Collaborate Disseminate
In a talk from Moxie Marlinspike he mentioned that Signal does not intend to release a web application because they are impossible to audit. The javascript code is retrieved on each page load, so it would be trivial to send malicious code … Continue reading Does End-To-End-Encryption in Web Applications require trust?
Is there any Android or iOS application that would encrypt voice from the microphone and feed that as a microphone input into a calling application (such as Phone by Google) on a regular voice call? So, if the mobile operator (or any other… Continue reading Any application available for voice call encryption?
I want to implement a service that can’t read the data you store there.
The Idea is that I, like in a password manager, use the password to derive a vault key, which is different from the authentication key, that is used to encrypt/decrypt… Continue reading Multiple devices encrypting data using the same key?
I’m playing around with e2ee a little. Would it be possible to verify the security numbers in the signal protocol by using already verified e2ee channels within the app securely?
Let E be a commutative cipher and for a message m donate m_a… Continue reading E2EE verification without meeting in person (in Signal)
Let’s say I want to make a messaging(just an example, take it as any data) web(react + node) application(more like an email rather than chat) with end-to-end encryption. So at some point, I will want to send an encrypted(with public key) m… Continue reading Need some clarification regards end-to-end encryption process
The context is a password reset functionality. The user has requested a password reset, either via the web, or via a call to the help desk.
The proposed solution is, behind the scenes:
If Self-Service via the web – require the user to pr… Continue reading Is it safe to send an encrypted blob as a URL parameter?
Assumptions:
Some places ban or at least think about banning encryption.
Encrypted traffic can be easily spotted because it looks like nonsense (or something else?).
Question:
Suppose I put my encrypted traffic into a jpg and add a message… Continue reading Can we mask encrypted traffic to look like real traffic [duplicate]
To preface this question, I use Signal messaging app for voice, video and text. I understand that the content of all these messages are encrypted and no-one but the sender and recipient can see/hear this content. I should also say that I… Continue reading What can my Telco / ISP learn from my Signal (secure messaging app) communications?
I’m creating a mobile app which has chat feature in it. Since I wanted to make it secure, I’ll do some encryption to messages and the data. I’m thinking of using End-To-End encryption for it but I’ve got some issues.
Each user will have pr… Continue reading How To Recover End-To-End Encrypted Data After Losing Private Key?
I want to verify whether mysql remote connection is using tls/ssl connection for security purposes.
I ran status command to check initially:
mysql> status
————–
mysql Ver 8.0.19 for osx10.15 on x86_64 (Homebrew)
Connection id… Continue reading How to know whether mysql connection is using SSL or TLS connection?