Sun, 13 Jul 2008

Basic OpenVPN

Wiki notes for a very basic OpenVPN configuration. joat: 09:34:27 13 Jul 2008

| [/Cryptography] permanent link

Sat, 12 Jul 2008

OpenVPN

Sparks and I have started working on getting OpenVPN up and running. The example for the simple point to point configuration is quite easy. However, that's where most of the howto's end. We're trying to get a point-to-multipoint configuration up and running but it's a bit more complicated. We should have it up and running shortly. joat: 00:01:59 12 Jul 2008

| [/Cryptography] permanent link

Sun, 25 Feb 2007

OpenSSL and FIPS

As pointed out by Ben Laurie, the FIPS cert for OpenSSL is enabled again. Unfortunately, there are a number of large companies with financial interest in seeing this fail yet again. Conversely, there are number of large and small companies that'd like the FIPS cert to remain "alive". All in all, I think it's a piss-poor process where testing and results (not just at NIST) can be swayed or delayed just because a external objection was submitted. If I was NIST (or the Wi-Fi Alliance), I'd be writing rules about spurious objections into the charter. joat: 13:00:31 25 Feb 2007

| [/Cryptography] permanent link

Wed, 14 Feb 2007

Another wave

Speaking of crypto advancements, did anyone catch (or miss) the story about Intel coming out with an 80-core chipset? That'll use less power than my porch light? You think the crypto-geeks have problems now? Wait until multi-Tflop systems can be purchased via the average credit card. Keep in mind that many current crypto systems are considered trustworthy because of the amount of computing time required to break a specific key. A lot of the low-end algorithms will "disappear". The math field should be quite interesting to watch in the next decade. It'll affect a lot of other markets too. Grass-roots media (you guys in the garage) will be able to homebrew clusters for animation that are more powerful than what exists in big iron or animation cluster farms now. Coupled with high-def and other technologies, wired life is going to get weird. Fast. joat: 22:55:54 14 Feb 2007

| [/Cryptography] permanent link

Tue, 16 Jan 2007

Storage

Here's a thought. Now that 1TB drives are out (and larger ones are on the way), it is now possible for one system to hold the entire keyspace generated for multiple Rainbow tables. For users of certain applications (the pre-shared key (PSK) versions of WPA and WPA2), this is going to be bad news. Expect to see a slight change in the "rules", like: actually treating your PSK like a password and periodically changing it (preferably the periodicity of change is less than theoretical amount of time it takes to generate the keyspace for that length of a key). joat: 19:37:43 16 Jan 2007

| [/Cryptography] permanent link

Sat, 28 Oct 2006

Netflix

Earlier this month Netflix used a contest to test security on one of their datasets. From the University of Texas comes a paper entitled "How to Break Anonymity of the Netflix Prize Dataset" which describes the analysis performed on the dataset. joat: 08:00:00 28 Oct 2006

| [/Cryptography] permanent link

Thu, 05 Oct 2006

Wikipedia Crypto

Wikipedia has a crypto portal. For some reason I hadn't noticed this before... joat: 08:00:00 5 Oct 2006

| [/Cryptography] permanent link

Fri, 29 Sep 2006

Cryptodox

The CryptoDox site was driven offline by Slashdot so I've added this via a delayed post. CryptoDox has been up for almost a year and has a stated goal of becoming "a free encyclopedia on cryptography and information security." It might be worth keeping an eye on. joat: 08:00:00 29 Sep 2006

| [/Cryptography] permanent link