Cryptography

Discover Cryptography News

Encrypgen Completes ERC20 Integration – DNA Token Likely to Appreciate

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

With Bitcoin (BTC) surging above 5,000 in recent weeks, traders might be wondering whether now is the time to get back into altcoins. I’ve written in the past that the market will likely be more critical of blockchain-based projects in the future. There are two reasons for this.

LinuxSecurity.com Team
Apr 27, 2019

What is a side channel attack? How these end-runs around encryption put everyone at risk

Brute force attacks on cryptography could take billions of years, which no one has to spare. Maybe you live in a country where rubber hose cryptography is, shall we say, frowned upon. Hacking a target's endpoint is an option, but what if you get caught? Better to use an attack that leaves no forensic traces behind.

LinuxSecurity.com Team
Apr 17, 2019

Getting started with Python's cryptography library

The first rule of cryptography club is: never invent a cryptography system yourself. The second rule of cryptography club is: never implement a cryptography system yourself: many real-world holes are found in the implementation phase of a cryptosystem as well as in the design.

LinuxSecurity.com Team
Apr 11, 2019

Cryptographic crumpling: The encryption 'middle ground' for government surveillance

For governments worldwide, encryption is a thorn in the side in the quest for surveillance, cracking suspected criminal phones, and monitoring communication.

LinuxSecurity.com Team
Mar 19, 2018

Let's Encrypt free wildcard certificates now live

A project dear to its heart, Let's Encrypt has now made wildcard certificate support live in the next step to encrypt the Web. The certificate authority, which offers free SSL and TLS certificates to webmasters, said this week that support is now live for wildcard certificates, alongside ACMEv2.

LinuxSecurity.com Team
Mar 14, 2018

Internet firms to be banned from offering unbreakable encryption under new laws

Internet and social media companies will be banned from putting customer communications beyond their own reach under new laws to be unveiled on Wednesday.

LinuxSecurity.com Team
Nov 03, 2015

Don’t count on STARTTLS to automatically encrypt your sensitive e-mails

Researchers have some good and bad news about the availability of secure e-mail. Use of STARTTLS and three other security extensions has surged in recent months, but their failure rate remains high, in large part because of active attacks that downgrade encrypted connections to unencrypted ones.

LinuxSecurity.com Team
Nov 02, 2015

This 11-year-old is selling cryptographically secure passwords for $2 each

We now live in a world where a New York City sixth grader is making money selling strong passwords. Earlier this month, Mira Modi, 11, began a small business at dicewarepasswords.com, where she generates six-word Diceware passphrases by hand.

LinuxSecurity.com Team
Oct 26, 2015

Breaking Diffie-Hellman with Massive Precomputation (Again)

The Internet is abuzz with this blog post and paper, speculating that the NSA is breaking the Diffie-Hellman key-exchange protocol in the wild through massive precomputation.

LinuxSecurity.com Team
Oct 16, 2015

SHA1 algorithm securing e-commerce and software could break by year

SHA1, one of the Internet's most crucial cryptographic algorithms, is so weak to a newly refined attack that it may be broken by real-world hackers in the next three months, an international team of researchers warned Thursday.

LinuxSecurity.com Team
Oct 13, 2015

Thanks to encryption, we may never spot space aliens says Edward Snowden

The anti-encryption lobby has just got a new fan. After the government agencies, who are against encryption for obvious reasons, Edward Snowden has spoken out against encryption albeit for a different reason altogether.

LinuxSecurity.com Team
Sep 21, 2015

TLS Implementations Vulnerable to RSA Key Leaks

A number of TLS software implementations contain vulnerabilities that allow hackers with minimal computational expense to learn RSA keys. Florian Weimer, a researcher with Red Hat, last week published a paper called

LinuxSecurity.com Team
Sep 09, 2015

Announce: OpenSSH 7.1 released

OpenSSH 7.1 has just been released. It will be available from the mirrors listed at http://www.openssh.com/ shortly.

LinuxSecurity.com Team
Aug 21, 2015

Announce: OpenSSH 7.0 released

OpenSSH 7.0 has just been released. It will be available from the mirrors listed at http://www.openssh.com/ shortly.

LinuxSecurity.com Team
Aug 11, 2015

Researchers develop quicker RC4 encryption algorithm attack

Two researchers with the University of Leuven have developed a new, more practical attack technique that exposes weaknesses in the RC4 encryption algorithm.

LinuxSecurity.com Team
Jul 21, 2015

New RC4 Attack Dramatically Reduces Cookie Decryption Time

Two Belgian security researchers from the University of Leuven have driven new nails into the coffin of the RC4 encryption algorithm.

LinuxSecurity.com Team
Jul 20, 2015

Once-theoretical crypto attack against HTTPS now verges on practicality

Almost a third of the world's encrypted Web connections can be cracked using an exploit that's growing increasingly practical, computer scientists warned Wednesday. They said the attack technique on a cryptographic cipher known as RC4 can also be used to break into wireless networks protected by the Wi-Fi Protected Access Temporal Key Integrity Protocol.

LinuxSecurity.com Team
Jul 17, 2015

OpenSSL Patches Critical Certificate Validation Vulnerability

Organizations that installed the June 11 OpenSSL update need to pull it back immediately after a serious certificate validation error was discovered and patched today in a new update.

LinuxSecurity.com Team
Jul 10, 2015

The Risks of Mandating Back Doors in Encryption Products

Monday a group of cryptographers and security experts released a major paper outlining the risks of government-mandated back-doors in encryption products: Keys Under Doormats: Mandating insecurity by requiring government access to all data and communications, by Hal Abelson, Ross Anderson, Steve Bellovin, Josh Behaloh, Matt Blaze, Whitfield Diffie, John Gilmore, Matthew Green, Susan Landau, Peter Neumann, Ron Rivest, Jeff Schiller, Bruce Schneier, Michael Specter, and Danny Weitzner.

LinuxSecurity.com Team
Jul 09, 2015

The impossible war on encryption

"Britain is not a state that is trying to search through everybody's emails and invade their privacy," according to Prime Minister David Cameron. "We just want to ensure that terrorists do not have a safe space in which to communicate."

LinuxSecurity.com Team
Jul 08, 2015

Abyss Locker Ransomware Targets Linux & Windows Users

Linux Foundation Joins Post-Quantum Cryptography Alliance

New Decryption Key Available for Babuk Tortilla Ransomware Victims