SSL and internet security news – Page 182 – Informations about SSL certificates and networks security

IEEE Statement on Strong Encryption vs. Backdoors

June 27, 2018 infossl

backdoors, encryption, keyescrow, nationalsecuritypolicy, Security technology, vulnerabilities

The IEEE came out in favor of strong encryption: IEEE supports the use of unfettered strong encryption to protect confidentiality and integrity of data and communications. We oppose efforts by governments to restrict the use of strong encryption and/or to mandate exceptional access mechanisms such as “backdoors” or “key escrow schemes” in order to facilitate … Read More “IEEE Statement on Strong Encryption vs. Backdoors” »

Bypassing Passcodes in iOS

June 26, 2018 infossl

apple, encryption, hacking, ios, passwords, Security technology

Last week, a story was going around explaining how to brute-force an iOS password. Basically, the trick was to plug the phone into an external keyboard and trying every PIN at once: We reported Friday on Hickey’s findings, which claimed to be able to send all combinations of a user’s possible passcode in one go, … Read More “Bypassing Passcodes in iOS” »

Secure Speculative Execution

June 25, 2018 infossl

Security technology

We’re starting to see research into designing speculative execution systems that avoid Spectre- and Meltdown-like security problems. Here’s one. I don’t know if this particular design secure. My guess is that we’re going to see several iterations of design and attack before we settle on something that works. But it’s good to see the research … Read More “Secure Speculative Execution” »

Friday Squid Blogging: Capturing the Giant Squid on Video

June 22, 2018 infossl

Security technology, squid

In this 2013 TED talk, oceanographer Edith Widder explains how her team captured the giant squid on video. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my blog posting guidelines here. Powered by WPeMatico

The Effects of Iran’s Telegram Ban

June 22, 2018 infossl

censorship, iran, privacy, Security technology, telegram

The Center for Human Rights in Iran has released a report outlining the effect’s of that country’s ban on Telegram, a secure messaging app used by about half of the country. The ban will disrupt the most important, uncensored platform for information and communication in Iran, one that is used extensively by activists, independent and … Read More “The Effects of Iran’s Telegram Ban” »

Domain Name Stealing at Gunpoint

June 22, 2018 infossl

Security technology

I missed this story when it came around last year: someone tried to steal a domain name at gunpoint. He was just sentenced to 20 years in jail. Powered by WPeMatico

Algeria Shut Down the Internet to Prevent Students from Cheating on Exams

June 21, 2018 infossl

Security technology

Algeria shut the Internet down nationwide to prevent high-school students from cheating on their exams. The solution in New South Wales, Australia was to ban smartphones. Powered by WPeMatico

Perverse Vulnerability from Interaction between 2-Factor Authentication and iOS AutoFill

June 20, 2018 infossl

apple, authentication, banking, ios, Security technology, sms, twofactorauthentication, usability

Apple is rolling out an iOS security usability feature called Security code AutoFill. The basic idea is that the OS scans incoming SMS messages for security codes and suggests them in AutoFill, so that people can use them without having to memorize or type them. Sounds like a really good idea, but Andreas Gutmann points … Read More “Perverse Vulnerability from Interaction between 2-Factor Authentication and iOS AutoFill” »

Free Societies are at a Disadvantage in National Cybersecurity

June 19, 2018 infossl

cyberattack, cybercrime, cyberespionage, cybersecurity, nationalsecuritypolicy, privacy, Security technology

Jack Goldsmith and Stuart Russell just published an interesting paper, making the case that free and democratic nations are at a structural disadvantage in nation-on-nation cyberattack and defense. From a blog post: It seeks to explain why the United States is struggling to deal with the “soft” cyber operations that have been so prevalent in … Read More “Free Societies are at a Disadvantage in National Cybersecurity” »

Ridiculously Insecure Smart Lock

June 18, 2018 infossl

bluetooth, locks, physicalsecurity, Security technology

Tapplock sells an “unbreakable” Internet-connected lock that you can open with your fingerprint. It turns out that: The lock broadcasts its Bluetooth MAC address in the clear, and you can calculate the unlock key from it. Any Tapplock account an unlock every lock. You can open the lock with a screwdriver. Regarding the third flaw, … Read More “Ridiculously Insecure Smart Lock” »