Category: Uncategorized

Auto Added by WPeMatico

NIST Releases First Post-Quantum Encryption Algorithms

Posted on By infossl
cryptography, encryption, national security policy, nist, quantum computing, security standards, Security technology, Uncategorized

From the Federal Register: After three rounds of evaluation and analysis, NIST selected four algorithms it will standardize as a result of the PQC Standardization Process. The public-key encapsulation mechanism selected was CRYSTALS-KYBER, along with three digital signature schemes: CRYSTALS-Dilithium, FALCON, and SPHINCS+. These algorithms are part of three NIST standards that have been finalized: … Read More “NIST Releases First Post-Quantum Encryption Algorithms” »

On the Voynich Manuscript

Posted on By infossl
academic papers, cryptanalysis, history of cryptography, Security technology, Uncategorized

Really interesting article on the ancient-manuscript scholars who are applying their techniques to the Voynich Manuscript. No one has been able to understand the writing yet, but there are some new understandings: Davis presented her findings at the medieval-studies conference and published them in 2020 in the journal Manuscript Studies. She had hardly solved the … Read More “On the Voynich Manuscript” »

Taxonomy of Generative AI Misuse

Posted on By infossl
academic papers, artificial intelligence, Security technology, taxonomies, Uncategorized

Interesting paper: “Generative AI Misuse: A Taxonomy of Tactics and Insights from Real-World Data“: Generative, multimodal artificial intelligence (GenAI) offers transformative potential across industries, but its misuse poses significant risks. Prior research has shed light on the potential of advanced AI systems to be exploited for malicious purposes. However, we still lack a concrete understanding … Read More “Taxonomy of Generative AI Misuse” »

Friday Squid Blogging: SQUID Is a New Computational Tool for Analyzing Genomic AI

Posted on By infossl
artificial intelligence, Security technology, squid, Uncategorized

Yet another SQUID acronym: SQUID, short for Surrogate Quantitative Interpretability for Deepnets, is a computational tool created by Cold Spring Harbor Laboratory (CSHL) scientists. It’s designed to help interpret how AI models analyze the genome. Compared with other analysis tools, SQUID is more consistent, reduces background noise, and can lead to more accurate predictions about … Read More “Friday Squid Blogging: SQUID Is a New Computational Tool for Analyzing Genomic AI” »

People-Search Site Removal Services Largely Ineffective

Posted on By infossl
privacy, reports, searches, Security technology, Uncategorized

Consumer Reports has a new study of people-search site removal services, concluding that they don’t really work: As a whole, people-search removal services are largely ineffective. Private information about each participant on the people-search sites decreased after using the people-search removal services. And, not surprisingly, the removal services did save time compared with manually opting … Read More “People-Search Site Removal Services Largely Ineffective” »

Problems with Georgia’s Voter Registration Portal

Posted on By infossl
fraud, Georgia, identification, national security policy, Security technology, Uncategorized, voting

It’s possible to cancel other people’s voter registration: On Friday, four days after Georgia Democrats began warning that bad actors could abuse the state’s new online portal for canceling voter registrations, the Secretary of State’s Office acknowledged to ProPublica that it had identified multiple such attempts… …the portal suffered at least two security glitches that … Read More “Problems with Georgia’s Voter Registration Portal” »

On the Cyber Safety Review Board

Posted on By infossl
computer security, cybersecurity, hacking, Security technology, Uncategorized

When an airplane crashes, impartial investigatory bodies leap into action, empowered by law to unearth what happened and why. But there is no such empowered and impartial body to investigate CrowdStrike’s faulty update that recently unfolded, ensnarling banks, airlines, and emergency services to the tune of billions of dollars. We need one. To be sure, … Read More “On the Cyber Safety Review Board” »

Leaked GitHub Python Token

Posted on By infossl
leaks, security analysis, Security technology, supply chain, Uncategorized

Here’s a disaster that didn’t happen: Cybersecurity researchers from JFrog recently discovered a GitHub Personal Access Token in a public Docker container hosted on Docker Hub, which granted elevated access to the GitHub repositories of the Python language, Python Package Index (PyPI), and the Python Software Foundation (PSF). JFrog discussed what could have happened: The … Read More “Leaked GitHub Python Token” »