Home Tags Diffie-Hellman

Tag: Diffie-Hellman

Critical flaw alert! Stop using JSON encryption

A vulnerability in a JSON-based web encryption protocol could allow attackers to retrieve private keys.Cryptography experts have advised against developers using JSON Web Encryption...

PetrWrap: the new Petya-based ransomware used in targeted attacks

This year we found a new family of ransomware used in targeted attacks against organizations.After penetrating an organization’s network the threat actors used the...

Oracle to Java devs: Stop signing JAR files with MD5

Starting in April, Oracle will treat JAR files signed with the MD5 hashing algorithm as if they were unsigned, which means modern releases of...

Researchers work to save trusted computing apps from keyloggers

SGX needs I/O protection, Austrian boffins reckon Intel's Software Guard Extensions started rolling in Skylake processors in October 2015, but it's got an Achilles heel:...

Prepare now for the quantum computing revolution in encryption

Whether quantum computing is 10 years away or is already here, it promises to make current encryption methods obsolete, so enterprises need to start...

Nmap security scanner gets new scripts, performance boosts

The Nmap Project just released the Holiday Edition of its open source cross-platform security scanner and network mapper, with several important improvements and bug...

Google Test Suite Checks Open Source Cryptographic Library Security

Google's new Project Wycheproof will let software engineers look for previously known flaws in their open source cryptographic libraries. Google has released a set of...

Signal security revealed: A triple-Diffie-Hellman with a double ratchet

Secure messaging app invites you to dive in and figure out if it's done anything wrong Signal developer Open Whisper Systems has quietly posted some...

‘Trust it’: Results of Signal’s first formal crypto analysis are in

Crypto connoisseurs finds favourite chat app protocol up to scratch Encrypted SMS and voice app Signal has passed a security audit with flying colours. As explained...

Stupid encryption mistakes criminals make

Writing secure code can be challenging, and implementing cryptography correctly in software is just plain hard.Even experienced developers can get tripped up.And if your...

JSA10759 – 2016-10 Security Bulletin: OpenSSL security updates

The ​OpenSSL project has published a set of security advisories for vulnerabilities resolved in the OpenSSL library in December 2015, March, May, June, August...

Encrypted communications could have an undetectable backdoor

Researchers warn that many 1,024-bit keys used to secure communications on the internet today might be based on prime numbers that have been intentionally...