Collaborate Disseminate
From what I’m reading, for storing passwords it is recommended to use a KDF (like Bcrypt). If it is more secure to use a KDF for handling passwords, when would you use a password hash instead?
Continue reading When would one use a password hash instead of a KDF?
I am trying to find the default KDF for my version of gpg:
gpg (GnuPG) 2.2.6
libgcrypt 1.8.2
Does anyone know how?
Continue reading How can I find the default KDF for my version of GPG?
(Please correct me if I am wrong)
I really like the gpg project . It is a multi purpose highly efficient and very secure tool made for pactical secenarios .
From waht I know it recieved major funding from the german gouvern… Continue reading Why is gpg not as strong as it could be ?
This answer on another question on security stackexchange by a very reputed user explains why he prefers GnuPG over OpenSSL for file encryption. From what I understand, it can be summarized as this:
When using OpenSSL, th… Continue reading Why brute-force the password instead of the key directly?
This answer on another question on security stackexchange by a very reputed user explains why he prefers GnuPG over OpenSSL for file encryption. From what I understand, it can be summarized as this:
When using OpenSSL, th… Continue reading Why brute-force the password instead of the key directly?
In the past couple of weeks I have been reading about DH and ECDH which are key exchanging algorithm to compute a shared secret key. According to advices, it is better to use DH with key size 2048 bits and ECDH secp521r1 whic… Continue reading ECDH vs DH secret key size
In the past couple of weeks I have been reading about DH and ECDH which are key exchanging algorithm to compute a shared secret key. According to advices, it is better to use DH with key size 2048 bits and ECDH secp521r1 whic… Continue reading ECDH vs DH secret key size
I am working on an encryption method between a server and multiple clients. The client hardware only supports basic encryption algorithms (Currently Aes 128-bits and HmacSha1). The hardware is too simple to support TLS/SSL. I… Continue reading Encryption for a system supporting only basic cryptographic functions
I am working on an encryption method between a server and multiple clients. The client hardware only supports basic encryption algorithms (Currently Aes 128-bits and HmacSha1). The hardware is too simple to support TLS/SSL. I… Continue reading Encryption for a system supporting only basic cryptographic functions
These two FDE solutions are similar, but I noticed different executions speed: specially mounting a device it seems that Veracrypt takes more time decrypting it.
So I would like to compare it with LUKS analizing the header f… Continue reading Differences between LUKS and Veracrypt