Seit mindestens 2015 ist klar, dass #SHA1 kaputt ist
Seit 2022 sagt #NIST, man soll SHA1 nicht nutzen
Seit 2025 ist angekündigt, dass #Debian SHA1 ab Februar 2026 nicht mehr akzeptieren wird.
Und jetzt ratet mal, wer zum Stichtag immer noch SHA1 nutzt und wessen Software daher nicht mehr installiert/aktualisiert werden kann.
- Microsoft #Azure
- #Ubiquity
- Teile von #NodeJS
Also die Bereiche, in denen Security ja offensichtlich keinerlei Relevanz hat.
Ich habe meine #Kryptographie #Bibliographie erweitert um Paper zu State Level Actors, insbesondere #NSA #NIST #DUAL_EC_PRNG #Snowden und Unternehmen #Rubikon des #BND in der #Schweiz
Is the first malicious revision of #NIST #SP #800-90 with #Dual_EC_DRBG archived somewhere?
I can only find the later revisions of SP800-90 at NIST, but I would like to show the initial one with Dual_EC_DRBG in it for an awareness project on state level actors.
iX-Workshop IT-Sicherheit: Pentests methodisch planen, anfordern und analysieren
Schritt für Schritt zum sicheren System: Penetrationstests methodisch planen, beauftragen und auswerten, um Schwachstellen in der eigenen IT aufzuspüren.
#BSI #IT #ITInfrastruktur #iXWorkshops #NIST #PenetrationTesting #Test #news
It is a matter of time before Quantum Computing gains the ability to crack today’s core public key encryption methods.
Our latest post on TechAptitude outlines the efforts by NIST to generate new cryptography standards to help withstand future quantum powered cyber attacks. Check it out!
https://techaptitude.substack.com/p/quantum-technologies-nist-drives #Cryptography #Quantum #QuantumTechnology #QuantumComputing #NIST #FIPS #CodeBreaker #Encryption #QDay #PQC #PostQuantumCryptography #Passwords #Ciphers #Algorithm #TechAptitude
eShard is proud to join the SPARTAQUS project with under the German government "SCA4PQC" program.
Over the next 4 years, we’ll push state of the art tooling and PQC security testing expertise to evaluate real world implementations for side-channel leakage.
NIST releases a new draft cybersecurity framework for systems that never stop moving
https://www.nextgov.com/cybersecurity/2026/01/nist-releases-new-draft-cybersecurity-framework-systems-never-stop-moving/411074/
#Infosec #Security #Cybersecurity #CeptBiro #NIST #NewDraftCybersecurityFramework
📢 COSIC researchers have contributed to multiple preview submissions for upcoming responses to the #NIST Call for Multi-Party Threshold Schemes (1st round previews, Jan 2026).
https://csrc.nist.gov/Projects/threshold-cryptography/tcall-1
COSIC contributions include previews of:
- PiVer: Π Verifiable Secret Sharing Framework
- PQarrots: Macaw, Kea and Kakapo (Threshold primitives from (isogeny-based) group actions)
- Haystack: Threshold and Distributed Stateful Hash-Based Signatures
See https://csrc.nist.gov/Projects/threshold-cryptography/tcall-1
This page organizes documentation related to the NIST Threshold Call [NIST IR 8214C (2026)]. The technical scope is organized across two classes — Class N (NIST-specified primitives) and Class S (Special primitives not specified by NIST) — each with various categories of crypto-systems, as follows: Sign PKE Symm KeyGen FHE ZKPoK Gadgets Class N N1 N2 N3 N4 Class S S1 S2 S3 S4 S5 S6 S7 Template for Preview Writeups (v0.1.6, 2026-01-07): .zip (with latex code) and .pdf (example) Template for Package components: Expected to be posted in February 2026, following the structure outlined in the NIST Threshold Call. 1st Round of Previews (Jan 2026) The first round of previews gathered 26 Preview Writeups (PW) from 23 distinct teams, as listed in the table below. The union of the teams includes 185 authors. The corresponding Preview Talks (PT) will be hosted at MPTS 2026 (NIST Workshop on...
adlerweb // BitBastelei
0xKaishakunin
iX Magazin
BGDon 🇨🇦 🇺🇸 👨💻
eShard
Rene Robichaud
CosicBe
Rod2ik 🇪🇺 🇨🇵 🇪🇸 🇺🇦 🇨🇦 🇩🇰 🇬🇱☮🕊️
Rod2ik 🇪🇺 🇨🇵 🇪🇸 🇺🇦 🇨🇦 🇩🇰 🇬🇱 ☮🕊️