Entries in cryptography (3)

Wednesday
Mar172010

Updated MyCryptInfo

DateWednesday, March 17, 2010 at 07:52PM

Today's update is for the MyCryptInfo tool that allows you to explore the Microsoft Cryptographic Service Providers (CSPs) on your system. It has been updated to run on 64-bit systems and to include some missing information about the SHA2 hash that is in the AES enabled CSP.

Otherwise the tool hasn't needed to change much.

Have fun, and don't delete any cryptographic containers that you really need!

-Eric

AuthorEric Fredericksen | CommentPost a Comment |
tagged ,
Saturday
Dec192009

Predatory Encryption and Risk Management

DateSaturday, December 19, 2009 at 01:09PM

We learned some things this week about the US Predator drone program that has some people appalled and indignant - it is the kind of story that makes news.

A Predator drone is an unmanned aerial vehicle (UAV) used by the United States Air Force both for reconnaissance and for offensive operations. It seems that the video downlink from these drones has never been encrypted and it has been possible for those under surveillance to intercept and view the video feed.

This is the kind of news that makes great headlines. People read about it and slap their foreheads, proclaiming in a righteous voice, "What were they thinking? Head's should roll!" Stuff like that.

Here is an alternative viewpoint: this whole situation could just be a result of acceptable RISK MANAGEMENT practices.

Click to read more ...

AuthorEric Fredericksen | CommentPost a Comment |
tagged , , , , in ,
Sunday
Aug302009

FIPS 140 Dash What?

DateSunday, August 30, 2009 at 07:17PM

If you use a computer today to buy anything over the internet then you are the end user of cryptographic algorithms. If you feel that you don't need to worry about the implementation of your cryptography, well, you are probably right. You may have read the news about how the MD5 cryptographic hash function is not as secure (collision resistant) as we used to think. Weaknesses in the SHA1 cryptographic hash function have also been found although SHA1 has fared somewhat better than MD5. That news causes people like me enough concern to track the progress of those attacks but so far there is no public indication that a disaster is at hand.

Click to read more ...

AuthorEric Fredericksen | CommentPost a Comment |
tagged , , , in