halfbit – Page 2 – WindowsTechs.com

Detecting and filtering data over AC power lines?

Posted on December 1, 2012 by halfbit

Given that it’s possible for the average consumer to send covert signals over normal AC lines how can an IT department identify and filter out this communication?

I’m not sure how difficult this is considering that there are many differen… Continue reading Detecting and filtering data over AC power lines?→

Checklist on building an Offline Root & Intermediate Certificate Authority (CA)

Posted on May 31, 2012 by halfbit

Microsoft allows a CA to use Cryptography Next Generation (CNG) and advises of incompatibility issues for clients that do not support this suite.

Here is an image of the default cryptography settings for a 2008 R2 CA. This machine is a n… Continue reading Checklist on building an Offline Root & Intermediate Certificate Authority (CA)→

Checklist on building an Offline Root & Intermediate Certificate Authority (CA)

Posted on May 31, 2012 by halfbit

Microsoft allows a CA to use Cryptography Next Generation (CNG) and advises of incompatibility issues for clients that do not support this suite.

Here is an image of the default cryptography settings for a 2008 R2 CA. This machine is a n… Continue reading Checklist on building an Offline Root & Intermediate Certificate Authority (CA)→

What encryption is possible for ReadyBoost?

Posted on May 29, 2012 by halfbit

ReadyBoost is a technology to assist getting Windows Vista or 7 to load faster on memory-constrained PC’s.

Since a USB stick can be easily removed, what security options are available for this solution that won’t negate the performance be… Continue reading What encryption is possible for ReadyBoost?→

Issuing browser certificates to Chrome and Firefox with Microsoft CA

Posted on March 4, 2012 by halfbit

Most companies use IE with an ActiveX control to create a CSR and submit it to the CA for approval.

Since many browsers either block or don’t support ActiveX controls, how can I enroll them using a Microsoft-based CA?

In other words how … Continue reading Issuing browser certificates to Chrome and Firefox with Microsoft CA→

Inconsistencies found in OpenID Provider’s HTTP Headers. Which one is the most secure that I should imitate in my STS, and Relying Party?

Posted on October 29, 2011 by halfbit

I’m comparing the HTTP headers of the various providers (LiveID, Google, Yahoo, etc) and notice a broad inconsistency in implementation on the sign in page, sign out page, and subsequent pages.

What headers should I set/ignore, and what i… Continue reading Inconsistencies found in OpenID Provider’s HTTP Headers. Which one is the most secure that I should imitate in my STS, and Relying Party?→

What browsers support encryption or decryption using local certificates, or smartcard readers?

Posted on October 8, 2011 by halfbit

I am working on a cloud-based solution and I would like to encrypt / decrypt the data locally using either a SmartCard or local Machine certificate. I’m hoping to do this in Javascript, but may resort to Silverlight, ActiveX, or Flash (in… Continue reading What browsers support encryption or decryption using local certificates, or smartcard readers?→