encryption – Page 2 – SSL and internet security news

Signal Will Leave the UK Rather Than Add a Backdoor

September 26, 2023 infossl

backdoors, encryption, privacy, Security technology, signal, Uncategorized

Totally expected, but still good to hear: Onstage at TechCrunch Disrupt 2023, Meredith Whittaker, the president of the Signal Foundation, which maintains the nonprofit Signal messaging app, reaffirmed that Signal would leave the U.K. if the country’s recently passed Online Safety Bill forced Signal to build “backdoors” into its end-to-end encryption. “We would leave the … Read More “Signal Will Leave the UK Rather Than Add a Backdoor” »

Cryptocurrency Startup Loses Encryption Key for Electronic Wallet

September 6, 2023 infossl

cryptocurrency, encryption, keys, Security technology, Uncategorized

The cryptocurrency fintech startup Prime Trust lost the encryption key to its hardware wallet—and the recovery key—and therefore $38.9 million. It is now in bankruptcy. I can’t understand why anyone thinks these technologies are a good idea. Powered by WPeMatico

You Can’t Rush Post-Quantum-Computing Cryptography Standards

August 8, 2023 infossl

cryptography, encryption, national security policy, nist, quantum computing, security standards, Security technology, Uncategorized

I just read an article complaining that NIST is taking too long in finalizing its post-quantum-computing cryptography standards. This process has been going on since 2016, and since that time there has been a huge increase in quantum technology and an equally large increase in quantum understanding and interest. Yet seven years later, we have … Read More “You Can’t Rush Post-Quantum-Computing Cryptography Standards” »

Backdoor in TETRA Police Radios

July 26, 2023 infossl

backdoors, cryptography, eavesdropping, encryption, infrastructure, law enforcement, police, radio, Security technology, Uncategorized

Seems that there is a deliberate backdoor in the twenty-year-old TErrestrial Trunked RAdio (TETRA) standard used by police forces around the world. The European Telecommunications Standards Institute (ETSI), an organization that standardizes technologies across the industry, first created TETRA in 1995. Since then, TETRA has been used in products, including radios, sold by Motorola, Airbus, … Read More “Backdoor in TETRA Police Radios” »

AI-Generated Steganography

June 12, 2023 infossl

academic papers, artificial intelligence, cryptography, encryption, Security technology, steganography, Uncategorized

New research suggests that AIs can produce perfectly secure steganographic images: Abstract: Steganography is the practice of encoding secret information into innocuous content in such a manner that an adversarial third party would not realize that there is hidden meaning. While this problem has classically been studied in security literature, recent advances in generative models … Read More “AI-Generated Steganography” »

UK Threatens End-to-End Encryption

April 24, 2023 infossl

encryption, laws, privacy, Security technology, signal, uk, Uncategorized

In an open letter, seven secure messaging apps—including Signal and WhatsApp—point out that the UK’s Online Safety Bill could destroy end-to-end encryption: As currently drafted, the Bill could break end-to-end encryption,opening the door to routine, general and indiscriminate surveillance of personal messages of friends, family members, employees, executives, journalists, human rights activists and even politicians … Read More “UK Threatens End-to-End Encryption” »

Side-Channel Attack against CRYSTALS-Kyber

February 28, 2023 infossl

academic papers, cryptography, encryption, machine learning, quantum computing, quantum cryptography, Security technology, side-channel attacks, Uncategorized

CRYSTALS-Kyber is one of the public-key algorithms currently recommended by NIST as part of its post-quantum cryptography standardization process. Researchers have just published a side-channel attack—using power consumption—against an implementation of the algorithm that was supposed to be resistant against that sort of attack. The algorithm is not “broken” or “cracked”—despite headlines to the contrary—this … Read More “Side-Channel Attack against CRYSTALS-Kyber” »

Mary Queen of Scots Letters Decrypted

February 9, 2023 infossl

cryptography, encryption, history of cryptography, Security technology, Uncategorized

This is a neat piece of historical research. The team of computer scientist George Lasry, pianist Norbert Biermann and astrophysicist Satoshi Tomokiyo—all keen cryptographers—initially thought the batch of encoded documents related to Italy, because that was how they were filed at the Bibliothèque Nationale de France. However, they quickly realised the letters were in French. … Read More “Mary Queen of Scots Letters Decrypted” »

Security Analysis of Threema

January 19, 2023 infossl

academic papers, authentication, cryptanalysis, encryption, Security technology, side-channel attacks, threat models, Uncategorized, vulnerabilities

A group of Swiss researchers have published an impressive security analysis of Threema. We provide an extensive cryptographic analysis of Threema, a Swiss-based encrypted messaging application with more than 10 million users and 7000 corporate customers. We present seven different attacks against the protocol in three different threat models. As one example, we present a … Read More “Security Analysis of Threema” »

ChatGPT-Written Malware

January 10, 2023 infossl

ChatGPT, cybercrime, encryption, malware, Security technology, Uncategorized

I don’t know how much of a thing this will end up being, but we are seeing ChatGPT-written malware in the wild. …within a few weeks of ChatGPT going live, participants in cybercrime forums—some with little or no coding experience—were using it to write software and emails that could be used for espionage, ransomware, malicious … Read More “ChatGPT-Written Malware” »