encryption – Page 14 – SSL and internet security news

Yet Another FBI Proposal for Insecure Communications

January 11, 2018 infossl

cloudcomputing, cryptography, cryptowars, encryption, fbi, police, Security technology, vulnerabilities

Deputy Attorney General Rosenstein has given talks where he proposes that tech companies decrease their communications and device security for the benefit of the FBI. In a recent talk, his idea is that tech companies just save a copy of the plaintext: Law enforcement can also partner with private industry to address a problem we … Read More “Yet Another FBI Proposal for Insecure Communications” »

Germany Preparing Backdoor Law

December 6, 2017 infossl

backdoors, encryption, germany, Security technology

The German Interior Minister is preparing a bill that allows the government to mandate backdoors in encryption. No details about how likely this is to pass. I am skeptical. Powered by WPeMatico

New Research in Invisible Inks

November 10, 2017 infossl

academicpapers, encryption, printers, Security technology, steganography

It’s a lot more chemistry than I understand: Invisible inks based on “smart” fluorescent materials have been shining brightly (if only you could see them) in the data-encryption/decryption arena lately…. But some of the materials are costly or difficult to prepare, and many of these inks remain somewhat visible when illuminated with ambient or ultraviolet … Read More “New Research in Invisible Inks” »

FBI Increases Its Anti-Encryption Rhetoric

October 27, 2017 infossl

cryptography, cryptowars, encryption, fbi, nationalsecuritypolicy, Security technology

Earlier this month, Deputy Attorney General Rod Rosenstein gave a speech warning that a world with encryption is a world without law — or something like that. The EFF’s Kurt Opsahl takes it apart pretty thoroughly. Last week, FBI Director Christopher Wray said much the same thing. This is an idea that will not die. … Read More “FBI Increases Its Anti-Encryption Rhetoric” »

ISO Rejects NSA Encryption Algorithms

September 21, 2017 infossl

backdoors, cryptography, edwardsnowden, encryption, nsa, Security technology, vulnerabilities

The ISO has decided not to approve two NSA-designed block encryption algorithms: Speck and Simon. It’s because the NSA is not trusted to put security ahead of surveillance: A number of them voiced their distrust in emails to one another, seen by Reuters, and in written comments that are part of the process. The suspicions … Read More “ISO Rejects NSA Encryption Algorithms” »

Security Vulnerabilities in AT&T Routers

September 6, 2017 infossl

att, encryption, Security technology, securityengineering, vulnerabilities

They’re actually Arris routers, sold or given away by AT&T. There are several security vulnerabilities, some of them very serious. They can be fixed, but because these are routers it takes some skill. We don’t know how many routers are affected, and estimates range from thousands to 138,000. Among the vulnerabilities are hardcoded credentials, which … Read More “Security Vulnerabilities in AT&T Routers” »

Journalists Generally Do Not Use Secure Communication

August 31, 2017 infossl

email, encryption, pgp, privacy, Security technology, signal, whistleblowers

This should come as no surprise: Alas, our findings suggest that secure communications haven’t yet attracted mass adoption among journalists. We looked at 2,515 Washington journalists with permanent credentials to cover Congress, and we found only 2.5 percent of them solicit end-to-end encrypted communication via their Twitter bios. That’s just 62 out of all the … Read More “Journalists Generally Do Not Use Secure Communication” »

Ross Anderson on the History of the Crypto Wars in the UK

August 29, 2017 infossl

cryptography, cryptowars, encryption, Security technology, uk, videos

Ross Anderson gave a talk on the history of the Crypto Wars in the UK. I am intimately familiar with the US story, but didn’t know as much about Britain’s verson. Hour-long video. Summary. Powered by WPeMatico

Alternatives to Government-Mandated Encryption Backdoors

July 25, 2017 infossl

backdoors, encryption, essays, lawenforcement, nationalsecuritypolicy, privacy, Security technology, surveillance

Policy essay: “Encryption Substitutes,” by Andrew Keane Woods: In this short essay, I make a few simple assumptions that bear mentioning at the outset. First, I assume that governments have good and legitimate reasons for getting access to personal data. These include things like controlling crime, fighting terrorism, and regulating territorial borders. Second, I assume … Read More “Alternatives to Government-Mandated Encryption Backdoors” »

Australia Considering New Law Weakening Encryption

July 17, 2017 infossl

australia, childpornography, cryptowars, drugtrade, encryption, internet, Security technology, terrorism

News from Australia: Under the law, internet companies would have the same obligations telephone companies do to help law enforcement agencies, Prime Minister Malcolm Turnbull said. Law enforcement agencies would need warrants to access the communications. “We’ve got a real problem in that the law enforcement agencies are increasingly unable to find out what terrorists … Read More “Australia Considering New Law Weakening Encryption” »