Collaborate Disseminate
I am attempting to perform real time decryption of TLS 1.3 packets (TLS_AES_256_GCM_SHA384). I have retrieved the mastersecrets for the specific flow by using uprobes on OpenSSL, and matched the mastersecrets to the flow using ClientRandom… Continue reading Real Time Decryption of TLS 1.3 packets Asked today Modified today [closed]
Context
I’ve used OpenSSL to encrypt some socket communications.
I am however using some functionality from the windows API that prevents me from using OpenSSL’s opaque builtin sockets, so I am buffering through their BIO_s_mem interfaces … Continue reading Pitfalls of manual AES encryption for data transfer [migrated]
I have a textbook that contains the following problem:
In practice, one master key, KM, is exchanged in a secure way (e.g. Diffie-Hellman key exchange) between the involved parties. Afterwards, session keys, kx, are regularly updated by u… Continue reading Is This Perfect Forward Secrecy?
I’m trying to understand the difference between generating a private key using openssl genrsa and adding -newkey to req.
I found a 2014 answer saying the underlying code is the same, one from 2015 saying the encryption is different, and a … Continue reading openssl: genrsa vs req -newkey private keys. What’s the difference?
I’m looking into the differences between stateful and stateless key management. I understand that stateful key management means that I have a database that tracks my keys, and can become very large. There are obvious security implementatio… Continue reading Stateless Key Management
For a web service, I am considering generating random 25-49 recovery codes as a kind of pass that can be stored in a pass manager (no usernames).
Instead of pass(word) hashing on the server, I consider hashing the pass on the client with p… Continue reading Is pass -> [via pbkdf2] -> seed -> ECDSA key pair better than pass(word) hashing?
Earlier today, I was using gpg to generate keys for work. While doing so, I noticed:
We need to generate a lot of random bytes. It is a good idea to
perform some other action (type on the keyboard, move the mouse,
utilize the disks) durin… Continue reading How does user activity affect entropy generation process in GnuPG?
This is more of a request of auditing my approach, thus asking here might not the best way, and I apologize for that, but I really don’t know how to otherwise talk to cryptography experts. I have some basic knowledge about crypto and grasp… Continue reading Derive a key (and not store it) from a passphrase, to be used with AES
I am a complete beginner and have almost no knowledge of encryption.
I have a file transfer website that encrypt the files before saving them in the server then it decrypts the files to be ready to download. The problem is the encryption k… Continue reading How can I encrypt files in a file transfer website? [closed]
I’am trying to get a feel for Elliptic Curve Cryptography. I wrote a small Python program below to generate key material but I don’t get the same result for y_squared and Q.y^2. I’am using the parameters from 256-Bit Random ECP Group (RFC … Continue reading Elliptic Curve Cryptography Key Verification fails [migrated]