Experimental News Clipping Site

Tag: hashing

  • Hacker News: Botan: Crypto and TLS for Modern C++

    by

    system automation
    in

    Source URL: https://github.com/randombit/botan Source: Hacker News Title: Botan: Crypto and TLS for Modern C++ Feedly Summary: Comments AI Summary and Description: Yes **Summary:** The provided text details the Botan C++ cryptography library, emphasizing its capabilities in cryptographic protocols like TLS and various security features relevant to modern applications. This information is particularly significant for security…

  • NCSC Feed: Three random words or #thinkrandom

    by

    system automation
    in

    Source URL: https://www.ncsc.gov.uk/blog-post/three-random-words-or-thinkrandom-0 Source: NCSC Feed Title: Three random words or #thinkrandom Feedly Summary: Ian M discusses what makes a good password AI Summary and Description: Yes Summary: The provided text discusses password security, specifically the process of hashing passwords to protect them from unauthorized access. It highlights the methods cybercriminals might use to compromise…

  • Cloud Blog: XRefer: The Gemini-Assisted Binary Navigator

    by

    system automation
    in

    Source URL: https://cloud.google.com/blog/topics/threat-intelligence/xrefer-gemini-assisted-binary-navigator/ Source: Cloud Blog Title: XRefer: The Gemini-Assisted Binary Navigator Feedly Summary: Written by: Muhammad Umair Here at Mandiant FLARE, malware reverse engineering is a regular part of our day jobs. At times we are required to perform basic triages on binaries, where every hour saved is critical to incident response timelines. At…

  • Hacker News: Compromising OpenWrt Supply Chain

    by

    system automation
    in

    Source URL: https://flatt.tech/research/posts/compromising-openwrt-supply-chain-sha256-collision/ Source: Hacker News Title: Compromising OpenWrt Supply Chain Feedly Summary: Comments AI Summary and Description: Yes Summary: This text presents a comprehensive security analysis regarding vulnerabilities in the OpenWrt firmware supply chain, detailing how command injection and SHA-256 collisions can be exploited. It emphasizes the importance of secure coding practices and robust…

  • Hacker News: Child safety org launches AI model trained on real child sex abuse images

    by

    system automation
    in

    Source URL: https://arstechnica.com/tech-policy/2024/11/ai-trained-on-real-child-sex-abuse-images-to-detect-new-csam/ Source: Hacker News Title: Child safety org launches AI model trained on real child sex abuse images Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the development of a cutting-edge AI model by Thorn and Hive aimed at improving the detection of unknown child sexual abuse materials (CSAM).…

  • Simon Willison’s Weblog: How some of the world’s most brilliant computer scientists got password policies so wrong

    by

    system automation
    in

    Source URL: https://simonwillison.net/2024/Nov/21/password-policies/#atom-everything Source: Simon Willison’s Weblog Title: How some of the world’s most brilliant computer scientists got password policies so wrong Feedly Summary: How some of the world’s most brilliant computer scientists got password policies so wrong Stuart Schechter blames Robert Morris and Ken Thompson for the dire state of passwords today: The story…

  • Schneier on Security: Good Essay on the History of Bad Password Policies

    by

    system automation
    in

    Source URL: https://www.schneier.com/blog/archives/2024/11/good-essay-on-the-history-of-bad-password-policies.html Source: Schneier on Security Title: Good Essay on the History of Bad Password Policies Feedly Summary: Stuart Schechter makes some good points on the history of bad password policies: Morris and Thompson’s work brought much-needed data to highlight a problem that lots of people suspected was bad, but that had not been…

  • Hacker News: HashML-DSA Considered Harmful

    by

    system automation
    in

    Source URL: https://keymaterial.net/2024/11/05/hashml-dsa-considered-harmful/ Source: Hacker News Title: HashML-DSA Considered Harmful Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the complexities surrounding prehashing in digital signature schemes, particularly in the context of recent NIST standards. It offers insights on how to effectively manage private key exposure while facilitating remote signing processes, highlighting…

  • Slashdot: DataBreach.com Emerges As Alternative To HaveIBeenPwned

    by

    system automation
    in

    Source URL: https://it.slashdot.org/story/24/11/07/0620237/databreachcom-emerges-as-alternative-to-haveibeenpwned?utm_source=rss1.0mainlinkanon&utm_medium=feed Source: Slashdot Title: DataBreach.com Emerges As Alternative To HaveIBeenPwned Feedly Summary: AI Summary and Description: Yes Summary: DataBreach.com, a new service from Atlas Privacy, enables users to check if their personal information has been leaked, offering a more extensive search than Have I Been Pwned. It emphasizes privacy by performing checks locally…

  • The Register: Why the long name? Okta discloses auth bypass bug affecting 52-character usernames

    by

    system automation
    in

    Source URL: https://www.theregister.com/2024/11/04/why_the_long_name_okta/ Source: The Register Title: Why the long name? Okta discloses auth bypass bug affecting 52-character usernames Feedly Summary: Mondays are for checking months of logs, apparently, if MFA’s not enabled In potentially bad news for those with long names and/or employers with verbose domain names, Okta spotted a security hole that could…