KeyChest Blog

Can blockchain remove the need for an SSL certificate authority?

Jun 14, 2019 2:08:01 PM / by Dan posted in certificate, security, quora

0 Comments

Let’s think about what blockchain does and what a certification authority (CA) does.

Read More

Is a password of 20 characters strong enough to use?

Jun 14, 2019 2:03:03 PM / by Dan posted in security, quora, password

0 Comments

It could be but it may not, it depends on how random those 20 characters are. Let me demonstrate the thought with 2 common attacks on passwords. These attacks are:

Read More

What could be done if all current Encryption could be broken and cracked?

Jun 14, 2019 1:58:18 PM / by Dan posted in quora, incident response, attack

0 Comments

If all current encryption were suddenly broken, that would be the end of it for encryption as we know it. With one exception - one-time pad. One-time pad is a provably secure encryption that can’t be broken, but it has practical difficulties - it requires keys as long as the data.

Read More

What Is Encryption Domain

Jun 14, 2019 1:54:52 PM / by Dan posted in key management, quora

0 Comments

Encryption domain is simply a set of computers or other computing devices (or even people :) ) who share encryption key(s) allowing them to trust each other.

Read More

What is the SHA-256 fingerprint?

Jun 14, 2019 1:42:08 PM / by Dan posted in identity, quora, password

0 Comments

It is a digital fingerprint we use to compare two documents or to check if a document has been changed.

Read More

What are disadvantages of Let's Encrypt

Jun 7, 2019 8:24:18 AM / by Dan posted in letsencrypt, keychest, quora

0 Comments

Letsencrypt is now installed on more than 50% of all webservers. This is mostly thanks to its adoption by many web hosting providers. We can also see it starts being used by large companies and enterprises. But what are the downsides?

Read More

Why is the public only concerned with Facebook selling data and not ISPs selling data?

May 19, 2019 9:32:20 PM / by Dan posted in security, quora

0 Comments

This will be controversial but I think the reason why Facebook suddenly got to front-pages is an alleged use of its data for Trump’s campaign (and other political purposes). I’ve been a post-doc at Cambridge Uni in 2007–08 and I remember a lot of activity around Facebook as its data was easy to collect (in that instance the research was about social networks, trust, … one particular research area was to produce models of social connectivity for simulation of security threat models in large networks). There has been loads of research papers using its data and no-one was bothered then nor anytime up to 2017.

Read More

I always get SSL errors on a WiFi. What's the reason behind this?

May 19, 2019 9:28:23 PM / by Dan posted in certificate, quora, attack

0 Comments

WiFi routers should pass any traffic transparently unless its configuration is really messed up.

Read More

Is there a way to generate a self-signed EV SSL (X.509) certificate?

May 19, 2019 9:24:26 PM / by Dan posted in certificate, https, quora

0 Comments

Technically, all you need is to add correct extensions to your certificate, which will identify it as an EV certificate. CA/Browser forum defined one in https://cabforum.org/wp-content/... (section 9.3.2).

Read More

Is Biometric authentication on smartphones secure?

May 19, 2019 9:21:18 PM / by Dan posted in key management, quora, password

0 Comments

No answer is universally correct but here’s two use-cases so you can pick which is more appropriate for you.

Read More