Found 4 bookmarks
Custom sorting
Attack of the week: Airdrop tracing – A Few Thoughts on Cryptographic Engineering
Attack of the week: Airdrop tracing – A Few Thoughts on Cryptographic Engineering
It's been a while since I wrote an "attack of the week" post, and the fault for this is entirely mine. I've been much too busy writing boring posts about Schnorr signatures! But this week's news brings an exciting story with both technical and political dimensions: new reports claim that Chinese security agencies have developed…
#cryptographyengineering#EN#2023#Airdrop#Cryptographic#analysis#tracing
·blog.cryptographyengineering.com·
Attack of the week: Airdrop tracing – A Few Thoughts on Cryptographic Engineering
In a first, cryptographic keys protecting SSH connections stolen in new attack | Ars Technica
In a first, cryptographic keys protecting SSH connections stolen in new attack | Ars Technica
An error as small as a single flipped memory bit is all it takes to expose a private key. The vulnerability occurs when there are errors during the signature generation that takes place when a client and server are establishing a connection. It affects only keys using the RSA cryptographic algorithm, which the researchers found in roughly a third of the SSH signatures they examined. That translates to roughly 1 billion signatures out of the 3.2 billion signatures examined. Of the roughly 1 billion RSA signatures, about one in a million exposed the private key of the host.
#arstechnica#EN#2023#SSH#RSA#cryptographic#algorithm#error#vulnerability
·arstechnica.com·
In a first, cryptographic keys protecting SSH connections stolen in new attack | Ars Technica
Three Lessons from Threema: Analysis of a Secure Messenger
Three Lessons from Threema: Analysis of a Secure Messenger
Threema is a Swiss encrypted messaging application. It has more than 10 million users and more than 7000 on-premise customers. Prominent users of Threema include the Swiss Government and the Swiss Army, as well as the current Chancellor of Germany, Olaf Scholz. Threema has been widely advertised as a secure alternative to other messengers. In our work, we present seven attacks against the cryptographic protocols used by Threema, in three distinct threat models. All the attacks are accompanied by proof-of-concept implementations that demonstrate their feasibility in practice.
#breakingthe3ma#Threema#EN#2023#paper#vulnerabilies#attacks#cryptographic#protocols
·breakingthe3ma.app·
Three Lessons from Threema: Analysis of a Secure Messenger
Three Lessons from Threema: Analysis of a Secure Messenger
Three Lessons from Threema: Analysis of a Secure Messenger
Threema is a Swiss encrypted messaging application. It has more than 10 million users and more than 7000 on-premise customers. Prominent users of Threema include the Swiss Government and the Swiss Army, as well as the current Chancellor of Germany, Olaf Scholz. Threema has been widely advertised as a secure alternative to other messengers. In our work, we present seven attacks against the cryptographic protocols used by Threema, in three distinct threat models. All the attacks are accompanied by proof-of-concept implementations that demonstrate their feasibility in practice.
#breakingthe3ma#Threema#EN#2023#paper#vulnerabilies#attacks#cryptographic#protocols
·breakingthe3ma.app·
Three Lessons from Threema: Analysis of a Secure Messenger