SecurityRatty: tag: keys

The Blackberry keys

2008-05-27 20:23:00 by Manu Namboodiri in Data Protection, Management and Leakage

...keys available Apparently, the reason is that RIM itself does not have the keys - therefore they cannot hand it over. The company says, "The BlackBerry security architecture for enterprise customers is purposefully designed to exclude the capability for Research in Motion (RIM) or any third party to read encrypted information under any...

Tags: keys, rim, week rim apparently, apparently, crypto keys, indian government, government, blackberry security architecture, enterprise customers

More on functional encryption and two-level keys

2008-05-06 14:01:00 by Manu Namboodiri in Data Protection, Management and Leakage

...keys are personalized and only one is needed for a person to gain access to all the data that should be available to them. In addition to simplifying the key process, this idea allows userswith proper access rightsto search encrypted volumes for specific information The key used here is a personal key which contains attributes of a person...

Tags: functional encryption, key, functional encryption system, personal key, keys, document, document based, gain access, access

Tools circulate that crack Debian, Ubuntu keys

2008-05-15 13:00:00 by Editor in Computerworld Security News

A vulnerability in widely used Linux distributions can be used by attackers to guess cryptographic keys, possibly leading to the theft of confidential information, security researcher HD Moore said today

Tags: linux distributions, security researcher, cryptographic keys, confidential information, attackers, moore, widely, possibly, vulnerability

Tools circulate that crack Debian, Ubuntu keys

2008-05-16 00:00:00 by HASH0x8472e44 in Network World on Security

A recently disclosed vulnerability in widely used Linux distributions can be exploited by attackers to guess cryptographic keys, possibly leading to the forgery of digital signatures and theft of confidential information, a noted security researcher said Thursday

Tags: noted security researcher, digital signatures, linux distributions, confidential information, cryptographic keys, attackers, recently, widely, forgery

BlackBerry Giving Encryption Keys to Indian Government

2008-05-21 14:09:54 by schneier in Schneier on Security

RIM encrypts e-mail between BlackBerry devices and the server the server with 236-bit AES encryption. The Indian government doesn't like this at all; they want to snoop on the data. RIM's response was basically: that's not possible. The Indian government's counter was: Then we'll ban BlackBerries. After months of threats, it looks like RIM is...

Tags: indian government, rim encrypts e-mail, rim, encryption keys, 236-bit aes encryption, indian demands, blackberry devices, server, ban blackberries

The Keys to RFID Privacy

2008-07-25 00:00:00 by Dr. Ari Juels in Speaking of Security, the RSA Blog and Podcast

Data-security vendors sometimes get tall orders from customers. Not unheard of are: "I'd like a good digital signature system... with 20-bit keys" and "I want to use one-time pads for encryption... and I need to compress them." But one of the most challenging I've heard was recently offered up by colleagues in the RFID (Radio-Frequency...

Tags: digital signature system, radio-frequency identification, rfid, one-time pads, 20-bit keys, data-security vendors, recently, tall, encryption

Is Your Amazon Machine Image Vulnerable to SSH Spoofing Attacks?

2008-07-14 16:26:40 by Craig Balding in Cloud Security

...keys each time you launch an instance. This enables you to get the host SSH keys from the console output and verify the host to which you are connecting Important note: SSH host keys enable clients to verify the server identity (are you really my server?) and are separate from SSH user keys that allow the user to prove their identity to the...

Tags: ssh, limit ssh access, ssh host keys, host keys, ssh user keys, amazon, host ssh keys, amazon machine image, initial ssh connection

A sneak peek at a Black Hat presentation

2008-07-30 18:08:27 by HASH0x8c270c8 in StillSecure, After All These Years

...keys immediately before certain OS state transitions, such as before the computer shuts down or goes into hibernation mode accessing the memory will yield nothing Take advantage of BIOS memory smashing : By strategically placing keys in certain regions of memory, we can rely on the BIOS boot process to overwrite keys before any operating...

Tags: boot, bios boot process, cold boot attacks, attacks, cold, black hat, disk encryption, keys, wipe keys immediately

Cold Boot Attacks Against Disk Encryption

2008-02-21 13:29:18 by schneier in Schneier on Security

...keys in DRAM. This was thought to be safe because the operating system would keep any malicious programs from accessing the keys in memory, and there was no way to get rid of the operating system without cutting power to the machine, which everybody knew would cause the keys to be erased Our results show that an attacker can cut power to the...

Tags: main memory chips, memory, todays dram memories, dram, dram contents, memory contents, disk encryption, hard, hard disk contents

Debian OpenSSL Blunder

2008-05-15 09:19:37 by Editor in Cheap Hack

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo