General Musing

blaze your trail

Archive for the ‘pki’ Category

Just Finished Reading “The Code Book” #books

leave a comment »

I received The Code Book: The Secret History of Codes and Code-breaking as a present sometime ago. I had a love/hate relationship with cryptography and mathematics. I read this book when I got it, but re-reading it now was valuable.

It covers Fermat, Alice and Bob and goes on to quantum cryptography and quantum computing.

An interesting read.

Technorati Technorati Tags: , , , , ,


Written by Daniël W. Crompton (webhat)

March 30, 2009 at 7:38 pm

Just Finished Reading “Mathematics for Engineers and Scientists” #books

with 2 comments

I bought Mathematics for Engineers and Scientists for €10, the Amazon list price is $66.55.

I know mathematics, but when it comes to mathematic notation I’m lost. So I used this book as the teaching tool this is, it goes from simple addition and sets to differential equations and Fourier. I learned things I will probably never use, and some things I applied immediately. Now I can read an analysis on cryptography without needing to refer to the cheat sheet … very often. 🙂

Need to brush up or learn mathematics skills, this is absolutely the book for you!

Technorati Technorati Tags: , , ,

Written by Daniël W. Crompton (webhat)

March 25, 2009 at 7:07 pm

Posted in books, pki, school, science

Tagged with , , ,

Banks don’t understand Privacy #privacy

leave a comment »

I was approached by a recruiter for a role as PKI specialist for a Dutch bank. They asked me to send them a copy of my passport over the internet. They wanted to forward this to the bank. According to the recruiter this was normal practice for them and the bank.

Interestingly enough when I had privacy concerns they thought I was making a big deal about nothing. This is the recruiter for the Triple-A rated Dutch bank, who I’ve mentioned in my blog before. I refused to send a copy of my passport over the internet, and told the recruiter that I would need some assurance that they would not send it over the internet.

Technorati Tags: , , , ,

Written by Daniël W. Crompton (webhat)

September 7, 2008 at 7:39 pm

Posted in pki, privacy, risk, security

Tagged with , , , ,

Clipperz, Online Password Share

with one comment

I was trying to think about what to say about SlideShare, so I was browsing the site to give me inspiration, it didn’t work.

What I did find was Clipperz, Clipperz makes it possible to login with one click. The username and password for the site is stored encrypted at Clipperz and is decrypted and posted to the site. I’ll use the example of /., the bookmarklet provided extracts the form and uses that to populate the login form.

  "page": {"title": "Slashdot: News for nerds, stuff that matters"},
  "form": {
    "attributes": {"action": "", "method": "post"},
      {"type": "text",     "name": "unickname",   "value": "username"},
      {"type": "hidden",   "name": "returnto",    "value": "//"},
      {"type": "hidden",   "name": "op", "value": "userlogin"},
      {"type": "password", "name": "upasswd",     "value": "password"},
      {"type": "checkbox", "name": "login_temp",  "value": "yes"},
      {"type": "submit",   "name": "userlogin",   "value": "Log in"}]
  "version": "0.2.3"

To be entirely portable you can access the websites from a sidebar in your browser. Naturally this is a nice proof of concept for the real product they are selling: zero-knowledge web applications.

Zero-knowledge web applications is about making web applications more secure. Do you trust Google Documents with your confidential documents? You shouldn’t unless the data is stored without the knowledge of the SaaS provider. Clipperz password manager is the first zero-knowledge web application. This means that Clipperz knows nothing about its users and their data. They do this using a JavaScript library, based on Ajax and browser-based cryptography, which can be used to build applications that users can can use to manage their private data.

Technorati technorati tags: , , , , ,

Written by Daniël W. Crompton (webhat)

July 26, 2008 at 8:07 pm

CrackBerry FIPS 140-2 compliant

leave a comment »

I was looking for CrackBerry tools and discovered that the BlackBerry’s Crypto kernel is FIPS compliant. It is obvious otherwise it couldn’t be used by certain elements of the world governments who consider FIPS compliance to be obligitory.

BlackBerry® Cryptographic Kernel Validated to FIPS 140-2

From:Validated 140-1 and 140-2 Cryptographic Modules

Technorati technorati tags: , , , ,

Written by Daniël W. Crompton (webhat)

July 24, 2008 at 2:04 pm

MyOpenID Second Factor

leave a comment »

MyOpenID has two additional features I hadn’t seen before. They have added Two-Factor Authentication and TLSCertificate Authentication.

Nice new features, gives me a reason to switch default OpenID provider.

Technorati technorati tags: , , , ,

Written by Daniël W. Crompton (webhat)

July 22, 2008 at 7:48 pm

Posted in business, identity, pki, risk

Tagged with , , , ,

LinkedIn Certificate Expired

with 8 comments

For all you LinkedIn users, have you noticed that you can’t login or re-authenticate? This is because the Security Certificate expired today. uses an invalid security certificate.

The certificate expired on 06/07/2008 08:53.

(Error code: sec_error_expired_certificate)

It’s easy to call the guys from LinkedIn, which has Got A Billion Dollar Valuation and collected 53 million in the last round of funding, stupid.

This is a business risk, to mitigate this a simple calender item could be created which alerts at least a week before expiration. Naturally it would be better to have your own PKI system with which you could easily create a new certificate rather than rely on an external vendor for new certificate creation. Although some provide the facility to create a new certificate online. To have anything expire on any day other than Mon-Thu, preferably round 12pm localtime is really really bad management.

Naughty LinkedIn!

Technorati technorati tags: , , , , , , ,

Written by Daniël W. Crompton (webhat)

July 6, 2008 at 10:38 am

%d bloggers like this: