Collaborate Disseminate
Assume that I’ve used white noise from the classic “zener breakdown” circuit to produce 512 bits of random data.
If I use these as the key to a Veracrypt volume, is there any benefit to running 200,000 rounds of sha-512 on them, or is one… Continue reading Are many rounds of SHA needed for a random veracrypt key
I have an SSL cert in which CN is “abc.xyz.com”. But the url shared to 3rd party organization to access a web app on our server is: “def.stu.com/what-ever”.
When this arrangement is working for some 3rd party organization … Continue reading Is it required to have the same Domain Name and Common Name for SSL Certificate?
I want to check if the following encryptions are disabled in the openssl-1.0.2l
TLS_RSA_WITH_RC4_128_MD5
TLS_RSA_WITH_RC4_128_SHA
SSL_RSA_WITH_RC4_128_MD5
SSL_RSA_WITH_RC4_128_SHA
SSL_RSA_WITH_3DES_EDE_CBC_SHA
Are there a… Continue reading How to check if some encryptions are disabled in OpenSSL?
I have a question about DSA and GPG. Suppose you are trying to verify a downloaded file is ‘legit’ (i.e., no malicious code and it is the intended file). I’ll just use Ubuntu’s 16.04 LTS ISO image as an example. Following thr… Continue reading Can an attacker replace the hash of a download, a download, and the public key?
I have a question about DSA and GPG. Suppose you are trying to verify a downloaded file is ‘legit’ (i.e., no malicious code and it is the intended file). I’ll just use Ubuntu’s 16.04 LTS ISO image as an example. Following through the instr… Continue reading Can an attacker replace the hash of a download, a download, and the public key?
Let x be an arbitrary 256-bit value.
output of H(x) is smaller than the following value: 2^215
How many hash functions must compute to find a solution?
For this problem I have tried to solve it by pre-image attack.
And the … Continue reading How do i found number of hash required for a given output?
There appears to be an inconsistency (or unpublished protocol) in many online hash generators when formulating a hash from an uploaded text file, versus strictly hashing the contents of a file. This issue appears to be unrela… Continue reading Inconsistency Among MD5, SHA1, and SHA256 Hashing Protocols
I’ve created an Capture The Flag challenge for me and a few of my mates, and for the final challenge, you’re goal is to log in as admin to a site. Now the site doesn’t use any server side languages (since it’s purposely inse… Continue reading How Secure Would Client Side Sha-512 Be In JavaScript
I’ve created an Capture The Flag challenge for me and a few of my mates, and for the final challenge, you’re goal is to log in as admin to a site. Now the site doesn’t use any server side languages (since it’s purposely inse… Continue reading How Secure Would Client Side Sha-512 Be In JavaScript
For my web application, users connect to a web server in HTTPS and need to have a client certificate installed on their computer/browser.
I understand that the sha1 deprecation is important for server certificates to preven… Continue reading Is the sha1 deprecation a problem for **client** certificates?