Tag: cryptography

  • Hacker News: Offline PKI using 3 Yubikeys and an ARM single board computer

    Source URL: https://vincent.bernat.ch/en/blog/2025-offline-pki-yubikeys Source: Hacker News Title: Offline PKI using 3 Yubikeys and an ARM single board computer Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the implementation of an offline Public Key Infrastructure (PKI) system using YubiKeys and an air-gapped environment, enhancing security against network threats. This approach is particularly…

  • Schneier on Security: Improvements in Brute Force Attacks

    Source URL: https://www.schneier.com/blog/archives/2025/03/improvements-in-brute-force-attacks.html Source: Schneier on Security Title: Improvements in Brute Force Attacks Feedly Summary: New paper: “GPU Assisted Brute Force Cryptanalysis of GPRS, GSM, RFID, and TETRA: Brute Force Cryptanalysis of KASUMI, SPECK, and TEA3.” Abstract: Key lengths in symmetric cryptography are determined with respect to the brute force attacks with current technology. While…

  • The Cloudflare Blog: Conventional cryptography is under threat. Upgrade to post-quantum cryptography with Cloudflare Zero Trust

    Source URL: https://blog.cloudflare.com/post-quantum-zero-trust/ Source: The Cloudflare Blog Title: Conventional cryptography is under threat. Upgrade to post-quantum cryptography with Cloudflare Zero Trust Feedly Summary: We’re thrilled to announce that organizations can now protect their sensitive corporate network traffic against quantum threats by tunneling it through Cloudflare’s Zero Trust platform. AI Summary and Description: Yes Summary: The…

  • Hacker News: Constant-Time Code: The Pessimist Case [pdf]

    Source URL: https://eprint.iacr.org/2025/435.pdf Source: Hacker News Title: Constant-Time Code: The Pessimist Case [pdf] Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the challenges and pessimistic outlook surrounding the implementation of constant-time coding in cryptographic software, especially in the light of modern compiler optimization techniques and the increasing complexity of CPU architectures.…

  • Hacker News: Constant-time coding will soon become infeasible

    Source URL: https://eprint.iacr.org/2025/435 Source: Hacker News Title: Constant-time coding will soon become infeasible Feedly Summary: Comments AI Summary and Description: Yes Summary: This paper discusses the challenges and shortcomings associated with writing secure cryptographic software that is free from timing-based side-channels. It presents a pessimistic view on the feasibility of constant-time coding, suggesting that failures…

  • Hacker News: NIST Selects HQC as Fifth Algorithm for Post-Quantum Encryption

    Source URL: https://www.nist.gov/news-events/news/2025/03/nist-selects-hqc-fifth-algorithm-post-quantum-encryption Source: Hacker News Title: NIST Selects HQC as Fifth Algorithm for Post-Quantum Encryption Feedly Summary: Comments AI Summary and Description: Yes Summary: NIST has selected a secondary backup encryption algorithm, HQC, which complements the primary quantum-resistant algorithm, ML-KEM, to ensure data security against future quantum computing threats. This dual-layer approach highlights how…

  • CSA: Cryptography, Encryption, & Key Management for Cloud

    Source URL: https://cloudsecurityalliance.org/blog/2025/03/10/implementing-ccm-cryptography-encryption-and-key-management Source: CSA Title: Cryptography, Encryption, & Key Management for Cloud Feedly Summary: AI Summary and Description: Yes Summary: The text discusses the Cloud Controls Matrix (CCM), a comprehensive framework that provides essential controls for cloud computing security, specifically focusing on the Cryptography, Encryption, and Key Management (CEK) domain. The CEK domain includes…

  • Hacker News: PurrCrypt: Steganographic Encryption Disguised as Pet Sounds

    Source URL: https://github.com/vxfemboy/purrcrypt Source: Hacker News Title: PurrCrypt: Steganographic Encryption Disguised as Pet Sounds Feedly Summary: Comments AI Summary and Description: Yes Summary: The text describes a whimsical encryption tool called PurrCrypt that disguises real cryptographic messages as playful “pet talk,” specifically using feline and canine expressions. It creatively combines strong security practices, such as…

  • Hacker News: Toward a Passwordless Future

    Source URL: https://www.privacyguides.org/articles/2025/03/08/toward-a-passwordless-future/ Source: Hacker News Title: Toward a Passwordless Future Feedly Summary: Comments AI Summary and Description: Yes Summary: The text explores the historical evolution of password-based authentication, its inherent vulnerabilities, and the transition towards using passkeys as a more secure and private alternative. This shift is particularly relevant for professionals in security and…

  • Hacker News: Dear Apple: Add "Disappearing Messages" to iMessage

    Source URL: https://blog.cryptographyengineering.com/2025/03/01/dear-apple-add-disappearing-messages-to-imessage-right-now/ Source: Hacker News Title: Dear Apple: Add "Disappearing Messages" to iMessage Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The text critiques the security features of Apple’s iMessage, specifically its lack of a disappearing messages feature which is standard in many other messaging apps. This oversight poses privacy risks as messages…