Jump to content

All Activity

This stream auto-updates

  1. Earlier
  2. Peter Eckersley, one of the original founders of Let’s Encrypt, passed away at CPMC Davies Hospital in San Francisco on 2nd September 2022. He had been diagnosed with cancer on 31 August, but died of complications during pre-operative preparations to treat the disease. https://community.letsencrypt.org/t/peter-eckersley-may-his-memory-be-a-blessing/183854 https://nakedsecurity.sophos.com/2022/09/04/peter-eckersley-co-creator-of-lets-encrypt-dies-at-just-43/ https://en.wikipedia.org/wiki/Peter_Eckersley_(computer_scientist)
  3. A cipher key was written in the form of a defined monomer sequence, dissolved in isopropanol and mixed with glycerol and soot. This created an ink that was used to write a letter. The 256-bit cipher key was successfully recovered by the recipient of the letter by extracting with dichloromethane and following instructions for sequencing. https://pubs.acs.org/doi/pdf/10.1021/acscentsci.2c00460
  4. Microsoft SEAL prior to v3.6 using the Brakerski/Fan-Vercauteren (BFV) protocol is vulnerable to a power-based side-channel attack. Aydin Aysu at North Carolina State University demonstrated that by monitoring power consumption in a device that is encoding data for homomorphic encryption, you can read the data as it is being encrypted. https://securityboulevard.com/2022/06/researchers-demonstrate-they-can-steal-data-during-homomorphic-encryption/
  5. Microsoft SEAL is an open-source homomorphic encryption library that enables running computations directly on encrypted data. A cloud provider does not have unencrypted access to the data they are storing and computing on. SEAL comes with two homomorphic encryption schemes. BFV allows modular arithmetic on encrypted integers. CKKS allows additions and multiplications on encrypted real or complex numbers, but yields only approximate results. https://www.microsoft.com/en-us/research/project/microsoft-seal/
  6. James

    VeraCrypt

    VeraCrypt 1.25.9 was released February 19th 2022. Downloads are available from https://www.veracrypt.fr/en/Downloads.html for Windows, Mac, Linux (CentOs, Debian, Ubuntu, OpenSUSE), Raspberry Pi and FreeBSD.
  7. The Treasury has announced that it will regulate some cryptocurrencies as part of a wider plan to make the UK a hub for digital payment companies. Separately, the Treasury said it will ask The Royal Mint to create a Non-Fungible Token (NFT). The Treasury has not yet confirmed which stablecoins will be regulated, however well-known ones include Tether and Binance USD. https://www.bbc.co.uk/news/business-60983561
  8. CentOS 8 is EOL and no longer supported, so an encryption vulnerability poses a challenge. The LUKS (Linux Unified Key Setup) issue stems around the re-encryption process during key change and weakens security for an encrypted block device. CVE-2021-4122 https://thehackernews.com/2022/01/patching-centos-8-encryption-bug-is.html
  9. James

    POODLE

    POODLE means Padding Oracle on Downgraded Legacy Encryption. It allows an attacker to eavesdrop on encrypted HTTPS communications using the SSL 3.0 protocol. To protect a server against POODLE attacks you can disable SSL 3.0, or TLS 1.1 and TLS 1.2. The POODLE vulnerability was discovered by Google in 2014, reference CVE-2014-3566. Additional information is available from https://www.makeuseof.com/what-is-the-poodle-attack/
  10. Dear Encryption Chat support, I would like to ask you one important question. Is the (Samsung Notes App) suitable for storing sensitive information? Are these "password-protected" notes really encrypted? As encryption experts, do you have an idea about which encryption algorithm they might be using on this App? I am asking you guys this question because I am a Samsung smartphone user, and I have a lot of important Data stored in this particular Samsung App. And I am asking you because you guys are experts in the encryption field. I really would like to know whether this "Samsung Notes App" is safe or not. I just need to know so I can look for a more secure App if I have to. One thing that bothers me the most is that Samsung at their website doesn't provide any information regarding the encryption algorithm (if any) they use to safeguard the contents stored in this App. They should have available at their website a whitepaper explaining this App encription to us Samsung users, but they don't. I don't know if they use for this App: AES 128-bit, AES 256-bit, Twofish, Serpent, or another encryption algorithm, etc. Therefore I don't even know if it is secure. Perhaps I should stop using this App and migrate to a more transparent App in terms of its encription algorithm. Please let me know guys, this is truly important to me and I need to have a good understanding about it, whether this App is suitable for storing sensitive information or not. Thank you so much.
  1. Load more activity
×
×
  • Create New...