Explore >> Select a destination
|
You are here 
|
blog.trailofbits.com | ||
| | | | |
neilmadden.blog
|
|
| | | | | Wikipedia's definition of a digital signature is: A digital signature is a mathematical scheme for verifying the authenticity of digital messages or documents. A valid digital signature on a message gives a recipient confidence that the message came from a sender known to the recipient. -Wikipedia They also have a handy diagram of the process... | |
| | | | |
andrea.corbellini.name
|
|
| | | | | ||
| | | | |
blog.cr.yp.to
|
|
| | | | | [AI summary] The text discusses the complexities and security concerns of the ECDSA (Elliptic Curve Digital Signature Algorithm) compared to more modern signature systems like Ed25519. It highlights issues such as the lack of constant-time implementations in ECDSA, the importance of secure random number generation (RNG) for generating nonces (k), and the vulnerabilities that can arise from poor RNG practices. The text also compares ECDSA with alternatives like Ed25519, which uses deterministic methods for generating k, thus avoiding the need for an RNG and enhancing security. Additionally, it touches on the design of secure RNGs, the role of hash functions in generating k, and the potential for attacks due to non-constant-time implementations and poor random... | |
| | | | |
www.mitls.org
|
|
| | | This page describes the miTLS verified TLS implementation and presents attacks, such as Triple Handshake, SMACK, FREAK, Logjam, and SLOTH | ||
