Encryption - The Missing Defence Tool In Many Companies' Security Policy
Over the last few years, protection against external attacks has been the main focus of information security policies and purchases but this has caused the other aspects of data security to be overlooked. A number of surveys over the last two years have highlighted the fact that the majority of real data losses have been through internal attack or simple loss of removable storage media.
Read the Article
|
Application Level Cryptography
A cryptographic algorithm, also called a cipher, is the mathematical function used for encryption and decryption. If the security of an algorithm is based on keeping the way that algorithm works a secret, it is a restricted algorithm. Restricted algorithms are woefully inadequate by today's standards. A large or changing group of users cannot use them, because every time a user leaves the group, everyone else must switch to a different algorithm. If someone accidentally reveals the secret, everyone must change their algorithm.
Read the Article
|
Salted hashes demystified - A Primer
This primer will provide a basic level explanation of how seeded (or salted) hashes of clear text data are structured / created. The original formalization of this concept comes from RFC-3112. This document is written so that an understanding of this type of functionality becomes possible to anyone with a good computer science foundation.
Read the Article
|
Securing Optical Networks With Quantum Cryptography
In a world where the reliance on electronic data transmission and processing is becoming every day more prevalent, it is of critical importance for organizations to guarantee the integrity and confidentiality of mission critical information exchanged over communication networks.
Read the Article
|
Finite State Analysis of IKE
The aim of this paper is to present the results of modeling Internet Key Exchange (IKE) protocol, using a protocol analyzer called Murf. We analyzed the IKE main mode protocol using incremental approximations to the IKE. The point proved by the analysis is that encryption of the Diffie-Hellman public values in the Public Encryption Keys, main mode revised protocol, hardly makes the protocol any stronger. It only leads to higher computational requirement and does not contribute to the security very much. As such this encryption can be dispensed with, without affecting the overall security.
Read the Article
|
What is the Point of Encryption if you Don't Know Who For?
Dr. Colin Walter provides a detailed and well thought out guide to general encryption techniques and the importance of authentication. He does and excellent job of pointing out SSL weaknesses. He also provides important quotes from relevant standards and uses illustrations to help us follow the concept.
Read the Article
|
An Introduction to Block Cipher Algorithms and Their Applications in Communication Security
Block Cipher algorithms are a type of Symmetric Key Encryption. Symmetric Key encryption is a key-based encryption in which the same key that is used to encrypt sensitive data is used to decrypt the sensitive data. The disadvantage of Symmetric Key encryption is that it only requires the person wishing to break the encryption to obtain only one key. For this reason, the key must be protected and secured. The key is often called a secret key.
Read the Article
|
Analysis of Different Types of Attacks on Stream Ciphers and Evaluation and Security of Stream Ciphers
Cryptographic techniques play an important part in network security and stream ciphers are one of the main cryptographic techniques that play a very important part in maintaining security and protecting valuable information from potential misuse. Cryptanalysis of stream iphers are at least as important as the other encryption technique "The block cipher technique" and in military circles more important. The main objective of this paper is to evaluate the different cipher techniques to provide an idea of the cryptographic strength of the technique as well as to provide parameters to compare with other techniques.
Read the Article
|
The Impact of Quantum Physics on Cryptography Standards
The power that quantum computing can yield is the reason for changing the standard of cryptography. We can't wait until the computer system is developed to consider its implications. After all, a quantum computer would be able to break any cryptosystem that is based off of large number factoring algorithms (as most cryptosystems are). That means banks, companies, countries, etc. would have no way of keeping information secret.
Read the Article
|
MD5 To Be Considered Harmful Someday
This paper demonstrates multicollision attacks of several one-way hash algorithms. It concentrates on MD5 and explains how this affects file-oriented system auditors such as Tripwire.
Read the Article
|
