Collaborate Disseminate
Is there a way to prevent a Windows 10/11 system to access/modify/delete data from a secondary linux drive?
I understand I can encrypt the linux drive, but wouldn’t the windows system be still able to see the drive, and a potential malware… Continue reading Preventing Windows from seeing/tampering with linux drive
I’m thinking of getting a Librem laptop with Pureboot which uses Heads (with the Librem key) for tamper detection. But I’ve heard rumours that there are weaknesses or vulnerabilities so I wanted to see if anyone here knows about it. For me… Continue reading How secure is Heads for detecting tampering or infection of firmware or boot sector? (Pureboot)
Many projects offering binaries, also offer hashes (e.g. SHA256) of those binaries, wither as .ASC files, or directly on the web page near the binary. This isn’t to protect against network-caused corruption, as that’s ensured by the TCP pr… Continue reading What’s the point of providing file checksums for verifying downloads?
I’m building an API with websocket that serializes data through JSON. The App itself is a chat application. I came up with the following structure to send my data:
{date: ‘2020-05-31′, time: ’14:28:05’, text: “Hey!”, to: ‘<id:int>’,… Continue reading Protect API from being tampered?
I’m asking this question with the assumption that anything the user can do, so can malware.
I’m using a third party firewall on my system to control which programs are able to access the internet. However I notice that I – as a limited us… Continue reading How could malware disable third party security software?
Does WP(Write Protect) pin of a USB flash memory controller prevent tampering with its firmware?
I want to have an USB stick that I can make it read-only and insert it in any untrusted PC without risking a silent BadUSB infection.
If someone tampers with data being transmitted over HTTPS using TLS, would that result in a corrupted decrypted message or would it result in the error being detected such as through a cryptographic checksum and retransmitted?
Let’s say “User A” has a set of data like below. Each entry has been hashed (sha256) to ensure integrity within a single entry. You can’t modify data of a single entry without also modifying the corresponding hash:
[
{ data: “000000”, has… Continue reading Is multiplying hashes a valid way to ensure two sets of data are identical (but in arbitrary order)
I ran the Test Network example from Hyperledger Fabric Sample and I update the config to use CouchDB.
My goal it’s to find a way to catch the peer who try to tamper data.
I tampered CAR4 from the CouchDB UI (peer0 from Org1):
{
“_id”:… Continue reading Hyperledger Fabric – How can we catch the peer who try to tamper data?
Tamper-Evident devices and measures are devices which in some way indicate that an event not intended by the developer or manufacturer has occurred. Examples of tamper-evident devices are stickers that leave specific residue or are destroy… Continue reading Are there any standards or guidelines tamper-evident devices can adhere to?