-
If I understand everything correctly, then the knowledge of a `file_id` allows anyone to delete the file on the server. `file_id` is also sent by sources to journalists - right after uploading an atta…
eaon updated
10 months ago
-
### Description:
In the "Xbox-360-Crypto/kv_checker.py" and "Xbox-360-Crypto/XeCrypt.py", I have identified security vulnerabilities about insecure cryptographic algorithm. PKCS1v1.5 is vulnerable…
-
Signature is a requirement according to current French plans.
Not every usage may use it, this is why it's better to make it optional.
Nevertheless, when used, it can have a very huge impact on th…
-
I tried to use the code from Nicolas Oliver to create a tpm-based key which has a “Wildcard Policy” i.e. an Authorized Policiy to allow using the key only with specified PCR values. Support for this …
-
# Overview
We would like to propose a new media type for encrypted layers of a container image. This addition would facilitate the ecosystem for encrypted container images. This allows users with s…
-
# Abstract
In recent years, the application of machine learning and deep learning to classical cryptanalysis is an active research field.
In this project, we perform quantum cryptanalysis that combi…
-
encrypt() uses a lot of CPU to generate a fresh private key for each new message it encrypts. It makes the encryption bullet proof and unbreakable even theoretically, but, on the other hand, it doesn'…
-
- this should work per user
- User should be able to set a master password in settings but this setting should not be saved into localstorage. Maybe it can be written to db
- Ask user to enter this …
-
The current version of the specification does not indicate how to identify the authorization server locations.
The source Docker documentation ( https://docs.docker.com/registry/spec/auth/token/ ) …
-
For the SEPA lastschriftmandat milestone we somehow need to save the payment information of some of our members.
Since this is the first time we ever really have to store highly sensitive data (compa…