From https://wiki.mozilla.org/CA:MD5and1024:
December 31, 2010 - CAs should stop issuing intermediate and end-entity
certificates from roots with RSA key sizes smaller than 2048 bits [0]. All
CAs should stop issuing intermediate and end-entity certificates with RSA
key size smaller than
http://tahoe-lafs.org/trac/tahoe-lafs/browser/trunk/docs/backdoors.txt
Statement on Backdoors
October 5, 2010
The New York Times has recently reported that the current U.S.
administration is proposing a bill that would apparently, if passed,
require communication systems to facilitate
Not new, but some probably have missed it.
http://www.moserware.com/2009/09/stick-figure-guide-to-advanced.html
--
Eugen* Leitl a href=http://leitl.org;leitl/a http://leitl.org
__
ICBM: 48.07100, 11.36820 http://www.ativel.com
On Wed, Oct 06, 2010 at 04:52:46PM +1300, Peter Gutmann wrote:
Right, because the problem with commercial PKI is all those attackers who are
factoring 1024-bit moduli, and apart from that every other bit of it works
perfectly.
_If_ Mozilla and the other browser vendors actually go through
On Wed, Oct 06, 2010 at 04:52:46PM +1300, Peter Gutmann wrote:
From https://wiki.mozilla.org/CA:MD5and1024:
December 31, 2010 - CAs should stop issuing intermediate and end-entity
certificates from roots with RSA key sizes smaller than 2048 bits [0]. All
CAs should stop issuing
Dear all:
The PUDEC (Practical Use of Dice for Entropy Collection) scheme has been
advanced. The new web page is at http://pudec.connotech.com
The main technical advance in this release is the documentation of
(deterministic) algorithmic support (
http://pudec.connotech.com/pudec_algo.html
Microsoft is sending up a test balloon on a plan to 'quarantine'
computers from accessing the Internet unless they produce a 'health
certificate' to ensure that software patches are applied, a firewall
is installed and configured correctly, an antivirus program with current
signatures is
On Oct 6, 2010, at 10:48 AM, Victor Duchovni wrote:
On Wed, Oct 06, 2010 at 04:52:46PM +1300, Peter Gutmann wrote:
From https://wiki.mozilla.org/CA:MD5and1024:
December 31, 2010 - CAs should stop issuing intermediate and end-entity
certificates from roots with RSA key sizes smaller
a 19-year-old just got a 16-month jail sentence for his refusal to
disclose the password that would have allowed investigators to see
what was on his hard drive.
I suppose that, if the authorities could not read his stuff
without the key, it may mean that the software he was using may
have
Jack Lloyd ll...@randombit.net writes:
On Wed, Oct 06, 2010 at 04:52:46PM +1300, Peter Gutmann wrote:
Right, because the problem with commercial PKI is all those attackers who are
factoring 1024-bit moduli, and apart from that every other bit of it works
perfectly.
_If_ Mozilla and the
On Wed, 6 Oct 2010, Matt Crawford wrote:
[[...]]
I found it amusing that this message was accompanied by an S/MIME
certificate which my mail client (alpine) was unable to verify, resulting
in the error messages
[Couldn't verify S/MIME signature: certificate verify error]
[ This
On Wed, Oct 06, 2010 at 01:32:00PM -0500, Matt Crawford wrote:
That is, if your CA key size is smaller, stop signing with it.
You may have missed the next sentence of Mozilla's statement:
All CAs should stop issuing intermediate and end-entity certificates with
RSA key size smaller than 2048
On 10/06/2010 01:57 PM, Ray Dillinger wrote:
a 19-year-old just got a 16-month jail sentence for his refusal to
disclose the password that would have allowed investigators to see
what was on his hard drive.
I am thankful to not be an English subject.
I suppose that, if the authorities could
ATT debuts a new encrypted voice service. Anyone know anything about
it?
http://news.cnet.com/8301-13506_3-20018761-17.html
(Hat tip to Jacob Applebaum's twitter feed.)
--
Perry E. Metzgerpe...@piermont.com
-
On 6 October 2010 11:57, Ray Dillinger b...@sonic.net wrote:
a 19-year-old just got a 16-month jail sentence for his refusal to
disclose the password that would have allowed investigators to see
what was on his hard drive.
16 weeks, says the article.
On 06/10/10 19:57, Ray Dillinger wrote:
a 19-year-old just got a 16-month jail sentence for his refusal to
disclose the password that would have allowed investigators to see
what was on his hard drive.
Just to correct this: the sentence was 16 weeks, not 16 months.
The legislation in
On 10/06/2010 03:55 PM, Joss Wright wrote:
The .. Regulation of Investigatory Powers Act of 2000 (RIPA), ..
allows for a maximum sentence of two years for refusing a
request that encrypted data be put into an intelligible form.
Five years, if a national security or child indecency case.
On Thu, Oct 7, 2010 at 5:57 AM, Ray Dillinger b...@sonic.net wrote:
a 19-year-old just got a 16-month jail sentence for his refusal to
disclose the password that would have allowed investigators to see
what was on his hard drive.
I suppose that, if the authorities could not read his stuff
On 7/10/10 11:19 AM, Perry E. Metzger wrote:
ATT debuts a new encrypted voice service. Anyone know anything about
it?
http://news.cnet.com/8301-13506_3-20018761-17.html
(Hat tip to Jacob Applebaum's twitter feed.)
JavaScript needs to be enabled:
On Oct 6, 2010, at 6:19 01PM, Perry E. Metzger wrote:
ATT debuts a new encrypted voice service. Anyone know anything about
it?
http://news.cnet.com/8301-13506_3-20018761-17.html
(Hat tip to Jacob Applebaum's twitter feed.)
20 matches
Mail list logo