A quick post on Chen’s algorithm (blog.cryptographyengineering.com)
Putty vulnerability: bias in ECDSA deterministic nonce generation leads to compromise of NIST P521 keys with ~60 signatures (www.chiark.greenend.org.uk)
writeup from the researcher who discovered this: www.openwall.com/lists/oss-security/2024/04/15/6
Web-based cryptography is always snake oil (www.devever.net)
Security Cryptography Whatever - Post-Quantum iMessage with Douglas Stebila (podcasts.google.com)
Attack of the week: Airdrop tracing (blog.cryptographyengineering.com)
Nearly-finalized eIDAS legislation requires browsers to trust state-issued CAs, and prohibits using certificate transparency to prevent abuses of them: only ETSI-approved authenticity checks allowed. (last-chance-for-eidas.org)
Quantum Resistance and the Signal Protocol (psychedelia.ink)
The article is about:...