Linux Cryptography - Page 48 - Results from #940

Discover Cryptography News

Digital tags stem hack attacks

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

ISPs and corporations could do more to prevent hacking attacks by using digital authentication, according to security vendor Access Research Technologies. The company said its software can generate digital tags which protect communication channels by authenticating and authorising each inbound connection . . .

LinuxSecurity.com Team
Jun 29, 2001

SSH: SEALING THE PIPES

SSH is a powerful security protocol, but it can prove dangerous if used incorrectly. The paradox of the Internet is that it could never have developed without being open. But that same openness makes today's 'Net vulnerable to attacks of all kinds. The Secure Shell (SSH) protocol is one of a number of solutions developed over the past decade to address this problem.. . .

LinuxSecurity.com Team
Jun 26, 2001

Flaw found in encrypted e-mail programs

There is a fundamental flaw in numerous popular encrypted e-mail programs that calls into question the authenticity of digitally signed and encrypted e-mail messages, according to a security researcher who has published a paper on the subject. But, as is usually the case in the security community, the revelation has sparked a debate over the merits of the disclosure.. . .

LinuxSecurity.com Team
Jun 26, 2001

Cracking e-security

If the governments of the world are to be believed, Public Key Infrastructure (PKI) is playing straight into the hands of the criminal underworld. According to some, it is just too strong, which means that Big Brother finds it very difficult to keep his beady eyes locked onto our every movement.. . .

LinuxSecurity.com Team
Jun 26, 2001

Secure FTP via SSH Tunnel

This article will point out the differences between standard FTP and secure FTP using some real-world examples. Secure FTP solves the password security and port control problems by allowing the entire connection to take place through a single tunneled SSH connection. . . .

LinuxSecurity.com Team
Jun 24, 2001

The Key to Encryption

Encrypting data that passes over the Internet from customers to e-commerce sites is a good thing. But it's not necessarily enough. In fact, personal data used in online transactions is often encrypted at the least significant time. . . .

LinuxSecurity.com Team
Jun 22, 2001

UK govt poised to embrace open source for PKI standards

The UK government e-Envoy, he of the Microsoft-only Government portal, seems to have got religion after all. In what unkind individuals might term one of the great u-turns of our time, an open source approach to PKI currently looks very close . . .

LinuxSecurity.com Team
Jun 13, 2001

VPNs aren't the answer to everything

In October 2000, Microsoft discovered that someone had broken into its internal network, evidently using a Trojan horse program to commandeer the PC of an employee who was working remotely. The widely reported intrusion wasn't just bad publicity for Microsoft. It . . .

LinuxSecurity.com Team
Jun 13, 2001

Smashing the SSL Speed Trap

Whether you're boarding an airplane or sending a credit-card number into cyberspace, you want to feel secure -- it's a basic human need. Lately, however, we've noticed how often this need is at odds with our yen to stay on the . . .

LinuxSecurity.com Team
Jun 12, 2001

OpenPGP Alliance secures email

A group of security companies have teamed up to form the OpenPGP Alliance, a body that aims to ensure compatibility between secure email systems. OpenPGP is a widely used email encryption system based on an Internet Engineering Task Force . . .

LinuxSecurity.com Team
Jun 08, 2001

E-Signatures: Unsigned, Unsealed, Undelivered

It has been almost a year since former President Bill Clinton signed into law the Electronic Signatures in Global and National Commerce (E-SIGN) Act. That was the legislation that cleared the way for digital signatures, a move many thought would be . . .

LinuxSecurity.com Team
Jun 05, 2001

Remote arbitrary code execution vulnerability in GnuPG

Hidden deep within its code is a format string vulnerability which can be triggered simply by attempting to decrypt a file with a specially crafted filename. This vulnerability can allow a malicious user to gain unathorized access to the account which attempted the decryption.. . .

LinuxSecurity.com Team
May 29, 2001

Integration of Checkpoint VPN-1/FW-1 with FreeBSD's IPSEC

This document explains how to configure a VPN tunnel between FreeBSD and Check Point's VPN-1/Firewall-1. Other documents provide similar information, but do not contain instructions specific to VPN-1/Firewall-1 and their integration with FreeBSD. These documents are listed at the conclusion of . . .

LinuxSecurity.com Team
May 25, 2001

Open Source Entrant to UK Government's PKI Trials

The office of the e-Envoy has awarded netproject a contract to examine how to achieve an Open Source PKI that could be used in the second round of PKI interoperability trials to be conducted by the UK Communications-Electronics Security Group (CESG) . . .

LinuxSecurity.com Team
May 21, 2001

The Crypto Myth

For more than 15 years, we have been deluged with the idea that Internet encryption, SSL in particular, is sine qua non--an absolutely indispensable component of enterprise and e-commerce security. The argument goes like this: Because the Internet uses packet switching . . .

LinuxSecurity.com Team
May 16, 2001

VPNs securely deliver the goods

The most popular technique, tunneling, entails wrapping private network packets inside TCP/IP data sent via the Internet. Hardware or software on both ends of this VPN connection use a shared encryption key to encrypt and wrap and then unwrap and decipher . . .

LinuxSecurity.com Team
May 09, 2001

Secure Your Sockets with JSSE

In this column, I'll show you how to install JSSE and use it to implement HTTPS (i.e., HTTP over SSL). I'll provide you with an example of a mini-HTTPS server and Java clients that support SSL. I'll then show you how . . .

LinuxSecurity.com Team
May 04, 2001

AES Encryption Products Expected Soon

Products certified for the new Advanced Encryption Standard should be available almost as soon as the proposed standard receives formal approval, officials at the National Institute of Standards and Technology said last week. NIST last October selected the powerful Rijndael algorithm . . .

LinuxSecurity.com Team
Apr 30, 2001

Crypto City Lifts the Drawbridge

Seated in the lobby of the National Cryptologic Museum, between a German Enigma machine and a KGB mannequin, James Bamford couldn't have picked a more perfect place to sign copies of his new spy book, "Body of Secrets." But the amazing . . .

LinuxSecurity.com Team
Apr 30, 2001

Using SSL Acceleration to Improve SLAs

This paper is designed to provide HSPs with an understanding of the business case for value added services and presents the rationale for offering SSL acceleration services to hosting service customers. Included are ROI (return on investment) indicators, marketing tips and . . .

LinuxSecurity.com Team
Apr 30, 2001

Linux Cryptography - Page 48

How Passkey Solutions Enhance Open-Source Security

Abyss Locker Ransomware Targets Linux & Windows Users

Linux Foundation Joins Post-Quantum Cryptography Alliance