New Two-Factor Solution Kicks SMS to the Curb | Threat Level |
Twitter invented this complicated for two factor authentication. Google just used the standard RFC.
blogworthy  twitter  crypto  cryptography  security  wired  via:HackerNews 
august 2013 by mcherm
Response to "Cryptography is Science, not Engineering"
A well-written response to the previous link: real-world issues get in the way. So it's more engineering than science *in practice*. A good conversation to read.
via:HackerNews  security  cryptography  crypto 
june 2013 by mcherm
Cryptography is a science, not engineering
He claims that in the 1990s cryptography was like engineering: you threw in some margin for safety and hope you haven't missed anything important, but that today it is like a science: you use reliable primitives and combine them in provably reliably fashions. I am skeptical, but I know less than he does.
cryptography  math  programming  crypto  security  via:HackerNews 
june 2013 by mcherm
Javascript Cryptography Considered Harmful
A really good (and readable) article explaining why any and all attempts to write cryptography that runs in JavaScript within a browser is necessarily doomed. I predict it will happen anyway... and will be insecure (compared to real crypto) but better than plain text.
via:HackerNews  javascript  cryptography  crypto  security 
january 2013 by mcherm
Storing Passwords Securely
Some GOOD advice on how to correctly hash and store passwords.
via:reddit  security  cryptography  crypto  programming  useful 
august 2012 by mcherm
Did NSA Put a Secret Backdoor in New Encryption Standard?
Wow. Some reasonably cogent arguments that the NSA successfully got a random number generator built into the new published encryption standards for which they have a back door. This is scary!
security  via:BruceSchneier  cryptography  privacy  nsa  crypto  scary 
november 2007 by mcherm
A better "base64" (it's base 85).
programming  cryptography  crypto 
august 2007 by mcherm
Stamper: Digital Timestamping Service
Cryptographically signed timestamping service
december 2004 by mcherm

Copy this bookmark:

to read