Collaborate Disseminate
As we know, NIST PQC project is at its 3rd round, with draft standard expected to arrive in the next (few) year(s).
An unfortunate fact is that, we’re not seeing many signature schemes general-purpose enough (in the sense that, the size of… Continue reading SSL/TLS Forward secrecy with 2 KEM public keys
I would like an example of how to generate and use X448 and ED448 in C# through bouncycastle crypto library (X25519 and ED25519 is already provided in libsodium library).
Is it possible to export and import X448 and ED448 public and privat… Continue reading How to use X448 and ED448 in C#(BouncyCastle)? [migrated]
Trying to understand this from a high level conceptually. It is obvious from all information on Asymmetric encryption that a public key can be of course, public and there isn’t a danger of interception. So I’m faced with a point in my soft… Continue reading How vulnerable is security if a public key is swapped by active attacker if a key check is done?
I am new to security area. I came across mutiple words I can’t understand and there is little infomration I can get from google.
What is XDH/XEC, is the X means ‘enhanced’? Are they just have a different way of generating key pair?
Accord… Continue reading XDH vs DH and ECDSA vs EDDSA [migrated]
A little context: I’m working in designing a system to sign and verify data sent between modules of a bigger system. Currently the system has two parts, a central application and a SDK inside modules which is making all the key exchange an… Continue reading Is there any standard or protocol of key exchange between multiple nodes?
This is a follow on from this question:
"Diffie-Hellman Key Exchange" in plain English
In the answer to that question, the standard Diffie Hellman key exchange equation is derived:
(g^a mod p)^b mod p = g^ab mod p
(g^b mod p)^a m… Continue reading How does the inclusion of a subprime q value affect the Diffie Hellman equation for key exchange? [duplicate]
I want to implement Chip Authentication for ePassport documents, and wish to validate my understanding of it.
I’ve managed to get it up and running by using the JMRTD library, specifically the function doEACCA(). When inspecting the code o… Continue reading ePassport Chip Authentication – how to verify?
I’m thinking about the way to build encryption mechanism for ‘peer-2-peer’ communication. This is a mechanism I had a thought of:
Alice wants to communicate with Bob
First of all, Alice and Bob must know and trust the existence of the same… Continue reading Is this scenario of static ECDH public key exchange right?
Here’s my not so theoretical scenario: A day-one Trojan horse attack where the attacker sets up a secure connection back to himself using a well known trusted port, such as 80 21 443. Or for instance, if a malicious user takes advantage of… Continue reading SNORT rule for detecting/preventing unauthorized VPN or encrypted traffic
I want to share AES key using RSA. What is the recommended/widely used format for encrypting the AES key and its attributes with the public key? I know that PKCS#7/CMS enveloped-data allows encrypting any key with its attributes using a ce… Continue reading Key Exchange using RSA public key without a certificate