Collaborate Disseminate
What is the industry standard on this matter? How do you handle the keys for your websites, apis, micro-services, etc.
If I create private keys without password they will be 100% compromised if one has access to them.
On the other hand if … Continue reading Private keys with or without password for webservices?
Am trying to understand the phase where the symmetric key is getting generating. From what I am understanding Diffie-Hellman is used to derive the symmetric key in TLS1.3
I am reading this tls explanation and so many keys are derived
Is th… Continue reading symmetric key generation in TLS 1.3
I generated an RSA Private Key using openssl genrsa -out mykey.pem 2048
To extract the public key I have found 2 commands, one using openssl :
openssl rsa -in mykey.pem -pubout > mykey.pub
And the other using ssh-keygen:
ssh-keygen -y … Continue reading Difference between these two extracted public keys?
I need to generate an RSA keypair again. Why are there so many different ways to do it? Depending on where you look or who you ask you will get a different answer and the end result seems to be the same thing?
Some people use openssl, othe… Continue reading Why are there so many ways to create a RSA keypair? [closed]
Does a X.509 Certificate contain some kind of ID that is associated with the Private Key that was used to create the Certificate?
So if i had a database of all my Private Key IDs, i could then look at a Certificate Field, that contains the… Continue reading Does a X.509 Certificate contain an ID of the Private Key?
During the setup of a new encrypted volume, the VeraCrypt requires a random mouse movement within the window. If someone looking from the outside can see that a monkey sitting in front of a computer playing with the mouse.
There are good s… Continue reading Why we are still required to move the mouse when generating the keys in VeraCrypt?
You have a 2048 bit private key. You generate an IV for the message you are going to encrypt. Next, you take the first block of plaintext and SHA256(IV + 2048 bit key). You use that hash as a key to encrypt the first block of plaintext … Continue reading An attempt at using AES as a stream cipher
Can a KMS manage an Asymmetric Keypair on another platform?
i.e. the keypair has expired its effective crypto period and needs to be replaced by a new key pair.
And if so how is this done?
Continue reading Can a KMS manage an Asymmetric Keypair on another platform?
Is it possible to get public key from SIM card with only TelephonyManager API.
I know SIM card have CPU, RAM, ROM, EEPROM, Crypto-processor, etc…
Inside ROM part here is Ciphers, public and secret keys, certificates, etc..
Now my questio… Continue reading Reading public key from SIM card
OpenSSL keeps the structure CMS_ContentInfo opaque and in the case of enveloped data generates and manages the content-encryption key completely by itself. It is not possible to provide a content-encryption key generated by yourself.
In co… Continue reading Reusing content-encryption key in cms enveloped data