-
The `PKCS12KDF` is not FIPS approved, so it's missing from the `fips` provider. Therefore it's not possible to create a `PKCS #12` file that only uses FIPS approved algorithms in currently release…
-
I suggest changing the password hash function from PBKDF2(default) to Argon2id since Argon2id is much more cryptographically secure.
It is available through settings>security>keys>KDF algorithm>argon…
-
While I analyzed the encryption scheme of _SQLCipher_, I found out that _SQLCipher_ stores the key salt in the first 16 bytes of the database header just as _sqleet_. However, _SQLCipher_ does not inc…
-
## What are MAGIC BYTES?
They've been the same forever and haven't changed. Have you ever *actually* explained what they mean? What's their significance? They aren't encrypted, so the main annoyance …
-
I do not trust 100% on telegram
-
I've been thinking about a way to allow for MLAs to be signed in a privacy preserving manner without storing things like lender details on a website server.
One thing to bear in mind here is that som…
-
# Bug report
### Bug description:
When
* OpenSSL is configured in FIPS mode
* recommended config is used to only load "base + fips" providers
* without the default provider
* CPython is comp…
-
There are blake2b ASICs coming out with very high hash rates. These are being developed to mine coins such as siacoin. In order to avoid these being used to spam the RaiBlocks network, we should use a…
-
Links,
* http://www.openwall.com/lists/john-users/2018/06/18/8 (has data)
* http://www.openwall.com/lists/john-users/2018/06/19/2
Quick notes,
```
On CentOS 7,
$ gpg --homedir . --s2k-…
-
Hi.
I'm not sure if you're aware of this, but ZIP archive encryption is, well, shite. It suffers from the _known plaintext attack_.
**TL;DR:** Any TNoodle-generated password-protected zip file can be…