The ECDH method that we use for key exchange on the Web is open to an Eve-in-the-Middle attack. For this, we add a digital signature with either RSA or ECDSA to authenticate the server (Alice) to Bob. But, this approach only authenticates Alice to Bob, and not vice-versa. …

And, so, NIST has defined AES as the standard for symmetric key encryption. But, NIST was pinpointed as possibly pushing a cipher with an NSA backdoor. For companies in China, the ShāngMì (SM) series of ciphers provide one alternative for TLS 1.3 integration and Wireless authentication. With this SM2 defines…

J-PAKE (Password Authenticated Key Exchange by Juggling) was created by Hao and Ryan [1] and fully defined in RFC 8238 [2][here]:

The storing of passwords is an obvious attack point on any system. The method to store these, such as with a hash of the password, is often open to dictionary attacks and brute force. At the root of the problem is that they normally have a username and a password…

I posted an article on ECRN (Elliptic Curve Nyberg and Rueppel), and how you could recover a message from a digital signature, and someone asked how it worked, so I will document here. The related article is: Can I Recover A Message From My Signature? Wouldn’t it be amazing if I could sign my name on a message, and where my signature contains the details of the…medium.com and where we can recover a message from a signature (r,s).

Wouldn’t it be amazing if I could sign my name on a message, and where my signature contains the details of the message? Someone could then examine my signature and find out the message. For this, in 1993, Nyberg and Rueppel published a classic paper that allowed a message to…

Like it or not; we live in a digital world that is dominated by US companies and standards. For many, that is a good thing, as researchers and industry experts have generally worked together to produce standards that others can comply with. And, so, in cybersecurity, this is often driven…

The Digital Signature Algorithm (DSA) is a standard defined in the Federal Information Processing Standard (FIPS 186) for digital signatures and is based on discrete logarithms. It was outlined by NIST is 1991, and proposed within the Digital Signature Standard (DSS). This was then standardized with FIPS 186 in 1994…

Do you remember the days of carbon copies? Well, they were often used as a receipt, and where there was blue carbon paper which copied your writing onto another sheet: