Tag: asymmetric cryptography

Cryptography

Guidance for Choosing an Elliptic Curve Signature Algorithm in 2022

Post author By Soatok
Post date May 19, 2022
13 Comments on Guidance for Choosing an Elliptic Curve Signature Algorithm in 2022

A cartoon wild canid on the Internet provides general guidance on elliptic curve cryptography parameter choices.

Tags asymmetric cryptography, Brainpool curves, cryptography, digital signature algorithm, ECDSA, Ed25519, Ed448, EdDSA, elliptic curve cryptography, P-256, P-384, P-521, secp256k1, secp256r1, secp384r1, secp521r1, Security Guidance

Cryptography Software Security

Using RSA Securely in 2022

Post author By Soatok
Post date February 9, 2022
2 Comments on Using RSA Securely in 2022

If you really must support RSA in 2022, here’s some things to keep in mind.

Tags asymmetric cryptography, cryptography, RSA, RSA Encryption, RSA Signatures, Security Guidance

Cryptography

The Controversy Surrounding Hybrid Cryptography

Post author By Soatok
Post date January 27, 2022
3 Comments on The Controversy Surrounding Hybrid Cryptography

Who knew Hybrid Cryptography (which combines Post-Quantum Cryptography with Pre-Quantum Cryptography) would be controversial?

Tags asymmetric cryptography, classical cryptography, cryptography, digital signature algorithm, hybrid cryptography, hybrid designs, KEM, key encapsulation mechanism, NIST Post-Quantum Cryptography project, NIST PQC, post-quantum cryptography

Cryptography Furry Fandom Meta Society

Lightning Round

An assortment of topics that don’t quite deserve their own dedicated blog post.

Tags asymmetric cryptography, ECDSA, Florida, furries, HMAC, Politics, RSA, wear-out

Bullshit Cryptography

Crackpot Cryptography and Security Theater

Post author By Soatok
Post date February 9, 2021
5 Comments on Crackpot Cryptography and Security Theater

Tales from the Crypt[ography].

Tags asymmetric cryptography, crackpots, Crown Sterling, cryptography, kooks, post-quantum cryptography, quantum computers, scam artists, scammers, scams, symmetric cryptography, Terra Quantum, Time AI

Cryptography Software Security

Please Stop Encrypting with RSA Directly

Post author By Soatok
Post date January 20, 2021
6 Comments on Please Stop Encrypting with RSA Directly

RSA is for encrypting symmetric keys, not entire messages. Pass it on.

Tags asymmetric cryptography, cryptography, RSA, Security Guidance, symmetric cryptography

Cryptography Software Security

Soatok’s Guide to Side-Channel Attacks

Post author By Soatok
Post date August 27, 2020
18 Comments on Soatok’s Guide to Side-Channel Attacks

If you’re ever tasked with implementing a cryptography feature–whether a high-level protocol or a low-level primitive–you will have to take special care to ensure you’re not leaking secret information through side-channels. The descriptions of algorithms you learn in a classroom or textbook are not sufficient for real-world use. (Yes, that means your toy RSA implementation […]

Tags asymmetric cryptography, constant-time, cryptography, ECDH, ECDSA, elliptic curve cryptography, RSA, Security Guidance, side-channels, symmetric cryptography

Cryptography

A Brief Opinionated Overview of NIST’s Post-Quantum Cryptography Round 3 Candidates

Post author By Soatok
Post date July 24, 2020
3 Comments on A Brief Opinionated Overview of NIST’s Post-Quantum Cryptography Round 3 Candidates

Earlier this week, NIST announced Round 3 of the Post-Quantum Cryptography project and published their rationale for selecting from the Round 2 candidates. NIST did something clever this time, and Round 3 was separated into two groups: Finalists and Alternative Candidates. Finalists are algorithms that NIST (and the majority of the cryptographers involved in NIST’s […]

Tags asymmetric cryptography, Classical McEliece, cryptography, Dilithium, FALCON, Kyber, lattices, NIST, NTRU, PQC, Rainbow, SABER