hyperelliptic.org
Internet crypto
http://hyperelliptic.org/internetcrypto
This is the page for the research retreat Internet crypto. The meeting starts on Monday, Jan 21, 2013 at 14:00 and ends in the afternoon of Tuesday, Jan 22, 2013 (when the main event takes over). The meeting is public, registration for the main conference, Crypto for 2020. The meeting takes place in room "Adelfas" on floor 3. On Tuesday morning we will start at 09:30. There are some stipends available to students from Europe, for details, conditions, and deadlines see the registration page. To give this ...
secusmart.blogspot.com
secusmart: Outils et liens
http://secusmart.blogspot.com/p/outils-et-liens.html
IT vs [malice, error, mischance]. The free and open software security community. The Cryptography Coding Standard. The Cryptography Coding Standard (CCS) is a set of coding rules to prevent the most common weaknesses in software cryptographic implementations. Is a service for detecting and analyzing web-based malware. It provides detailed information about the activities a browser does while visiting a site and presents the information for further analysis. A vulnerability search engine.
bearssl.org
BearSSL - Constant-Time Crypto
https://bearssl.org/constanttime.html
In 1996, Paul Kocher published a novel attack on RSA, specifically on RSA. That extracted information on the private key by simply measuring the time taken by the private key operation on various inputs. It took a few years for people to accept the idea that such attacks were practical and could be enacted remotely on, for instance, an SSL server; see this article. From Boneh and Brumley in 2003, who conclude that:. Timing attacks are a subset of a more general class of attacks known as. A computer syste...
oss-security.openwall.org
links [OSS-Security]
http://oss-security.openwall.org/wiki/links
Links to Other Security-Related Websites. Vulnerability databases and security advisory archives. Organizations handling cross-vendor vulnerabilities and incidents. Security-related articles and tutorials. Links to Other Security-Related Websites. Here is a list of other websites with. Security-related information (be it articles, tutorials, general information, etc.). Vulnerability databases and security advisory archives. Http:/ cve.mitre.org. Http:/ nvd.nist.gov. LinuxSecurity.com advisory pages.
thebaud.com
Informations | Ressources sur la Sécurité des Systèmes d'Information
http://www.thebaud.com/category/information
Ressources sur la Sécurité des Systèmes d'Information. Aller au contenu principal. Normes & Législations. Expertises Judiciaires & Privées. Archives pour la catégorie Informations. Ransomware & Cryptolocker – limiter les dégâts en entreprise. 1 – Fonctionnement d’un cryptolocker / ransomware. Comment l’utilisateur contribue à infecter son poste de travail et surtout les serveurs de sa société? Pour les 2 vecteurs de propagation (mail ou URL), la charge active est rarement détectée par les antivirus voire...
thebaud.com
SSTIC 2014 | Ressources sur la Sécurité des Systèmes d'Information
http://www.thebaud.com/sstic-2014
Ressources sur la Sécurité des Systèmes d'Information. Aller au contenu principal. Normes & Législations. Expertises Judiciaires & Privées. Symposium sur la sécurité des technologies de l’information et des communications. Quelques notes prises lors des conférences exceptionnelles du SSTIC Edition 2014. Site des organisateurs : http:/ www.sstic.org. Analyse de la sécurité d’active directory :. 1 – utilisation de chemins de contrôle. 2 – Analyse de la sécurité d’un AD avec BTA. Cette injection depuis le p...
opencryptoaudit.org
Open Crypto Audit Project
http://www.opencryptoaudit.org/people
Open Crypto Audit Project. Jean-Philippe Aumasson, PhD. Is Principal Cryptographer at Kudelski Security, in Switzerland. He designed the SHA-3 finalist hash function BLAKE. As well as BLAKE2. He is the initiator of the Cryptography Coding Standard. And of the Password Hashing Competition. Jean-Philippe tweets as @veorq. Nate Lawson is the founder of Root Labs. Since 2009, ranging from security research, development and project management to education, outreach, and support. As an undergraduate at the...
cypherpunks.ru
Общество шифропанков: Links
http://www.cypherpunks.ru/Links.html
Основы безопасности в Интернете). Защита от глобальных систем слежки. Tools and tactics for digital security. Средства и способы обеспечения цифровой безопасности). Сравнение средств коммуникаций между людьми. Полезные ссылки для более продвинутых пользователей:. Making sure crypto stays insecure. Is TLS fast yet. Для тех кто хочет получше узнать о прикладной криптографии можно смело рекомендовать:. An introduction to cryptography. A few thoughts of cryptographic engineering. Adam Langley’s blog.
SOCIAL ENGAGEMENT