-
### Scenario
I'm setting up a distributed system that runs multiple KSMs using the python KSM included in this package (**yubikey_ksm.py**). I will be connecting each KSM to a dedicated yubiHSM. I'…
-
Hey guys (:
Just going to log this here to start gathering info & investigating the feasibility of such an update, as an interim or replacement solution for a full blockchain-like Ceptr / Scuttlebu…
pospi updated
7 years ago
-
Am i correct that that currently samlify doesn't validate the InResponseTo against the ID of the AuthnRequest?
If not, does this not prevent reuse of AuthnRequests and thus the limitation represents…
-
### We're now ready to start inviting the DEF CON registered voters to the $5,000 Public Prize Awards Vote.
The ballot has been finalized — you can see it, and vote if you'd like, in [this UNOFFICI…
-
I am working on a small proof of concept ([code](https://github.com/tnunamak/multisig-decrypt-demo/blob/main/main.go)) and would appreciate any suggestions for further debugging. My goal is to use DKG…
-
-
On Linux, all processes can each other's command line arguments. Portwarden accepts the encryption passphrase with a command line argument. Because of this, any program running when backup is occuring…
samcv updated
2 years ago
-
[ Began writing up some notes on this ~ Dec 3, 2021: ]
Can we allow voters to submit their votes, and have strong cryptographic confirmation that it was received, without ever revealing the links b…
-
A little background first. I'm using Secure Boot, which requires one to sign kernel modules with a user-generated, firmware-enrolled key. Anybody with this key can theoretically execute kernel-level c…
-
First-party Kubernetes support would be a wonderful addition to sops, the ability to read from and write to secrets manifests. It shouldn't be too dissimilar to the YAML or JSON stores, with decrypted…