CloudInsidr

Cyber security, infotech

Join us on Twitter: @CloudInsidr

Home Archives for cryptography
OpenSSH 9.9 Introduces Enhanced Quantum-Resistant Algorithms

Leave a Comment

OpenSSH 9.9 Introduces Enhanced Quantum-Resistant Algorithms

OpenSSH 9.9 is now available for download on the official mirrors of the OpenBSD Project. This update introduces a range of significant enhancements, such as the support for post-quantum key exchange, improved security controls, and various performance enhancements.

Key Features in OpenSSH 9.9

One of the most notable advancements in OpenSSH 9.9 is the introduction of a hybrid post-quantum key exchange method. It combines the FIPS 203 Module-Lattice Key Encapsulation Mechanism (ML-KEM) with X25519 Elliptic Curve Diffie-Hellman (ECDH). This hybridization is believed to boost security against future quantum computing threats. The algorithm, known as mlkem768x25519-sha256, is enabled by default.

Post-quantum cryptographic standards could be around the corner.

[Read more…]

Attack vectors against TLS, implementation bugs, and how to mitigate TLS vulnerabilities in NGINX

Leave a Comment

Attack vectors against TLS, implementation bugs, and how to mitigate TLS vulnerabilities in NGINX

In light of documented TLS vulnerabilities and implementation bugs, understanding known attack vectors becomes a necessity.

[Read more…]

IBM’s China connection and the betrayal of America: how Chinese government hackers manage to remain undetectable

Leave a Comment

IBM’s China connection and the betrayal of America: how Chinese government hackers manage to remain undetectable

You know, if you have something really important, write it out and have it delivered by courier, the old-fashioned way. Because I’ll tell you what: No computer is safe (…) I don’t care what they say.

President-Elect Donald Trump

 

In the waning days of the fading Obama presidency, plenty of questions surfaced about Russia’s involvement with the hacks of the DNC and election systems. Electronic evidence can be easily manipulated.

There is more to it than just electronic evidence.

[Read more…]

The crypto revolution: an interview with Professor Emin Gün Sirer and Dr. Ittay Eyal about Bitcoin, the blockchain, and FinTech innovation

Leave a Comment

The crypto revolution: an interview with Professor Emin Gün Sirer and Dr. Ittay Eyal about Bitcoin, the blockchain, and FinTech innovation

In a research paper titled “Majority is not Enough: Bitcoin Mining is Vulnerable“, Professor Emin Gün Sirer and Dr. Ittay Eyal of the Department of Computer Science at Cornell University, revealed the Selfish Mining attack on Bitcoin’s blockchain back in 2014.

In this interview, Professor Sirer and Dr. Ittay Eyal demystify Bitcoin and other crypto currencies and provide a first glimpse into the blockchain revolution.

The interview was conducted by Anna E Kobylinska with contribution by Filipe Martins.

[Read more…]

Tip of The Day: Test Your Web Server’s Crypto Prowess for TLS, Diffie-Hellman, and more

Leave a Comment

Tip of The Day: Test Your Web Server’s Crypto Prowess for TLS, Diffie-Hellman, and more

Are you concerned about the security of data transmissions in which your web server participates day in and day out? Passwords, user names, credit card numbers, and other sensitive private communications on the Internet can easily be compromised unless you actively take precautionary measures and preempt the most common exploits by means of modern cryptography. Your users trust that you will protect them. The only question is: how do you measure success?

[Read more…]

©2022 CybrAnalytiqa OÜ