-
# Background
Recently, we've discussed at length how we might improve the performance of the platform, while not compromising security. One of the more obvious levers to pull is to improve the perf…
-
I opened issue https://github.com/intel/QAT_Engine/issues/331 but this may be an OpenSSL bug that affects engines in general.
OpenSSL 3.0 introduced what I understand is Bleichenbacher's attack mit…
-
Botan cannot parse this certificate (openssl dump):
```
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:37:6c:00:aa:00:64:8a:11:cf:b8:d4:aa:5c:35:f4
…
-
So I just managed to dynamically modify a single byte in RSA public key through gdb. It is stored little-endian in memory, unlike the original key in `libil2cpp.so`. It should be possible to write a u…
-
```
#!/usr/bin/env ruby
require 'rubygems'
require 'openssl'
b64 = "MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE2G2Y+2tabdTV5BcGiBIx0a9fAFwrkBbmLSGtks4L3qX6yYY0zufBnhC8Ur/iy55GhWP/9A/bY2LhC30M9+RYtw==…
-
## Description
Dependabot complains on a vulnerability in `rsa`, a recursive dependency of SeaORM. This is a link to the issue: https://rustsec.org/advisories/RUSTSEC-2023-0071.html
Vulnerabilit…
-
### Background and motivation
Some implementations of RSA PSS by default use different salt length for RSA PSS than .NET and it's currently not possible to change it.
.NET currently follows http…
-
I have recently started receiving the following error:
`java.security.InvalidKeyException: Not an EC key: RSA`
I am not really sure what causes the error, but suspect some sort of CryptoFactory pro…
-
-
The [security audit check](https://github.com/bkonkle/nakago/actions/runs/7094589524/job/19310113246) is failing because of [RUSTSEC-2023-0071](https://rustsec.org/advisories/RUSTSEC-2023-0071). An up…