Collaborate Disseminate
If we consider that having a valid refresh token allows you to get a valid access token, then the two can be considered to have the same ‘informational value’ right?
Then why are they treated differently in terms of security aspects like e… Continue reading Why are refresh tokens treated differently than access tokens
I am in the process of learning PGP (GnuPG more precisely).
I am trying to figure out which is the best strategy for my encryption ([E]) subkey in terms of expiration/revocation/renewal. Could you please tell me if the following affirmatio… Continue reading PGP expired encryption subkey : renew or replace?
I already tried googling but no luck. All search results always tell you how to check cert expiration manually, but that is not my question. Yes I can use OpenSSL for example, but what I am asking is how the SSL/TLS protocol does it, not h… Continue reading How does the SSL/TLS protocol determine if a certificate is expired or not?
For testing purposes, I need a PGP key for a specific uid that has already expired.
Using gpg –full-generate-key only gives me the following options:
Please specify how long the key should be valid.
0 = key does not expire
… Continue reading How to generate an expired key with gpg?
ArchLinux wiki page on GnuPG reads
Once a key has been submitted to a keyserver, it cannot be deleted from the server.
Does that mean that also the expiration date with which I published the key via gpg –send-keys key-id cannot be chang… Continue reading Can I change expiration date of a gpg key I’ve already sent to a key server?
I am currently playing around with Mifare Classic 1k. And everything I have read about it’s security is true. So it’s not exactly the best thing to use to avoid cloning. But I was wondering if someone manages to hack one of these cards fol… Continue reading Best practice for encrypting data on Mifare
I downloaded Google’s Cloud SDK installer today, and upon checking the certificate to validate it, I noticed something strange: the expiration date of the certificate appears to be December 22nd 2019 – over four months from today, April 30… Continue reading Why does Windows consider a certificate valid even after its expiration time?
I want to see how my application will behave in case if the SSL certificate expires.
CSR are signed by CA, so they are not self-signed and the validity period is 2 years. For my test I want to set the expiration period as 1… Continue reading Request certificate expiration date in CSR
I work on an application where users are sent a unique registration code in the post. They use this, along with other personal information known to the user, to confirm the identity of the user upon creating a new account.
Does the uniqu… Continue reading Do registration codes need expiry?
I have certificate that expires in two years. I’ll probably try to participate in key signing party so I get to know what it actually looks like.
What happens in two years? When my certificate expires, and I’ll renew it by s… Continue reading How does PGP web of trust handle certificate expiration?