Hot Topics

cryptanalysis

Ross Anderson

| | cryptanalysis, cryptography, Cybersecurity, economics of security, Security Conferences, Security Engineering, Uncategorized
Ross Anderson unexpectedly passed away Thursday night in, I believe, his home in Cambridge. I can’t remember when I first met Ross. Of course it was before 2008, when we created the ...
Schneier on Security

Improving Shor’s Algorithm

| | academic papers, cryptanalysis, cryptography, quantum computing, rsa, Uncategorized
We don’t have a useful quantum computer yet, but we do have quantum algorithms. Shor’s algorithm has the potential to factor large numbers faster than otherwise possible, which—if the run times are ...
Schneier on Security

Model Extraction Attack on Neural Networks

| | academic papers, cryptanalysis, Uncategorized
Adi Shamir et al. have a new model extraction attack on neural networks: Polynomial Time Cryptanalytic Extraction of Neural Network Models Abstract: Billions of dollars and countless GPU hours are currently spent ...
Schneier on Security

Security Analysis of Threema

| | academic papers, Authentication, cryptanalysis, encryption, side-channel attacks, threat models, Uncategorized, Vulnerabilities
A group of Swiss researchers have published an impressive security analysis of Threema. We provide an extensive cryptographic analysis of Threema, a Swiss-based encrypted messaging application with more than 10 million users ...
Schneier on Security

Breaking RSA with a Quantum Computer

| | academic papers, china, cryptanalysis, cryptography, quantum computing, Uncategorized
A group of Chinese researchers have just published a paper claiming that they can—although they have not yet done so—break 2048-bit RSA. This is something to take seriously. It might not be ...
Schneier on Security

Breaking the Zeppelin Ransomware Encryption Scheme

| | cryptanalysis, Cybersecurity, encryption, Ransomware, Uncategorized
Brian Krebs writes about how the Zeppelin ransomware encryption scheme was broken: The researchers said their break came when they understood that while Zeppelin used three different types of encryption keys to ...
Schneier on Security

NIST’s Post-Quantum Cryptography Standards

| | algorithms, cryptanalysis, cryptography, NIST, quantum computing, quantum cryptography, Uncategorized
Quantum computing is a completely new paradigm for computers. A quantum computer uses quantum properties such as superposition, which allows a qubit (a quantum bit) to be neither 0 nor 1, but ...
Schneier on Security

Samsung Encryption Flaw

| | academic papers, android, cryptanalysis, cryptography, encryption, Samsung, smartphones, Uncategorized, Vulnerabilities
Researchers have found a major encryption flaw in 100 million Samsung Galaxy phones. From the abstract: In this work, we expose the cryptographic design and implementation of Android’s Hardware-Backed Keystore in Samsung’s ...
Schneier on Security

Decrypting Hive Ransomware Data

| | academic papers, cryptanalysis, encryption, Ransomware, Uncategorized
Nice piece of research: Abstract: Among the many types of malicious codes, ransomware poses a major threat. Ransomware encrypts data and demands a ransom in exchange for decryption. As data recovery is ...
Schneier on Security

Bunnie Huang’s Plausibly Deniable Database

| | academic papers, cryptanalysis, databases, deniability, metadata, threat models, Uncategorized
Bunnie Huang has created a Plausibly Deniable Database. Most security schemes facilitate the coercive processes of an attacker because they disclose metadata about the secret data, such as the name and size ...
Schneier on Security
Load more