@stf

6 Followers
109 Following
404 Posts
https://pitchfork.ist, libopaque, https://sphinx.ctrlc.hu, pysodium, https://www.cryptomuseum.com/crypto/philips/px1000/stef.htm
githubhttps://github.com/stef
bloghttps://ctrlc.hu/~stef/blog/
stfJul 6, 2023
Nigel SmartJul 6, 2023

Have a FAEST on post-quantum digital signatures based on the security of the AES function...

https://faest.info/

Great work from a team of Aalto, Aarhus, AIT, Bocconi, DTU, KU Leuven, and TU Graz authors.

Come and join the FAEST

The FAEST digital signature algorithm

FAEST Signature Algorithm
stfJul 6, 2023
Show threadJonathanJul 6, 2023
@stf Identity-based crypto uses pairings. There are probably a few companies using this, but I don't know of any specifically
stfJul 5, 2023
not quite a SoK yet, but an interesting collection of AKEs https://eprint.iacr.org/2023/1044
AKE Zoo: 100 two-party protocols (to be continued)

stfJul 5, 2023
pretty interesting paper: SoK: Privacy-Preserving Signatures https://eprint.iacr.org/2023/1039
SoK: Privacy-Preserving Signatures

stfJul 5, 2023
parltrack.orgJul 5, 2023
what a horrible story of a capitalistic vulture profiting off of the African #IPv4 addresses and in the mean time also destroying #AFRINIC the African authority in charge of the ip addresses in #Africa. https://www.theregister.com/2023/07/03/what_is_number_resource_society/ #internet #ipaddress #cloudinnovation #nsr #laurus
How a dispute over IPv4 addresses blew the lid off an effort to reshape global allocation

Who is behind this lobby group calling for a stock market of network resources?

The Register
stfJul 3, 2023
Silent SignalJul 3, 2023

Technical Details of CVE-2023-30990 - Unauthenticated RCE in IBM i DDM Service

#IBMi #AS400

https://blog.silentsignal.eu/2023/07/03/ibm-i-dde-vulnerability-cve-2023-30990/

Technical Details of CVE-2023-30990 - Unauthenticated RCE in IBM i DDM Service

Because we can!

Silent Signal Techblog
stfJul 3, 2023
Martijn BAARDAJun 28, 2023
How do you spot an idiot? Look for the person who is cruel. The kindest person in the room is often the smartest...
stfJul 2, 2023

#Veritassium explains #entropy: https://youtu.be/DxL2HoqLbyA

precious entropy! all hail eris!

The Most Misunderstood Concept in Physics

YouTube
Show threadstfJul 2, 2023
@n4 i warmly recommend running an omnom instance, it makes it easy to make a full snapshot of the page you are viewing: https://github.com/asciimoo/omnom/ look at this example https://links.ctrlc.hu/bookmarks (registrations are closed on this instance you should run your own for your community)
GitHub - asciimoo/omnom: A webpage bookmarking and snapshotting service

A webpage bookmarking and snapshotting service. Contribute to asciimoo/omnom development by creating an account on GitHub.

GitHub
stfJul 1, 2023
andreasdotorgJul 1, 2023
Hey #infosec peeps. There's a certain Jean Pereira going around. He's overplaying minor vulns, both during disclosure, theatening press action when his unreasonable demands are not met, and also during publication. When the non-severity of this findings is pointed out, he's not shy of threatening legal action, calling up ex-employers and other stalking methods.

Beware.