datenzone.de
A blog on cryptographie | Erik Tews
https://www.datenzone.de/blog/2012/01/a-blog-on-cryptographie
A blog on cryptographie. On January 4, 2012. I have started to write about mostly applied aspects of cryptographie, cryptanalysis and security on http:/ cryptanalysis.eu/. Postings for these topics won’t appear here. Using SSL/TLS Client Certificate Authentification in Android Applications →. Using Certificate-Transparency to grab a list of all hostnames a CA has issued certificates for. Better seeded of the OpenSSL random number generator for gensafeprime. Generating safe prime numbers in Python.
datenzone.de
erik | Erik Tews
https://www.datenzone.de/blog/author/erik
Using Certificate-Transparency to grab a list of all hostnames a CA has issued certificates for. On August 31, 2015. Is an approach to improve the security of CAs issuing X.509 certificates by running a public audit-log for all issued certificates. Before a CA issues a certificate, the tbsCertificate structure. How to get the hostnames from the log. To download, simply type:. The result should be a sorted list of all hostnames (including with wildcards) digicert every issued a certificate for. Up to 1...
datenzone.de
January | 2012 | Erik Tews
https://www.datenzone.de/blog/2012/01
Monthly Archives: January 2012. Installing Stunnel on OpenWRT. On January 29, 2012. Is a general purpose SSL/TLS proxy. I explained in my last posting. So that Android apps can communicate with a server through SSL/TLS with mutal authentication and encryption. For many people, running stunnel on their home router as a gatekeeper might a good option. OpenWRT. Is an open source operating system, that can be flashed on many routers and wireless LAN access points an other device. Cert = /etc/stunnel/cert-ser...
blog.cryptographyengineering.com
A Few Thoughts on Cryptographic Engineering: Another update on the Truecrypt audit
http://blog.cryptographyengineering.com/2015/02/another-update-on-truecrypt-audit.html
A Few Thoughts on Cryptographic Engineering. Some random thoughts about crypto. Notes from a course I teach. Pictures of my dachshunds. Wednesday, February 18, 2015. Another update on the Truecrypt audit. There's a story on Hacker News. Asking what the hell is going on. With the Truecrypt audit. I think that's a fair question, since we have been awfully quiet lately. To everyone who donated to the project, first accept my apologies for the slow pace. I want to promise you that we're not. We had an amazin...
blog.cryptographyengineering.com
A Few Thoughts on Cryptographic Engineering: Bitcoin Tipjar
http://blog.cryptographyengineering.com/p/bitcoin-tipjar.html
A Few Thoughts on Cryptographic Engineering. Some random thoughts about crypto. Notes from a course I teach. Pictures of my dachshunds. I write this blog for fun. But if you feel inclined to send me some Bitcoin it would totally make my day. Subscribe to: Posts (Atom). Journal of Cryptographic Engineering. Not related to this blog). View my complete profile. Let me tell you the story of my tiny brush with the biggest crypto story of the year . A few weeks ago I received a call from a reporter a. Yesterda...
goodenoughsecurity.blogspot.com
Good Enough Security: October 2012
http://goodenoughsecurity.blogspot.com/2012_10_01_archive.html
Product Security Engineering in the Real World and Why Security Systems Fail. Monday, October 22, 2012. Where I've been for the last two months. It's been two months since my last post. During this time I've been very active on the Stack Exchange IT Security site. Under the equinym "David Wachtfogel". An equinym is a pseudonym which is equal to the real name). Wider distribution. There are more people in the Stack Exchange audience than there are in my blog's. Following are links to some of my contributi...
goodenoughsecurity.blogspot.com
Good Enough Security: Where I've been for the last two months
http://goodenoughsecurity.blogspot.com/2012/10/where-ive-been-for-last-two-months.html
Product Security Engineering in the Real World and Why Security Systems Fail. Monday, October 22, 2012. Where I've been for the last two months. It's been two months since my last post. During this time I've been very active on the Stack Exchange IT Security site. Under the equinym "David Wachtfogel". An equinym is a pseudonym which is equal to the real name). Wider distribution. There are more people in the Stack Exchange audience than there are in my blog's. Following are links to some of my contributi...
blog.cryptographyengineering.com
A Few Thoughts on Cryptographic Engineering: Truecrypt report
http://blog.cryptographyengineering.com/2015/04/truecrypt-report.html
A Few Thoughts on Cryptographic Engineering. Some random thoughts about crypto. Notes from a course I teach. Pictures of my dachshunds. Thursday, April 2, 2015. A few weeks back I wrote an update on the Truecrypt audit. Promising that we'd have some concrete results to show you soon. Thanks to some hard work by the NCC Crypto Services group, soon is now. We're grateful to Alex, Sean and Tom, and to Kenn White at OCAP for making this all happen. You can find the full report. For example: the most signific...