Collaborate Disseminate
The global hardware security modules market size was valued at $3.1 billion in 2020 and is projected to reach $7.9 billion by 2028, growing at a CAGR of 12.4% from 2021 to 2028, according to Verified Market Research. With the rising frequency and compl… Continue reading Hardware security modules market to reach $7.9 billion by 2028
I’m going through OWASP Cryptographic Storage Cheat Sheet and it says:
Encryption keys should be changed (or rotated) based on a number of different criteria: (…) After the key has been used to encrypt a specific amount of data. This wo… Continue reading Why should encryption key be rotated after it has been used to encrypt a specific amount of data?
I am currently working on a cli application which uses AES encryption. For key generation, I am using the PBKDF-2 algorithm, along with SHA-256. I am providing a way to enter the password once and store the key, to enable the user to use t… Continue reading Storing AES key for later usage
I have a pair of RSA keys where the private key is encrypted with a passphrase. Would it be a security risk if the public and private keys are committed to version control without any further encryption (like via using Ansible Vault)?
NB: … Continue reading Can an encrypted RSA key be committed to git?
The standard for TR-31 (and Thales) Key blocks (ref) have a field for "Key Version Number", which is only defined in the spec as
Two-digit ASCII character version number,
optionally used to indicate that contents of the
key bloc… Continue reading Uses for TR-31 Key Version Number?
It’s not uncommon for an organization to allow developers to use their personal Github to do their work.
A potential problem I see with this, is that the organization doesn’t have control over that developer’s personal devices, and so were… Continue reading Is it possible to configure Github to allow writes to a particular repo/organisation, only from a particular SSH key?
It’s not uncommon for an organization to allow developers to use their personal Github to do their work.
A potential problem I see with this, is that the organization doesn’t have control over that developer’s personal devices, and so were… Continue reading Is it possible to configure Github to allow writes to a particular repo/organisation, only from a particular SSH key?
Let’s say I make an id of type ed25519-sk and have it reside on my yubikey. OpenSSH makes two files, id_ed25519_sk, a stub private key, and id_ed25519_sk.pub the corresponding public key.
If I lose these, can I regenerate them with just th… Continue reading Is it possible to regenerate the stub private key from just the physical key in OpenSSH?
Trying to test the conformance of the certificates inside our application, with the below requirement:
The application shall [selection: invoke platform-provided
functionality, implement functionality ] to generate asymmetric
cryptographi… Continue reading Validate the conformance of an OpenSSL created certificate with FIPs standards
I’m in the process of building a secure document storage on behalf of users of a web and mobile application. The goal is to have end-to-end encryption, as in documents will be encrypted and decrypted on device, but not require users to man… Continue reading How to manage a users private key in a secure document storage solution?