algorithms – SSL and internet security news

NIST’s Post-Quantum Cryptography Standards

August 8, 2022 infossl

algorithms, cryptanalysis, cryptography, nist, quantum computing, quantum cryptography, Security technology, Uncategorized

Quantum computing is a completely new paradigm for computers. A quantum computer uses quantum properties such as superposition, which allows a qubit (a quantum bit) to be neither 0 nor 1, but something much more complicated. In theory, such a computer can solve problems too complex for conventional computers. Current quantum computers are still toy … Read More “NIST’s Post-Quantum Cryptography Standards” »

SIKE Broken

August 4, 2022 infossl

algorithms, cryptanalysis, cryptography, encryption, nist, quantum computing, Security technology, Uncategorized

SIKE is one of the new algorithms that NIST recently added to the post-quantum cryptography competition. It was just broken, really badly. We present an efficient key recovery attack on the Supersingular Isogeny Diffie-Hellman protocol (SIDH), based on a “glue-and-split” theorem due to Kani. Our attack exploits the existence of a small non-scalar endomorphism on … Read More “SIKE Broken” »

On the Subversion of NIST by the NSA

June 23, 2022 infossl

academic papers, algorithms, cryptography, nist, nsa, Security technology, Uncategorized

Nadiya Kostyuk and Susan Landau wrote an interesting paper: “Dueling Over DUAL_EC_DRBG: The Consequences of Corrupting a Cryptographic Standardization Process“: Abstract: In recent decades, the U.S. National Institute of Standards and Technology (NIST), which develops cryptographic standards for non-national security agencies of the U.S. government, has emerged as the de facto international source for cryptographic … Read More “On the Subversion of NIST by the NSA” »

Apple’s NeuralHash Algorithm Has Been Reverse-Engineered

August 18, 2021 infossl

algorithms, apple, backdoors, cryptography, hashes, ios, iphone, reverse engineering, Security technology, Uncategorized

Apple’s NeuralHash algorithm — the one it’s using for client-side scanning on the iPhone — has been reverse-engineered. Turns out it was already in iOS 14.3, and someone noticed: Early tests show that it can tolerate image resizing and compression, but not cropping or rotations. We also have the first collision: two images that hash … Read More “Apple’s NeuralHash Algorithm Has Been Reverse-Engineered” »

Intentional Flaw in GPRS Encryption Algorithm GEA-1

June 17, 2021 infossl

academic papers, algorithms, backdoors, cryptanalysis, encryption, Security technology, Uncategorized

General Packet Radio Service (GPRS) is a mobile data standard that was widely used in the early 2000s. The first encryption algorithm for that standard was GEA-1, a stream cipher built on three linear-feedback shift registers and a non-linear combining function. Although the algorithm has a 64-bit key, the effective key length is only 40 … Read More “Intentional Flaw in GPRS Encryption Algorithm GEA-1” »

Fooling NLP Systems Through Word Swapping

April 28, 2020 infossl

academicpapers, algorithms, artificialintelligence, machinelearning, Security technology

MIT researchers have built a system that fools natural-language processing systems by swapping words with synonyms: The software, developed by a team at MIT, looks for the words in a sentence that are most important to an NLP classifier and replaces them with a synonym that a human would find natural. For example, changing the … Read More “Fooling NLP Systems Through Word Swapping” »

Artificial Personas and Public Discourse

January 13, 2020 infossl

algorithms, artificialintelligence, botnets, deepfake, disinformation, essays, propaganda, Security technology, socialengineering, socialmedia, voting

Presidential campaign season is officially, officially, upon us now, which means it’s time to confront the weird and insidious ways in which technology is warping politics. One of the biggest threats on the horizon: artificial personas are coming, and they’re poised to take over political debate. The risk arises from two separate threads coming together: … Read More “Artificial Personas and Public Discourse” »

More Cryptanalysis of Solitaire

October 4, 2019 infossl

academicpapers, algorithms, cryptanalysis, cryptography, Security technology

In 1999, I invented the Solitaire encryption algorithm, designed to manually encrypt data using a deck of cards. It was written into the plot of Neal Stephenson’s novel Cryptonomicon, and I even wrote an afterward to the book describing the cipher. I don’t talk about it much, mostly because I made a dumb mistake that … Read More “More Cryptanalysis of Solitaire” »

Data, Surveillance, and the AI Arms Race

June 17, 2019 infossl

algorithms, artificialintelligence, datacollection, essays, machinelearning, nationalsecuritypolicy, privacy, Security technology, surveillance

According to foreign policy experts and the defense establishment, the United States is caught in an artificial intelligence arms race with China — one with serious implications for national security. The conventional version of this story suggests that the United States is at a disadvantage because of self-imposed restraints on the collection of data and … Read More “Data, Surveillance, and the AI Arms Race” »

Cryptanalyzing a Pair of Russian Encryption Algorithms

May 10, 2019 infossl

academicpapers, algorithms, backdoors, cryptanalysis, cryptography, encryption, hashes, russia, Security technology

A pair of Russia-designed cryptographic algorithms — the Kuznyechik block cipher and the Streebog hash function — have the same flawed S-box that is almost certainly an intentional backdoor. It’s just not the kind of mistake you make by accident, not in 2014. Powered by WPeMatico