AES – Page 30 – WindowsTechs.com

Is it safe to use 2 password derivation functions to one password?

Posted on July 12, 2019 by 3bodyZZ

The example I’m working on is this:

i store the user password using Argon2 in my database

and then use PBKDF2 to derive an AES key from the user password , and store only the salt used in PBKDF2, i use the output from this … Continue reading Is it safe to use 2 password derivation functions to one password?→

What should I use to encrypt data between a centralized server and multiple devices running NodeJS?

Posted on June 20, 2019 by Rail24

I have a centralized server and DB that each of my devices polls every ten seconds. The centralized server may respond with a list of “active jobs”, which the devices will then run.

I need to ensure the data sent from the se… Continue reading What should I use to encrypt data between a centralized server and multiple devices running NodeJS?→

best encryption [duplicate]

Posted on June 19, 2019 by Joycloud Entertainment

This question already has an answer here:

Strength of WEP, WPA and WPA 2 PSK

2 answers

what is wi-fi best encryption betw… Continue reading best encryption [duplicate]→

Understanding AES Keys and Passphrases

Posted on June 17, 2019 by deltzy

I am trying to get my head around how AES works and in particular I have queries around the key generation and ‘passphrases’.

My understanding is that AES has a 128 bit block size but the key length changes depending on whic… Continue reading Understanding AES Keys and Passphrases→

Question concerning collision issue in CBC-mode:
If we are using CBC mode with AES for 1 message, the birthday paradox indicates that we risk a collision after 2^(n/2) so 2^64 plaintext of 128 bits of the message.

My questi… Continue reading Collision Security→

Why do Browsers in their TLS1.3 Client Hello do not request for CCM ciphers?

Posted on June 12, 2019 by Chits

As per TLS 1.3 RFC 8846, following 5 ciphers are supported.

TLS_AES_128_GCM_SHA256
TLS_AES_256_GCM_SHA384
TLS_CHACHA20_POLY1305_SHA256
TLS_AES_128_CCM_SHA256
TLS_AES_128_CCM_8_SHA256

But I noticed none of my t… Continue reading Why do Browsers in their TLS1.3 Client Hello do not request for CCM ciphers?→

Which KEK can wrap AES, RSA and ECDSA keys securely?

Posted on June 9, 2019 by mithya

If I have AES256, RSA4K and ECDSA-512 keys as CEKs, which I need to securely store, what KEK can I use to securely wrap these without reducing the bit strength? I am aware that an AES256 key can wrap RSA4K without reducing t… Continue reading Which KEK can wrap AES, RSA and ECDSA keys securely?→

Is double encrypting with AES safe?

Posted on June 6, 2019 by AlphaCentauri

Is it safe to encrypt twice with AES, with any mode? Are any combinations of AES, e.g. AES with XTS and AES with CBC, or twice with AES and XTS, more unsafe than just having it encrypted once?

I know CBC isn’t very safe in m… Continue reading Is double encrypting with AES safe?→

Can AES IV be public? [on hold]

Posted on May 30, 2019 by just_learning

I am implementing AES in C/C++ for communication between 2 Arduino devices using RF modules.

Should the initialization vector should be kept private or it does not matter if it is public? I am searching google many hours no… Continue reading Can AES IV be public? [on hold]→

Researchers uncover smart padlock’s dumb security

Posted on May 29, 2019 by John E Dunn

Pen Test Partners has found some major security flaws in the Bluetooth Nokelock that consumers might like to know about. Continue reading Researchers uncover smart padlock’s dumb security→