Collaborate Disseminate
I’m writing Java code for a decentralized network. (Proof of concept code here.) Each node generates its own self-signed certificate, to be used both server-side and client-side in every connection. Current key choice is 4096 bit RSA. … Continue reading Should I manually select protocol and cipher?
In TLS 1.2, the cipher suite lists the algorithms for everything (key exchange, signature, cipher/MAC). So by choosing a suite, all the algorithms will have been negotiated. And I can see them from the Security tab in Chrome DevTools, such… Continue reading How are key exchange and signature algorithms negotiated in TLS 1.3
I have been tasked with reviewing the settings of an SSH server, I’m currently trying to figure out what are the best practices, and I’m having a bit of trouble finding a good answer. I keep finding a lot of information related to web serv… Continue reading SSH Server Configuration Best Practices?
I am considering switching over to Brave and maybe also use it’s sync feature for settings, and maybe even passwords if it’s good enough. I do use a password generator but out of laziness I happen to sometimes store passwords locally.
In … Continue reading Are Brave Browsers Sync encryption parameters secure enough?
I’m developing a safety product and asked to enable secure communication support to work with maintenance application running on a host pc and to work with third-party products.
So Do I need to have two certificates in my product one with … Continue reading One product unit needs one or two x.509 certificate
I’ve seen this but the related answers don’t answer my question.
For TLS 1.2 is the hashing algorithm specified in an X.509 certificate’s cipher suite used for the signature inside the certificate or the TLS handshake/communication process… Continue reading Should hashing algorithm used for X.509 certificate’s signing match the algorithm used in the communication
I recently found out, that according to the RFC, SSH can negotiate two different cipher (and MAC) algorithms for server-to-client-encryption and for client-to-server-encryption (check section 7.1. for reference).
In section 6.3 this is als… Continue reading Why can SSH negotiatie two different encryption and authentication algorithms?
I’m trying to discover what cipher suites are being offered by my corporate proxy. It’s set up as a man in the middle so my "secure" connections are to it, and it attempts to create a secure connection to my target.
Specifically… Continue reading Is it possible to view the cipher suites offered on my behalf by a MITM proxy?
I have studied about the mono-alphabetic substitution cipher. With Character frequency graph, the encrypted text can be decoded. I am wondering how can be happen?
I have set the cipher algorithms for ssh on my server to just chacha20-poly1305@openssh.com, aes256-gcm@openssh.com and aes128-gcm@openssh.com
Now my IntelliJ fails with this error:
failed: unable to reach a settlement: [aes128-cbc, a… Continue reading Find out the least insecure mutual cipher algorithm