-
Currently, the algorithms ecdh-sha2-nistp256, 384, and 521 are categorized as "fail" due to concerns that they may have been compromised by the NSA. This suspicion arises from the fact that the NSA ha…
-
See Section 4.4.3.10 of the spec:
- [x] RSA 2048
- https://github.com/Nitrokey/opcard-rs/pull/94
- [x] RSA 3072
- https://github.com/Nitrokey/opcard-rs/pull/116
- [x] RSA 4096
- https://g…
-
![ecdhe](https://cloud.githubusercontent.com/assets/11966684/11022593/d5e9945e-8662-11e5-9a3e-3cb405679376.png)
As you can see it uses ECDHE for the key exchange. In the long part you describe it as …
-
Hey,
i cannot figure out why are you marking 'ecdh-sha2-nistp256', 'ecdh-sha2-nistp384', 'ecdh-sha2-nistp521' as weak. I checked out some distros and even OpenBSD have them enabled by default. Care…
-
JRuby 1.7.12, and the tip of the master branch, both support ciphers from Java 6, but they do not provide support for newer ciphers that are available in Java 7 or Java 8.
In ext/openssl/src/main/jav…
-
I built a few erlang's using the following Config:
```
[Configs]
default=--with-ssl=/usr/local/Cellar/openssl/1.0.2d_1 --enable-smp-support --enable-threads --enable-kernel-poll --enable-darwin-64bit…
-
The rgb-proxy-server is currently not very private & secure:
1. The proxy server can read the full consignment data in the clear
2. The proxy server can lie about whether the payee actually got the …
-
### The problem
I updated my Aruba 305 IAP to major version 8.12. They worked well before regarding the presence detection but I had some minor issues with some other wifi devices so decided to upd…
-
ARKG still provides additive blinding ciphersuites only, while for ECDH (and possibly ECDSA) multiplicative blinding is easier. For now I've cheated and assumed an additional “ARKG-P256mul” ciphersuit…
-