-
Hi! I am working in a project that requires `AES-CCM` cipher suite within TLS. I know that `crypto/tls` aims to support a limited safe subset of TLS. But since TLS 1.3 will only support the following …
-
Apparently some iOS devices have hardware accelerated AES and SHA-1:
http://stackoverflow.com/questions/4812474/does-iphone-support-hardware-accelerated-aes-encryption
The API is:
https://developer.a…
-
The [WebRTC](https://datatracker.ietf.org/doc/html/rfc8827#section-6.5) spec [defines](https://datatracker.ietf.org/doc/html/rfc8827#section-6.5) some requirements for the used DTLS implementation:
…
-
When the system library is openssl-1.0.1e, NRPE does not support ECDHE key exchange, despite that openssl 1.0.1e is capable of it.
With this config (nrpe 3.2.1):
```
# grep ^ssl /etc/nagios/nrpe…
-
Hi,
I'm looking to test out disabling HTTPs on the WSO2 Identity Server (I'm testing this on Kubernetes Infrastructure where we are terminating the certificates in Ingress).
I have been followin…
-
vault use such configmap:
vault.json: |
{
"backend": {
"consul": {
"address": "unix:///consul-unix-socket/consul-client.sock",
"scheme": "http",
…
-
Can't find out why routes are not adding.
Here's my configs
cat /etc/openvpn/ccd/kostroma
```
ifconfig-push 192.168.200.38 255.255.255.0
iroute 10.1.0.0 255.255.255.0
iroute 10.1…
-
The cryptography behind this gem is *far* behind standards considered minimally acceptable for modern systems.
Far better would AES-128-GCM with a random IV. Best would be ChaCha20-Poly1305 on syst…
-
As noted by Alan, Lexmark stumbled into an issue with the HCD cPP v1.0 for the FCS_COP.1/KeyEnc Cryptographic operation (Key Encryption) SFR on page 62:
The SFR states that:
The TSF shall perform …
-
Today I noticed that there are some Bugs when TLS 1.3 is used, specially the Ciphersuit and hence the score is wrong.
(Possible because with the latest(?) Draft of TLS 1.3 in Firefox 52.0a2 the Ciphe…