keys – Page 4 – SSL and internet security news

G7 Comes Out in Favor of Encryption Backdoors

April 23, 2019 infossl

backdoors, encryption, g7, hacking, keyescrow, keys, lawenforcement, Security technology, terrorism

From a G7 meeting of interior ministers in Paris this month, an “outcome document“: Encourage Internet companies to establish lawful access solutions for their products and services, including data that is encrypted, for law enforcement and competent authorities to access digital evidence, when it is removed or hosted on IT servers located abroad or encrypted, … Read More “G7 Comes Out in Favor of Encryption Backdoors” »

Reconstructing SIGSALY

February 15, 2019 infossl

encryption, historyofcryptography, keys, Security technology

Lessons learned in reconstructing the World War II-era SIGSALY voice encryption system. Powered by WPeMatico

El Chapo’s Encryption Defeated by Turning His IT Consultant

January 16, 2019 infossl

backdoors, courts, drugtrade, encryption, fbi, insiders, keys, Security technology

Impressive police work: In a daring move that placed his life in danger, the I.T. consultant eventually gave the F.B.I. his system’s secret encryption keys in 2011 after he had moved the network’s servers from Canada to the Netherlands during what he told the cartel’s leaders was a routine upgrade. A Dutch article says that … Read More “El Chapo’s Encryption Defeated by Turning His IT Consultant” »

GCHQ on Quantum Key Distribution

August 1, 2018 infossl

authentication, cryptography, economicsofsecurity, encryption, gchq, keys, quantumcomputing, quantumcryptography, Security technology

The UK’s GCHQ delivers a brutally blunt assessment of quantum key distribution: QKD protocols address only the problem of agreeing keys for encrypting data. Ubiquitous on-demand modern services (such as verifying identities and data integrity, establishing network sessions, providing access control, and automatic software updates) rely more on authentication and integrity mechanisms — such as … Read More “GCHQ on Quantum Key Distribution” »

Google Employees Use a Physical Token as Their Second Authentication Factor

July 26, 2018 infossl

google, keys, phishing, Security technology, twofactorauthentication

Krebs on Security is reporting that all 85,000 Google employees use two-factor authentication with a physical token. A Google spokesperson said Security Keys now form the basis of all account access at Google. “We have had no reported or confirmed account takeovers since implementing security keys at Google,” the spokesperson said. “Users might be asked … Read More “Google Employees Use a Physical Token as Their Second Authentication Factor” »

Major Bluetooth Vulnerability

July 25, 2018 infossl

academicpapers, bluetooth, cryptography, encryption, keys, Security technology, vulnerabilities, wifi, wireless

Bluetooth has a serious security vulnerability: In some implementations, the elliptic curve parameters are not all validated by the cryptographic algorithm implementation, which may allow a remote attacker within wireless range to inject an invalid public key to determine the session key with high probability. Such an attacker can then passively intercept and decrypt all … Read More “Major Bluetooth Vulnerability” »

E-Mailing Private HTTPS Keys

March 13, 2018 infossl

certificates, email, https, keys, Security technology, securitypolicies, tls

I don’t know what to make of this story: The email was sent on Tuesday by the CEO of Trustico, a UK-based reseller of TLS certificates issued by the browser-trusted certificate authorities Comodo and, until recently, Symantec. It was sent to Jeremy Rowley, an executive vice president at DigiCert, a certificate authority that acquired Symantec’s … Read More “E-Mailing Private HTTPS Keys” »

Fighting Ransomware

January 15, 2018 infossl

encryption, keys, ransomware, Security technology

No More Ransom is a central repository of keys and applications for ransomware, so people can recover their data without paying. It’s not complete, of course, but is pretty good against older strains of ransomware. The site is a joint effort by Europol, the Dutch police, Kaspersky, and McAfee. Powered by WPeMatico

Amazon’s Door Lock Is Amazon’s Bid to Control Your Home

December 22, 2017 infossl

amazon, feudalsecurity, internetandsociety, internetofthings, keys, Security technology

Interesting essay about Amazon’s smart lock: When you add Amazon Key to your door, something more sneaky also happens: Amazon takes over. You can leave your keys at home and unlock your door with the Amazon Key app — but it’s really built for Amazon deliveries. To share online access with family and friends, I … Read More “Amazon’s Door Lock Is Amazon’s Bid to Control Your Home” »

Man-in-the-Middle Attack against Electronic Car-Door Openers

November 28, 2017 infossl

cars, keys, maninthemiddleattacks, Security technology, theft

This is an interesting tactic, and there’s a video of it being used: The theft took just one minute and the Mercedes car, stolen from the Elmdon area of Solihull on 24 September, has not been recovered. In the footage, one of the men can be seen waving a box in front of the victim’s … Read More “Man-in-the-Middle Attack against Electronic Car-Door Openers” »