Collaborate Disseminate
I am using https for my website. i am not getting clear idea about how https internally works and how it makes our website more secure.
if the headers or data is encrypted as mentioned here SO then it can be allow for decode or not.
My Qu… Continue reading client-server data sharing is not encrypted in https [duplicate]
Imagine a web application in which two computers can communicate with each other by transferring files, through the server linked with some unique password.
Every file sent between the clients are sent through the server, means that the se… Continue reading How to prevent server know what data is being transferred through it between two clients
I am planning on adding a chat to my website but I want it to use E2EE.
The only problem I’m facing right now is supporting multiple devices and syncing all messages between them. I tried to look it up but every solution I found was either… Continue reading What is the best way to implement E2EE for a chat with support for multiple devices? [closed]
I need to build a service that shares and processes ITAR data. From my understanding reading ITAR documentation, the data must be end-to-end encrypted, and the private keys must never be stored in the cloud. This seems to preclude buildin… Continue reading Can I process ITAR data in AWS GovCloud?
I just recently discovered JWT to secure my live stream and have done successful token on server and player but I think it still can be stolen.
How I can use it to only have the domains I choose to be able to access the stream?
This is wha… Continue reading JWT to prevent others from using video in their iframes
I have built a web application. Being the owner of the system, I could see the data of my users in the database if I wanted to. I myself would prefer that my data would not be accessible by the owner if I was using such an app.
Is this a c… Continue reading Encrypt user data? [closed]
I have a few friends who started and then (unfortunately :/ ) stopped using Signal, opting to go back to regular SMS. Now, however, when I text them (I use Signal for default SMS as well!) they don’t get the messages… it looks like Signa… Continue reading How to text people who have stopped using Signal? [migrated]
When using AES-GCM-256 with random nonces, a limit of 2^32 encryptions is specified in order to have a low nonce collision probability. A new key has to be generated to take its place afterwards, I am at this point.
I used my old key to en… Continue reading E2E-Encrypted storage: What to do when the lifetime of a key is over?
Amazon’s Ring unit is moving ahead with plans to allow end-to-end encryption (E2EE).
The post Finally! Ring Doorbells get End-to-End Encryption, but There’s a Big Catch appeared first on Security Boulevard.
Continue reading Finally! Ring Doorbells get End-to-End Encryption, but There’s a Big Catch
I know that u2f keys are designed as authentication factors, but I think it would not be far fetched to also add a protocol that the user can use to encrypt or decrypt data on the client-side. This would relieve the user from remembering a… Continue reading Is there hardware (like u2f-keys) for passwordless client-side encryption & decryption