Key agreement methods in FIPS

FIPS has multiple ways of claiming CAVP-tested compliance of the key agreement schemes. Each of them corresponds to a different use case, for example, the key agreement may or may not include key derivation. [Read More]

#Cryptography #FIPS

Gentle introduction to NTRU cryptosystem (part 1)

NTRU cryptosystem is a grandfather of lattice-based encryption schemes. The initial idea was due to Ajtai. His work evolved into a whole area of research with the goal of creating more practical, lattice-based cryptosystems, like the first NTRU-based encryption system and signature scheme due to Hoffstein, Pipher, Silverman, Howgrawe-Graham and Whyte. [Read More]

#Cryptography

Constant-time code verification with Memory Sanitizer

In the cryptography context, the side-channel attacks are about exploiting computer system implementation to gain information about the secret key. First such attacks were introduced by Paul Kocher in his paper called “Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems”. [Read More]

#Cryptography

#TrustZone

Key agreement methods in FIPS

Gentle introduction to NTRU cryptosystem (part 1)

Constant-time code verification with Memory Sanitizer

Experimenting with NGINX

OpenVPN authentication hardened with ARM TrustZone

PoC: Extending BoringSSL

On using Trusted Execution Environment for TLS session signing

i2c-stub: Playing with I2C on linux

Building HTTPS server with quantum-safe TLS in baby steps

TrustZone Overview