Browse by Tags

All Tags » Programmer Hubris » Why is PKI so hard? » General Security (RSS)
Thursday, May 22, 2008 8:02 PM

Searching for Weak Debian / Ubuntu SSL Certificates

I've seen a number of people promote packages that have shipped for Debian and Ubuntu, which allow users to scan their collected keys - OpenSSH or OpenSSL or OpenVPN, to discover whether they're too weak to be of any functional use. [See my earlier...
Posted by Alun Jones | 2 comment(s)
Filed under: , , ,
Thursday, May 15, 2008 5:55 PM

Debian and the OpenSSL PRNG

[PRNG is an abbreviation for "Pseudo-Random Number Generator", a key core component of the key-generation in any cryptographic library.] A few people have already commented on the issue itself - Debian issued, in 2006, a version of their Linux...
Posted by Alun Jones | 10 comment(s)
Filed under: , ,
Wednesday, February 21, 2007 10:05 PM

Finding your private keys

For the most part, Windows users and administrators don't ever have to worry about how or where their private keys are stored. After all, your private key is yours , and it's private . You request it to be generated, and then you don't need to touch it...
Posted by Alun Jones | 2 comment(s)
Filed under: , ,
Wednesday, April 05, 2006 9:19 PM

Signs your crypto is wrong.

Here are a few signs that you might be doing crypto the wrong way: You're using a third-party library "because .NET keeps throwing exceptions". Explanation: .NET's cryptography routines throw exceptions when you are doing something wrong. If you are getting...
Posted by Alun Jones | with no comments
Filed under: , ,