Secure your data using encryption
Articles and information about encryption and various forms of cryptography including coverage of public key infrastructure (PKI) and steganography.
Using Windows EFS (Encrypted File System)
Windows EFS (Encrypted File System) can help you add extra security and protection for your files to make sure that unauthorized users are unable to view or use them.
Windows EFS (Encrypted File System) can help you add extra security and protection for your files to make sure that unauthorized users are unable to view or use them.
Where Does EFS Fit into your Security Plan?
An excerpt from an article by Deb Shinder on WindowSecurity.com regarding using the Windows Encrypted File System (EFS) to encrypt and protect your data.
An excerpt from an article by Deb Shinder on WindowSecurity.com regarding using the Windows Encrypted File System (EFS) to encrypt and protect your data.
Top Encryption / Cryptography Books
Encryption and cryptography are almost a necessity these days to ensure that only those you intend to see your documents and messages have the ability to do so. These books will help you "decrypt" the topics of encryption and cryptography.
Encryption and cryptography are almost a necessity these days to ensure that only those you intend to see your documents and messages have the ability to do so. These books will help you "decrypt" the topics of encryption and cryptography.
PKI Security Solutions
PKI Security Solutions, by Kapil Raina, offers a timely and insightful look at this security technology. It covers the broad concepts as well as providing PKI solutions to specific HIPAA, GLBA and other compliance issues.
PKI Security Solutions, by Kapil Raina, offers a timely and insightful look at this security technology. It covers the broad concepts as well as providing PKI solutions to specific HIPAA, GLBA and other compliance issues.
Hiding In Plain Sight
An excellent book on the history, concepts and future direction of steganography. I recommend Hiding In Plain Sight for anyone interested in covert communication.
An excellent book on the history, concepts and future direction of steganography. I recommend Hiding In Plain Sight for anyone interested in covert communication.
Practical Cryptography
Practical Cryptography is the follow up to Applied Cryptography from respected experts Neils Ferguson and Bruce Schneier. For an overview of cryptography and where it is heading this is a great book.
Practical Cryptography is the follow up to Applied Cryptography from respected experts Neils Ferguson and Bruce Schneier. For an overview of cryptography and where it is heading this is a great book.
Free Encryption Tools
Links to free software to encrypt your files or hide files within other files like bitmap or jpg images.
Links to free software to encrypt your files or hide files within other files like bitmap or jpg images.
Cryptography Tutorial - Part 1
Security threats and requirements, services and mechanisms, historical ciphers, cipher machines, stream ciphers, RC4, block ciphers, DES, breaking DES, brute-force attacks, other block ciphers.
Security threats and requirements, services and mechanisms, historical ciphers, cipher machines, stream ciphers, RC4, block ciphers, DES, breaking DES, brute-force attacks, other block ciphers.
Cryptography Tutorial - Part 2
Key management, key distribution, the certification process, X.500 and X.500 naming, certification heirarchies, X.500 directories and LDAP, the PGP web of trust, certificate revocation, X.509 certificate structure and extensions, certificate profiles, setting up and running a CA, CA policies, RA's, timestamping, PGP certificates, SPKI, digital signature legislation.
Key management, key distribution, the certification process, X.500 and X.500 naming, certification heirarchies, X.500 directories and LDAP, the PGP web of trust, certificate revocation, X.509 certificate structure and extensions, certificate profiles, setting up and running a CA, CA policies, RA's, timestamping, PGP certificates, SPKI, digital signature legislation.
Cryptography Tutorial - Part 3
IPSEC, ISAKMP, Oakley, Photuris, SKIP, ISAKMP/Oakley, SSL, non-US strong SSL, SGC, TLS, S-HTTP, SSH, DNSEC, SNMP security, email security mechanisms, PEM, the PEM CA model, PGP, PGP keys and the PGP trust model, MOSS, PGP/MIME, S/MIME and CMS, MSP
IPSEC, ISAKMP, Oakley, Photuris, SKIP, ISAKMP/Oakley, SSL, non-US strong SSL, SGC, TLS, S-HTTP, SSH, DNSEC, SNMP security, email security mechanisms, PEM, the PEM CA model, PGP, PGP keys and the PGP trust model, MOSS, PGP/MIME, S/MIME and CMS, MSP
Fail-Stop Protocols: An Approach to Designing Secure Protocols
We present a methodology to facilitate the design and analysis of secure cryptographic protocols. We advocate the general approach, and a new avenue for research, of restricting protocol designs to well-defined practices, instead of ever increasing the complexity of protocol security analysis mechanisms to deal with every newly discovered attack...
We present a methodology to facilitate the design and analysis of secure cryptographic protocols. We advocate the general approach, and a new avenue for research, of restricting protocol designs to well-defined practices, instead of ever increasing the complexity of protocol security analysis mechanisms to deal with every newly discovered attack...
Geometric Cryptography: Identification by Angle Trisection
We propose the field of "geometric cryptography", where messages and ciphertexts may be represented by geometric quantities such as angles or intervals, and where computation is performed by ruler and compass constructions.
We propose the field of "geometric cryptography", where messages and ciphertexts may be represented by geometric quantities such as angles or intervals, and where computation is performed by ruler and compass constructions.
Automatic Event-Stream Notarization Using Digital Signatures
Some digital signature algorithms (such as RSA) require messages to be padded before they are signed. Secure tokens can use these padding bits as a subliminal channel to embed auditing information in their signed messages...
Some digital signature algorithms (such as RSA) require messages to be padded before they are signed. Secure tokens can use these padding bits as a subliminal channel to embed auditing information in their signed messages...
Luby-Rackoff Backwards: Increasing Security
We argue that the invertibility of a block cipher can reduce the security of schemes that use it, and a better starting point for scheme design is the non-invertible analog of a block cipher, that is, a pseudorandom function (PRF)...
We argue that the invertibility of a block cipher can reduce the security of schemes that use it, and a better starting point for scheme design is the non-invertible analog of a block cipher, that is, a pseudorandom function (PRF)...
Encrypted Key Exchange: Protocols Secure Against Dictionary Attacks
Classical cryptographic protocols based on user-chosen keys allow an attacker to mount password-guessing attacks. We introduce a novel combination of asymmetric (public-key) and symmetric (secret-key) cryptography that allow two parties sharing a common password to exchange confidential and authenticated information over an insecure network...
Classical cryptographic protocols based on user-chosen keys allow an attacker to mount password-guessing attacks. We introduce a novel combination of asymmetric (public-key) and symmetric (secret-key) cryptography that allow two parties sharing a common password to exchange confidential and authenticated information over an insecure network...
MARS - a candidate cipher for AES
MARS is a shared-key (symmetric) block cipher, supporting 128-bit blocks and variable key size. It is designed to take advantage of the powerful operations supported in today's computers, resulting in a much improved security/performance tradeoff over existing ciphers...
MARS is a shared-key (symmetric) block cipher, supporting 128-bit blocks and variable key size. It is designed to take advantage of the powerful operations supported in today's computers, resulting in a much improved security/performance tradeoff over existing ciphers...
On the Construction of Variable-Input-Length Ciphers
Whereas a block cipher enciphers messages of some one particular length (the blocklength), a variable-input-length cipher takes messages of varying (and preferably arbitrary) lengths. Still, the length of the ciphertext must equal the length of the plaintext. This paper introduces the problem of constructing such objects, and provides a practical solution...
Whereas a block cipher enciphers messages of some one particular length (the blocklength), a variable-input-length cipher takes messages of varying (and preferably arbitrary) lengths. Still, the length of the ciphertext must equal the length of the plaintext. This paper introduces the problem of constructing such objects, and provides a practical solution...
Key Length and Security
Despite what everyone else tries to tell you, cryptographic key length has almost nothing to do with security. A short key means bad security, but a long key does not mean good security.
Despite what everyone else tries to tell you, cryptographic key length has almost nothing to do with security. A short key means bad security, but a long key does not mean good security.
EPIC- Cryptography Tools
This site on the Electronic Privacy Information Center's web site provides links to tools and applications you can use to protect your privacy. It is divided into different types- email, web surfing, disk-erasing, etc.
This site on the Electronic Privacy Information Center's web site provides links to tools and applications you can use to protect your privacy. It is divided into different types- email, web surfing, disk-erasing, etc.
CIO.com- Security and Privacy Research Center
This area of the CIO.com web site contains a plethora of articles and links to information on encryption, cryptography and many other aspects of information security.
This area of the CIO.com web site contains a plethora of articles and links to information on encryption, cryptography and many other aspects of information security.
Crypto.com- Matt Blaze's cryptography resources on the web
Matt Blaze is a respected authority on cryptography and encryption. This site contains a tremendous amount of information about both physical and electronic cryptography.
Matt Blaze is a respected authority on cryptography and encryption. This site contains a tremendous amount of information about both physical and electronic cryptography.
EPIC- Cryptography Policy
This site contains archives of articles on cryptography policy. There are links to a number of articles regarding attempts to legislate cryptography in the U.S. Congress.
This site contains archives of articles on cryptography policy. There are links to a number of articles regarding attempts to legislate cryptography in the U.S. Congress.