encryption
Backdoors in encryption products
- Albert Zenkoff
- 2015-12-15
- Society, backdoor, crime, encryption, illegal, legal, prediction, problem, surveillance, unauthorized
After the recent terrorist attacks the governments are again pushing for more surveillance and the old debate on the necessity of the backdoors in encryption software raises its ugly head again. Leaving the surveillance question aside, let’s see, what does it mean to introduce backdoors to programs and how they can be harmful, especially when ...
Read More
TrueCrypt
- Albert Zenkoff
- 2015-06-16
- Society, disk encryption, encryption, tool, truecrypt, trust
Since the anonymous team behind TrueCrypt has left the building, security aware people were left wondering what’s next. I personally keep using TrueCrypt and as long as it works I will keep recommending it. Recently, Bruce Schneier has raised a few red flags by his strange advice that seems to indicate that he is being ...
Read More
Crypto Wars 2.0: Let the Trolling Commence (and don’t trust your phone)
- Albert Zenkoff
- 2014-11-03
- Society, attacks, crypto, Cryptography, device, encryption, limitations, mobile, security, Sven Tuerpe, system
An excellent article by Sven Tuerpe argues that we pay excessive attention to the problems of encryption and insufficient – to the problems of system security. I wholeheartedly agree with that statement. Read the original article: Crypto Wars 2.0: Let the Trolling Commence (and don’t trust your phone). Security cannot be based solely on the ...
Read More
TrueCrypt disappears
- Albert Zenkoff
- 2014-06-02
- Society, audit, container, disk encryption, encryption, security, society, suspicious, Tools, truecrypt
Quite abruptly, the TrueCrypt disk encryption tool is no more. The announcement says that the tool is no longer secure and should not be used. The website provides a heavily modified version of TrueCrypt (7.2) that allows one to decrypt the data and export it from a TrueCrypt volume. Many questions are asked around what ...
Read More
Cryptography: just do not!
- Albert Zenkoff
- 2012-10-16
- Technology, Algorithm, Cryptography, Development, don't, encryption, hashing, homegrown, philosophy, software, technology
Software developers regularly attempt to create new encryption and hashing algorithms, usually to speed up things. There is only one answer one can give in this respect: Here is a short summary of reasons why you should never meddle in cryptography. Cryptography is mathematics, very advanced mathematics There are only a few good cryptographers and ...
Read More
Speaking of passwords…
- Albert Zenkoff
- 2012-07-22
- Technology, database, encryption, hash, hashing, howto, Password, password database, password hashing, passwords, rainbow tables, random salt, salt, user information
Wouldn’t it be quite logical to talk about passwords after user names? Most certainly. Trouble is, the subject is very, very large. Creating, storing, transmitting, verifying, updating, recovering, wiping… Did I get all of it? It is going to take a while to get through all of that, do you reckon? Let’s split the subject ...
Read MoreAbout the author
Albert Zenkoff
Managing corporate security in both technical and business sense in the context of long-term business strategy and sustainability.
For security consulting, training, certification and audit mail albert@aruberusan.com.
Share and stay updated
