-
Kibana relies on a number of encryption keys. Arguably the most important key is `xpack.encryptedSavedObjects.encryptionKey`, as this controls the encryption/decryption of actions, alerts, and other s…
-
## Introduction
[I have an existing issue [here](https://github.com/w3c/webcrypto/issues/265), but I'm hoping to get more eyes on it.]
The `SubtleCrypto.deriveKey` API exposes one password-base…
-
Implement COSE Encryption, [IETF RFC 8152, section 5](https://tools.ietf.org/html/rfc8152#section-5)
* [ ] Read and expose metadata for tagged and untagged COSE_Encrypt messages
* [ ] Read and exp…
-
The IETF SCITT working group is working on an effort related to [sigstore](https://www.sigstore.dev/). They decided to base their work on the [RFC 9052 \- CBOR Object Signing and Encryption \(COSE\)](…
-
The prototype [IPP Encrypted Jobs and Documents v1.0 (TRUSTNOONE)](https://ftp.pwg.org/pub/pwg/ipp/wd/wd-ipptrustnoone10-20210519.pdf) specification sends sensitive IPP attributes and document data in…
-
Add support for ECDH-ES (+ X25519) / XSalsa20-Poly1305 and ChaCha20-Poly1305 to JOSE/ IANA registry.
-
* RTP (and RTCP) headers and payloads will be entirely encrypted using QUIC ({{RFC9000}}), as secured by TLS 1.3 handshake ({{RFC9001}}), between QUIC endpoints. It's worth thinking more about how th…
-
Coming the Android app DAVdroid: https://forums.bitfire.at/topic/1078/error-while-uploading-created-modified-entries/20
Here is what the author said:
> According to RFC 6350, »property parameter val…
-
Encrypted SNI might become a thing!
It might be possible to handle this in `nginx`, although a separate port/IP would probably the most practical.
-
I have a Java application that uses [BouncyCastle](https://www.bouncycastle.org/java.html) to create a CMS EnvelopedData structure with a KeyAgreeRecipientInfo structure, using the AES algorithm with …