Collaborate Disseminate
What is the list of popular Android ROMs whose releases are cryptographically signed?
Today I learned that LineageOS (arguably the most popular open-source Android ROM) does not cryptographically sign its releases with PGP. As such, they d… Continue reading Android ROMs whose releases are cryptographically signed (gpg) [closed]
What’s the required key usage/extended key usage for signing documents, eg.PDF, Word, PowerPoint, Excel, etc…
I am going to create a self-signed certificate that is needed to sign those documents. I wonder which key usage is required as … Continue reading Required certificate key usage for signing document
There are clients (mobile application), they can share links to their profile info, which should be confidential. The link expires in 5 minutes (configured). They set Auth-Code so that the one who gets the link can access the client’s data… Continue reading Combining confidentiality, authenticity and data integrity to form secure URL
I’m trying to implement an MPC-protocol in an blockchain based auction such that participants sell and buy their generated energy based on the smart meters readings. I need the energy to be secret yet to be shared through MPC. When energy… Continue reading Blockchain based energy auction [migrated]
I’m looking for a compact, canonical (and possibly but not necessarily human-readable) format for serializing the signature chain for a RRset (or proof that it lies under an insecure delegation) for permanent recording and offline checking… Continue reading Tooling and serialization format for DNSSEC signture chain
In Digital Signature Scheme, is it possible to forge a message just by knowing the secret key, or does the attacker should also know the hash function used by the original sender?
Also does the secret-public key pair change for every messa… Continue reading Forging message using the secret key in digital signature?
In Digital Signature Scheme, is it possible to forge a message just by knowing the secret key, or does the attacker should also know the hash function used by the original sender?
Also does the secret-public key pair change for every messa… Continue reading Forging message using the secret key in digital signature?
In Digital Signature Scheme, is it possible to forge a message just by knowing the secret key, or does the attacker should also know the hash function used by the original sender?
Also does the secret-public key pair change for every messa… Continue reading Forging message using the secret key in digital signature?
In this question I asked about how to handle situations when SHA-256 hashes are not available for a file downloaded from the internet that contains executable code. Another community member insightfully asked if a hash is really needed to… Continue reading If a file is digitally signed, is posting a hash very useful for security purposes?
In this question I asked about how to handle situations when SHA-256 hashes are not available for a file downloaded from the internet that contains executable code. Another community member insightfully asked if a hash is really needed to… Continue reading If a file is digitally signed, is posting a hash very useful for security purposes?