Collaborate Disseminate
I have a symmetric key and I have the data that needs to be authenticated. So one of the solution that I have in mind is to use the AES GMAC. I know there are other MAC’s such as HMAC or hash algorithms like SHA2.
However, my only constrai… Continue reading Calculate AES-GMAC
In what is surely an unthinking cut-and-paste issue, page 921 of the Brexit deal mandates the use of SHA-1 and 1024-bit RSA:
The open standard s/MIME as extension to de facto e-mail standard SMTP will be deployed to encrypt messages containing DNA profile information. The protocol s/MIME (V3) allows signed receipts, security labels, and secure mailing lists… The underlying certificate used by s/MIME mechanism has to be in compliance with X.509 standard…. The processing rules for s/MIME encryption operations… are as follows:
- the sequence of the operations is: first encryption and then signing,
…
Continue reading Brexit Deal Mandates Old Insecure Crypto Algorithms
I want to backup my data according to the 3-2-1 rule. I already backup to 2 different drives (2 different systems) at home. In addition i would like to use cloud storage (Google, Amazon etc.). Considering the future weakening of cryptogra… Continue reading Does it increase security if the CBC chunks of a AES-256 encrypted bytestream are uploaded to different clouds?
So the goal is to use AES-CBC-256 to encrypt the data in a file. To derive the AES key and IV pbkdf2 will be used to generate a 384 bit output using a given password and salt, where the first 256 bits will be the key and the last 128 will … Continue reading Is the following a secure method for file encryption?
All the popular password managers on the market advertise that they have AES-256 grade security. In a nutshell, the user has the master key and the password manager has the cipher-text. So the password manager cannot read any of the user d… Continue reading Can password managers read my secure data? If no, how does sharing work under the hood?
I am planning to encrypt database fields using AES encryption.
Now, this encrypted data will not transfer over the internet and will reside in our own datacenter only.
From what I read, GCM mode should be the obvious choice for encryption … Continue reading Which one to use AES : GCM vs CBC
At work we have a pretty complex problem(for me at least) and I have no idea what a fitting solution would be. To give a bit of context, the company I work for is a data processor/provider for big corporations that need sensitive user data… Continue reading Question regarding data encryption/decryption and sharing said keys with third party’s
Assume we use AES256 to encrypt the same payload 100 times, each with a different key.
An attacker gains access to the 100 encrypted payloads, and nothing else.
Is there some way the attacker can gain insight about the payload (or about th… Continue reading Are there intrinsically weaknesses in accessing a same payload encrypted with different keys?
You have a 2048 bit private key. You generate an IV for the message you are going to encrypt. Next, you take the first block of plaintext and SHA256(IV + 2048 bit key). You use that hash as a key to encrypt the first block of plaintext … Continue reading An attempt at using AES as a stream cipher
I have some C# code that encrypts the body of an email before it sends it to another email account, using AES (the default encryption mode in C# AES seems to be CBC):
[link 1]
The C# code applies the Default encoding to encode the cipherte… Continue reading AES – from C++ to Python-based Decryption [closed]