Collaborate Disseminate
Recently, I’ve become interested in applied cryptography and stumbled upon a link explaining how Linux estimates entropy.
At some point, we’re told that entropy estimation is based on first, second and third differences of … Continue reading On the Use of Deltas in Linux Entropy Estimators
I feel like I’m overthinking this as the only online example I’ve come across is this paper, which is using more advanced math than is expected of us. But if we have a known passface database off 100 faces, a password is five… Continue reading Calculating entropy of a graphical password (Passface)?
I feel like I’m overthinking this as the only online example I’ve come across is this paper, which is using more advanced math than is expected of us. But if we have a known passface database off 100 faces, a password is five… Continue reading Calculating entropy of a graphical password (Passface)?
Some newer hard drives and solid state drives are SED (Self-Encrypting Drives), which create a DEK (Data Encryption Key) and store it either unencrypted, or encrypted with a user-supplied AK (Authentication Key) if FDE is wan… Continue reading How do SED drives generate the DEK?
Some newer hard drives and solid state drives are SED (Self-Encrypting Drives), which create a DEK (Data Encryption Key) and store it either unencrypted, or encrypted with a user-supplied AK (Authentication Key) if FDE is wan… Continue reading How do SED drives generate the DEK?
Is the password
This is a password--a bad one.
More secure than
This is a password—a bad one.
(Note the em dash U+2014 “—”)
against an attacker who knows nothing about
the character set I used
or the length of my password?
Whereas the former is longer, the latter has an unusual non-ASCII character.
Continue reading Passwords – security of additional characters vs non-ascii character
This question already has an answer here:
XKCD #936: Short complex password, or long dictionary passphrase?
23 answers
This question already has an answer here:
XKCD #936: Short complex password, or long dictionary passphrase?
23 answers
OWASP recommends this practice and so do some other companies. I think it makes sense at first glance but if you think about it, it actually limits entropy instead of increasing it. How many combinations would be reduce with … Continue reading Is it more secure to limit passwords that have two identical characters in a row?
OWASP recommends this practice and so do some other companies. I think it makes sense at first glance but if you think about it, it actually limits entropy instead of increasing it. How many combinations would be reduce with … Continue reading Is it more secure to limit passwords that have two identical characters in a row?