Collaborate Disseminate
Signal Messenger is basically state of the art chat when it comes to security and privacy: It uses only phone numbers for user identification, doesn’t store user chat and the encryption protocol is tried, tested and proven. It is very soph… Continue reading Why is this simple encryption protocol not enough for messaging?
Please see the image below which represents an algebraic definition of the Dolev Yao Closure. From reading around, it appears this is BAN logic and that the lines mean "If you believe the above statement is true, then you must believe… Continue reading How should I interpret this definition of the Dolev Yao Closure?
I’m trying to find evidence of use of the associated data (authenticated cleartext associated with the encrypted and authenticated data) feature offered by AEAD (Authenticated Encryption with Associated Data) construction in a real world p… Continue reading Does any real world protocol makes use of the associated data in AEAD?
Is this normal? Alexa (192.168.1.14) seems to be sending odd traffic to tcp/7 (echo). What might this be about?
19:10:41.387601 IP (tos 0x0, ttl 64, id 37035, offset 0, flags [DF], proto TCP (6), length 60)
192.168.1.14.47792 > ub… Continue reading What’s Alexa up to? [closed]
Is this normal? Alexa (192.168.1.14) seems to be sending odd traffic to tcp/7 (echo). What might this be about?
19:10:41.387601 IP (tos 0x0, ttl 64, id 37035, offset 0, flags [DF], proto TCP (6), length 60)
192.168.1.14.47792 > ub… Continue reading What’s Alexa up to? [closed]
I am studying CREST CPSA where the syllabus is listed here.
There is a part of the syllabus which states I should know the Evaluation of responsive but unknown network applications.
I find this interesting, as with my limited experience in… Continue reading How to evaluate a responsive but unknown network protocol?
I have gone through each protocol trying to find out what the type of communication is and what the attack is on the network but I cant seem to figure it out as I thought it would be due to something with the UDP protocol as the payload le… Continue reading Cant figure out attack on .cap file on wireshark
In my search for a comprehensive list of implemented RFC’s as pertaining to TCP/UDP traffic, I’ve come across RFC 7414 – but it only provides links and only for TCP. Is there any project that either meta-analyzed these, or that has been ma… Continue reading Is there a way to filter RFCs for what would constitute minimum allowed TCP/UDP traffic for functioning of web applications? [closed]
Consider the diagram in https://en.wikipedia.org/wiki/Kerberos_(protocol)#/media/File:Kerberos_protocol.svg depicting the Kerberos protocol.
I’m wondering how the authentication server (AS) is useful.. Couldn’t we drop the messages A, B, C… Continue reading Why is the authentication server needed in the Kerberos protocol
We have a production that uses our software (put on a chip) and a requirement that we need to limit the amount of chips produced for each customer (so they need to buy a license) – so they can’t produce more than allowed. The production is… Continue reading Usage of HMACs to verify the licensing during production