Cryptography

Discover Cryptography News

Cybersecurity: The web has a padlock problem - and your internet safety is at risk

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

We've been taught to look out for that little padlock to ensure a website is secure. But it's dangerous to rely on just one detail. Learn more:

LinuxSecurity.com Team
Nov 28, 2019

Shutterstock 572835910 Compressor Esm H200

EU raises eyebrows at possible US encryption ban

The growing battle over end-to-end encryption took another turn last week, when EU officials warned that they may not take kindly to a US encryption ban or insertion of crypto backdoor technology. What is your opinion on this issue? We are in favor of strong encryption. Learn more:

LinuxSecurity.com Team
Nov 27, 2019

Why Adding Client-Side Scanning Breaks End-To-End Encryption

Recent attacks on encryption have diverged. On the one hand, we’ve seen Attorney General William Barr call for “lawful access” to encrypted communications,using arguments that have barely changed since the 1990’s. But we’ve also seensuggestions from a different set of actors for more purportedly “reasonable” interventions, particularly the use of client-side scanning to stop the transmission of contraband files, most often child exploitation imagery (CEI). What are your thoughts on client-side scanning and its privacy implications? Learn more in a great EFF article:

LinuxSecurity.com Team
Nov 08, 2019

20.Lock AbstractDigital Circular Esm H200

Explained: How New 'Delegated Credentials' Boosts TLS Protocol Security

Mozilla, in partnership with Facebook, Cloudflare, and other IETF community members, has announced technical specifications for a new cryptographic protocol called "Delegated Credentials for TLS." Delegated Credentials for TLS is a new simplified way to implement "short-lived" certificates without sacrificing the reliability of secure connections. Learn more about Delegated Credentials for TLS in an informative The Hacker News article:

LinuxSecurity.com Team
Nov 06, 2019

US Department of Justice push for encryption backdoors might run afoul of First Amendment

Is encryption code speech? Earlier court rulings suggest that it is, legally, and therefore subject to First Amendment protections. What are your thoughts? Learn more in a great CSO article:

LinuxSecurity.com Team
Nov 05, 2019

Former FBI General Counsel Jim Baker Chooses Encryption Over Backdoors

In anextraordinary essay, the former FBI general counsel Jim Baker makes the case for strong encryption over government-mandated backdoors. What is your opinion on this? Learn more in a great Schneier on Security article:

LinuxSecurity.com Team
Oct 30, 2019

Calculating the Benefits of the Advanced Encryption Standard

"NIST hascompleted a study-- it was published last year, but I just saw it recently -- calculating the costs and benefits of the Advanced Encryption Standard." Learn Bruce Schneier's opinion on AES in an interesting article:

LinuxSecurity.com Team
Oct 22, 2019

OpenSUSE Expanding Encryption Options For Its Installer

Have you heard that while Ubuntu developers are busyadding experimental ZFS support to their installer, the SUSE developers working on their YaST installer are working on offering better security options for their platform by beefing up the encryption capabilities at install-time? Learn more:

LinuxSecurity.com Team
Oct 10, 2019

A Controversial Plan to Encrypt More of the Internet

The road to routing all Domain Name System lookups through HTTPS is pocked with disagreements over just how much it will help. What is your opinion on this? Learn the details in an informative Wired article:

LinuxSecurity.com Team
Oct 09, 2019

Russian hackers modify Chrome and Firefox to track secure web traffic

Have you heard that Russian hackers are infecting systems with RATs and using them to modify Chrome and Firefox browsers, adding a fingerprint to every TLS action and passively track encrypted traffic? Learn more in an interesting Engadget article:

LinuxSecurity.com Team
Oct 07, 2019

Shutterstock 215496328 Compressor Esm H200

PDF encryption standard weaknesses uncovered

You would be forgiven for thinking that encrypting PDFs, before they are stored or sent via email, keeps their contents away from prying eyes. But according to researchers in Germany, it might be time to revisit that assumption after they discovered weaknesses in PDF encryption which could be exploited to reveal the contents of a file to an attacker. Learn more:

LinuxSecurity.com Team
Oct 03, 2019

New PDFex attack can exfiltrate data from encrypted PDF files

Have you heard about the new attack that German academics have developed that can extract and steal data from encrypted PDF files, sometimes without user interaction? Learn more:

LinuxSecurity.com Team
Sep 30, 2019

Lightning Network Scalability Bitcoin Blockchain Cryptocurrency Ethereum Lightning Payment 796x448 Esm H200

Bitcoin’s Lightning Network has security vulnerabilities that could cause loss of funds

Are you running Lightning Network nodes? If so, you should upgrade ASAP. Learn more:

LinuxSecurity.com Team
Aug 30, 2019

Unlocking the future of blockchain innovation with privacy-preserving technologies

Interested in what the future has in store for blockchain? Check out this interesting HelpNetSecurity article:

LinuxSecurity.com Team
Aug 22, 2019

A4d05aa8 5cc5 46f1 9ce1 1838cda4f559 Esm H200

Certificate Giant Slams Plan to Shorten HTTPS Lifespans

Industry stakeholders are considering reducing the lifespan of HTTPS certificates to just 13 months, around half of the current duration, in order to improve security.

LinuxSecurity.com Team
Aug 13, 2019

Cso Nw Cryptojacking Hacker By Kentoh Gettyimages 1008725032 Cryptocurrency Bitcons By Thaimynguyen Gettyimages 954471176 Abstract Globe Targeted Systems By Blackdovfx Gettyimages 10295345000 2400x1600 100805352 Large Esm H200

What is cryptojacking? How to prevent, detect, and recover from it

Criminals are using ransomware-like tactics and poisoned websites to get your employees’ computers to mine cryptocurrencies. Here’s what you can do to stop it.

LinuxSecurity.com Team
Aug 02, 2019

Chain Links Securing Multiple Transactions Big Data Security Blockchain By Mf3d Gettyimages 877605492 1200x800 100768031 Large3x2 Esm H200

How MIT's Fiat Cryptography might make the web more secure

One of the most common uses of public-key cryptography is securing data on the move. The process used to produce the code that scrambles that data as it travels over the internet has been labor intensive. That's changed, however, with anew system developed by MIT researchersfor creating that code.

LinuxSecurity.com Team
Jul 31, 2019

Bitcoin Crash Cryptocurrency Down Decrease By D Keine Gettyimages 914886116 2400x1600 100788426 Large3x2 Esm H200

Lack of trust will doom cryptocurrency

Have you considered what the future of cryptocurrency looks like? Loss of crypto coins through hacks, fake trading and volatility destroy trust in cryptocurrency, but those aren't its only problems.

LinuxSecurity.com Team
Jul 18, 2019

Explainer: What is post-quantum cryptography?

Are you familiar with post-quantum cryptography? The race is on to create new ways to protect data and communications from the threat posed by super-powerful quantum computers. Get the details in this article.

LinuxSecurity.com Team
Jul 12, 2019

OpenPGP experts targeted by long-feared ‘poisoning’ attack

Somebody out there has taken a big dislike to Robert J. Hansen (‘rjh’) and Daniel Kahn Gillmor (‘dkg’), two well-regarded experts in the specialised world of OpenPGP email encryption.

LinuxSecurity.com Team
Jul 05, 2019

Abyss Locker Ransomware Targets Linux & Windows Users

Linux Foundation Joins Post-Quantum Cryptography Alliance

New Decryption Key Available for Babuk Tortilla Ransomware Victims