cryptography – SSL and internet security news

NCSC Guidance on “Advanced Cryptography”

May 2, 2025 infossl

cryptography, homomorphic encryption, reports, Security technology, Uncategorized

The UK’s National Cyber Security Centre just released its white paper on “Advanced Cryptography,” which it defines as “cryptographic techniques for processing encrypted data, providing enhanced functionality over and above that provided by traditional cryptography.” It includes things like homomorphic encryption, attribute-based encryption, zero-knowledge proofs, and secure multiparty computation. It’s full of good advice. I … Read More “NCSC Guidance on “Advanced Cryptography”” »

AIs as Trusted Third Parties

March 28, 2025 infossl

academic papers, AI, cryptography, machine learning, Security technology, trust, Uncategorized

This is a truly fascinating paper: “Trusted Machine Learning Models Unlock Private Inference for Problems Currently Infeasible with Cryptography.” The basic idea is that AIs can act as trusted third parties: Abstract: We often interact with untrusted parties. Prioritization of privacy can limit the effectiveness of these interactions, as achieving certain goals necessitates sharing private … Read More “AIs as Trusted Third Parties” »

NCSC Releases Post-Quantum Cryptography Timeline

March 21, 2025 infossl

cryptography, quantum cryptography, Security technology, uk, Uncategorized

The UK’s National Computer Security Center (part of GCHQ) released a timeline—also see their blog post—for migration to quantum-computer-resistant cryptography. It even made The Guardian. Powered by WPeMatico

The Combined Cipher Machine

March 6, 2025 infossl

cryptography, history of cryptography, military, Security technology, Uncategorized

Interesting article—with photos!—of the US/UK “Combined Cipher Machine” from WWII. Powered by WPeMatico

Implementing Cryptography in AI Systems

February 21, 2025 infossl

academic papers, AI, cryptanalysis, cryptography, Security technology, Uncategorized

Interesting research: “How to Securely Implement Cryptography in Deep Neural Networks.” Abstract: The wide adoption of deep neural networks (DNNs) raises the question of how can we equip them with a desired cryptographic functionality (e.g, to decrypt an encrypted input, to verify that this input is authorized, or to hide a secure watermark in the … Read More “Implementing Cryptography in AI Systems” »

Microsoft Is Adding New Cryptography Algorithms

September 12, 2024 infossl

cryptography, microsoft, quantum computing, Security technology, Uncategorized

Microsoft is updating SymCrypt, its core cryptographic library, with new quantum-secure algorithms. Microsoft’s details are here. From a news article: The first new algorithm Microsoft added to SymCrypt is called ML-KEM. Previously known as CRYSTALS-Kyber, ML-KEM is one of three post-quantum standards formalized last month by the National Institute of Standards and Technology (NIST). The … Read More “Microsoft Is Adding New Cryptography Algorithms” »

List of Old NSA Training Videos

September 3, 2024 infossl

cryptography, foia, history of cryptography, history of security, nsa, Security technology, Uncategorized, videos

The NSA’s “National Cryptographic School Television Catalogue” from 1991 lists about 600 COMSEC and SIGINT training videos. There are a bunch explaining the operations of various cryptographic equipment, and a few code words I have never heard of before. Powered by WPeMatico

NIST Releases First Post-Quantum Encryption Algorithms

August 15, 2024 infossl

cryptography, encryption, national security policy, nist, quantum computing, security standards, Security technology, Uncategorized

From the Federal Register: After three rounds of evaluation and analysis, NIST selected four algorithms it will standardize as a result of the PQC Standardization Process. The public-key encapsulation mechanism selected was CRYSTALS-KYBER, along with three digital signature schemes: CRYSTALS-Dilithium, FALCON, and SPHINCS+. These algorithms are part of three NIST standards that have been finalized: … Read More “NIST Releases First Post-Quantum Encryption Algorithms” »

Compromising the Secure Boot Process

July 26, 2024 infossl

cryptography, encryption, keys, passwords, Security technology, supply chain, Uncategorized, vulnerabilities

This isn’t good: On Thursday, researchers from security firm Binarly revealed that Secure Boot is completely compromised on more than 200 device models sold by Acer, Dell, Gigabyte, Intel, and Supermicro. The cause: a cryptographic key underpinning Secure Boot on those models that was compromised in 2022. In a public GitHub repository committed in December … Read More “Compromising the Secure Boot Process” »

Model Extraction from Neural Networks

July 1, 2024 infossl

academic papers, cryptography, Security technology, Uncategorized

A new paper, “Polynomial Time Cryptanalytic Extraction of Neural Network Models,” by Adi Shamir and others, uses ideas from differential cryptanalysis to extract the weights inside a neural network using specific queries and their results. This is much more theoretical than practical, but it’s a really interesting result. Abstract: Billions of dollars and countless GPU … Read More “Model Extraction from Neural Networks” »