BéGé

@[email protected]
2 Followers
11 Following
22 Posts
CTO @Cosmian
Talks about #cryptography #cybersecurity #confidentialcomputing
In French and English
Show threadBéGéFeb 27

@basetwojesus monotonically increasing IDs are common in databases and data processing e.g

https://spark.apache.org/docs/latest/api/python/reference/pyspark.sql/api/pyspark.sql.functions.monotonically_increasing_id.html

pyspark.sql.functions.monotonically_increasing_id — PySpark 4.1.1 documentation

Show threadBéGéJul 20, 2024
@kikobar Hello Enrique. We (Cosmian) are strong believers in the renaissance of S/MIME. The two biggest factors are 1) Gmail now supports it when you enable CSE and 2) as a general comment, client-side encryption is a good security model that is clearly picking up now.
I can attest we have (enterprise) customers willing to use it.
Original lack of support in Gmail did a lot of harm to the protocol. It has always remained available in Outlook and mail.app though.
The public key exchange handshake clearly is a usability issue; we need to find creative ideas to improve this.
Returning to PGP is not an option though; PGP is broken
Show threadBéGéJun 21, 2024
@bitecode the project has 590 more times lines of test code than actual source code. An all times record AFAICT.
So the answer to you question is: very hard.
(https://www.sqlite.org/testing.html)
How SQLite Is Tested

Show threadBéGéMar 23, 2024
@cyberveille incroyable ! L’anonymisation n’empêche en rien la ré identification, et les américains sont les premiers à le savoir. En 1997, un large jeu de données de santé anonymisées ont permis de très rapidement ré-identifier celles de William Weld, gouverneur de l’état de Massachusetts de l’époque. Cet incident a très largement influencé les directives HIPAA sur les données de santé aux États-Unis. 27 ans plus tard il semblerait que l’écho n’ait toujours pas atteint les rivages de la France…
Show threadBéGéOct 14, 2023
The sample server code references RSA-OAEP-256, which must be PKCS#11 CKM_RSA_PKCS_OAEP (http://docs.oasis-open.org/pkcs11/pkcs11-curr/v2.40/cos01/pkcs11-curr-v2.40-cos01.html#_Toc228894637) and suggests key wrapping on an ephemeral AES key, but I would love to have some formal documentation proving it. I find the doc sentence "Microsoft keeps one key" particularly disturbing
BéGéOct 13, 2023
Does anyone know what the cryptography behind MS Double key encryption is ? https://learn.microsoft.com/en-us/purview/double-key-encryption-overview. I find the wording extremely confusing. I would expect encapsulation of an ephemeral key encrypting the document but it says MS keeps one key. Is it as expected the wrapped ephemeral key ? Or is it a scheme where 2 keys are combined using XOR or some other mechanism ? I cannot find any detail. #cryptography #microsoft
Double Key Encryption overview and FAQ

Frequently asked questions about Double Key Encryption.

Show threadBéGéSep 23, 2023
@vascorsd Great !
Show threadBéGéSep 19, 2023
@topsecret_chat 100%. Our daily battle at cosmian.com
Show threadBéGéJul 29, 2023
@cyberveille oui mais sur Azure (il est indiqué que ça utilise Azure Open AI). Donc Microsoft voit passer toutes les requêtes, et très probablement en clair.
Show threadBéGéJul 29, 2023
@cyberveille À quel point Secure GPT est-il "secure" ? Est-ce que Microsoft (Azure) a accès à toutes les requêtes et réponses des employés de AXA ou bien est-ce que cela tourne dans des enclaves attestées par AXA?