Tag: cryptographic
-
The Register: The biggest microcode attack in our history is underway
Source URL: https://www.theregister.com/2025/02/10/microcode_attack_trump_musk/ Source: The Register Title: The biggest microcode attack in our history is underway Feedly Summary: When your state machines are vulnerable, all bets are off Opinion All malicious attacks on digital systems have one common aim: taking control. Mostly, that means getting a CPU somewhere to turn traitor, running code that silently…
-
Hacker News: How (not) to sign a JSON object (2019)
Source URL: https://www.latacora.com/blog/2019/07/24/how-not-to/ Source: Hacker News Title: How (not) to sign a JSON object (2019) Feedly Summary: Comments AI Summary and Description: Yes Summary: The text provides a detailed examination of authentication methods, focusing on signing JSON objects and the complexities of canonicalization. It discusses both symmetric and asymmetric cryptographic methods, particularly emphasizing the strengths…
-
News: Call for action: urgent plan needed to transition to post-quantum cryptography together
Source URL: https://www.europol.europa.eu/media-press/newsroom/news/call-for-action-urgent-plan-needed-to-transition-to-post-quantum-cryptography-together Source: News Title: Call for action: urgent plan needed to transition to post-quantum cryptography together Feedly Summary: On 7 February 2025, Europol hosted a Quantum Safe Financial Forum (QSFF) event, during which the QSFF has issued a call to action for financial institutions and policymakers, urging them to prioritise the transition to…
-
News: Call for action: urgent plan needed to transition to post-quantum cryptography together
Source URL: https://www.europol.europa.eu/media-press/newsroom/news/call-for-action-urgent-plan-needed-to-transition-to-post-quantum-cryptography-together Source: News Title: Call for action: urgent plan needed to transition to post-quantum cryptography together Feedly Summary: On 7 February 2025, Europol hosted a Quantum Safe Financial Forum (QSFF) event, during which the QSFF has issued a call to action for financial institutions and policymakers, urging them to prioritise the transition to…
-
Hacker News: How to prove false statements? (Part 1)
Source URL: https://blog.cryptographyengineering.com/2025/02/04/how-to-prove-false-statements-part-1/ Source: Hacker News Title: How to prove false statements? (Part 1) Feedly Summary: Comments AI Summary and Description: Yes Summary: The text delves into the implications of theoretical models in cryptography, particularly focusing on the random oracle model (ROM) and its impact on the practical security of cryptographic schemes. It emphasizes the…
-
Hacker News: Microsoft Go 1.24 FIPS changes
Source URL: https://devblogs.microsoft.com/go/go-1-24-fips-update/ Source: Hacker News Title: Microsoft Go 1.24 FIPS changes Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the advancements in Go 1.24’s cryptography packages towards achieving FIPS 140-3 compliance, emphasizing significant changes that enhance security for developers using Go. Key improvements include native support for FIPS-compliant libraries, streamlined…
-
Hacker News: Okta Bcrypt incident lessons for designing better APIs
Source URL: https://n0rdy.foo/posts/20250121/okta-bcrypt-lessons-for-better-apis/ Source: Hacker News Title: Okta Bcrypt incident lessons for designing better APIs Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses a security incident involving Okta and the vulnerabilities associated with the Bcrypt hashing algorithm when utilized improperly. It highlights how the lack of input validation in some cryptographic…