NIST Starts Planning for Post-Quantum Cryptography – Schneier on Security
https://www.schneier.com/blog/archives/2016/05/nist_starts_pla.html Quantum computers will break easily many popular encryption systems, so we need something new. →
https://www.schneier.com/blog/archives/2016/05/nist_starts_pla.html Quantum computers will break easily many popular encryption systems, so we need something new. →
Silicon Labs presentation at Arrow IoT summit. The presenter Lars Lydersen had hacked quantun cryptopcraphy in 2010, which lead to downturn of that industry sector. He wants that that IoT manufacturers are serious on security or otherwise bad hacks to those systems can damage the size of the business of the whole IoT sector. →
Is your password in this art? Those are the most popular passwords. Source: Arrow IoT Summit →
http://arstechnica.com/security/2016/05/chinese-arm-vendor-left-developer-backdoor-in-kernel-for-android-pi-devices/ Allwinner’s ARM chips are popular in cheap tablets and dev boards. It seems that the Linux kernel supplied by chipmaker has a serious security backdoor in it. →
The RSA SecurID authentication mechanism consists of a “token” — either hardware (e.g. a USB dongle) or software (a soft token) — which is assigned to a computer user and which generates an authentication code at fixed intervals (usually 60 seconds) using a built-in clock and the card’s factory-encoded random key (known as the “seed”). →
RSA SecurID is a two-factor authentication device. It gives out number that change depending on the time, and correct number is needed to log-in to sensitive systems (=one-time password functionality). RSA SecurID 700 is a small key fob that connects easily to any key ring. Here is front panel of RSA SecurID 700. There is →
http://www.iflscience.com/technology/cybersecurity-s-weakest-link-humans Humans are a serious security problem that just can’t be fixed with software update or adding another firewall level. →
http://www.iflscience.com/technology/how-check-if-youve-been-hacked-within-seconds There is a site that allows you to check if information linked to your e-mail address has been leaked online… →
http://arstechnica.com/security/2016/05/5-year-old-android-vulnerability-exposes-texts-and-call-histories/ Many apps have had access to sensitive data for many years in Android 4.3 and below. →
http://bgr.com/2016/05/04/mail-ru-gmail-yahoo-microsoft-email-heist/ Large data leak again! →