It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
Google - Announcing the first SHA1 collision
page: 2share:
a reply to: Aazadan
Check this hardware
QUANTIS QRNG - delivering true randomness with quantum random number generation
Check this hardware
QUANTIS QRNG - delivering true randomness with quantum random number generation
originally posted by: roadgravel
a reply to: Aazadan
Check this hardware
QUANTIS QRNG - delivering true randomness with quantum random number generation
Interesting, but it still doesn't fully solve the problem. Even if you can generate truly random sequences of bits, you still have the issue of transferring that decryption key. Any system that allows you to transfer it securely, is also going to be sufficient to simply transfer the message.
a reply to: Bedlam
SHA2 is very similar to SHA1 from what I have read and the recommendation now is to use SHA3. I stopped using SHA256 early in 2016. There are also problems with obsolete ciphers and protocols being used when it comes to web servers.
I used Qualy's SSL labs to check my web server and I scored A+ (hours of reading). For comparison I tested Go Daddy's site today which scored a C. Protocols SSLv2, SSLv3 and TLSv1.0 have been hacked and are considered unsafe. Go Daddy uses TLSv1.0. They also use RC4 which is considered broken and unsafe to use along with other unsafe cipher suites. I removed RC4 2 years ago. Go Daddy does not have perfect forward secrecy either.
Go Daddy Assessment
I am self-taught with no IT qualifications. If I can score A+ surely big companies who employ IT staff should score this as well. I find it puzzling.
For anyone that is interested I use a Firefox add-on called 'SSleuth' which lets me see at a glance how secure website encryption is.
This is the SSLeuth readout from the Disqus hompage.
SHA2 is very similar to SHA1 from what I have read and the recommendation now is to use SHA3. I stopped using SHA256 early in 2016. There are also problems with obsolete ciphers and protocols being used when it comes to web servers.
I used Qualy's SSL labs to check my web server and I scored A+ (hours of reading). For comparison I tested Go Daddy's site today which scored a C. Protocols SSLv2, SSLv3 and TLSv1.0 have been hacked and are considered unsafe. Go Daddy uses TLSv1.0. They also use RC4 which is considered broken and unsafe to use along with other unsafe cipher suites. I removed RC4 2 years ago. Go Daddy does not have perfect forward secrecy either.
Go Daddy Assessment
I am self-taught with no IT qualifications. If I can score A+ surely big companies who employ IT staff should score this as well. I find it puzzling.
For anyone that is interested I use a Firefox add-on called 'SSleuth' which lets me see at a glance how secure website encryption is.
This is the SSLeuth readout from the Disqus hompage.
edit on 28-2-2017 by Morrad because: (no reason given)
new topics
-
Liberal Madness and the Constitution of the United States
US Political Madness: 1 hours ago -
New York Governor signs Climate Law that Fines Fossil Fuel Companies
US Political Madness: 9 hours ago
top topics
-
This is why ALL illegals who live in the US must go
Social Issues and Civil Unrest: 16 hours ago, 19 flags -
New York Governor signs Climate Law that Fines Fossil Fuel Companies
US Political Madness: 9 hours ago, 13 flags -
UK Borders are NOT Secure!
Social Issues and Civil Unrest: 17 hours ago, 6 flags -
Meta Llama local AI system is scary good
Science & Technology: 14 hours ago, 6 flags -
Liberal Madness and the Constitution of the United States
US Political Madness: 1 hours ago, 1 flags