Jurjen N.E. BosI describe a “Cloud Secure Module”, a software alternative to cloud HSMs that solves some of the security problems associated with HSMs in the cloud.
Read more Details
Ibrahim GharbiBasically for most frontend developers, OAuth integration means adding a third party authentication library to your application. But for some cases, having an OAuth proxy is a good solution to integrate your applications with a third party identity provider.
Read more Details
Kalpana Singh PhDHybridation consists of combining two (or more) cryptographic schemes, the combination should be secure in the classical/quantum computation model as long as one underlying scheme is secure in that model. We refer to our blog Migration towards Quantum-Safe payments for more details on simple Hybridation.
Read more Details
Hanae Rateau, PhD
Kalpana Singh PhDWith the eIDAS 2.0 regulation enactment, European citizens will be able to use a Digital Wallet to manage their own digital identity documents, or credentials. These credentials will contain attributes about their holder such as, date of birth, address, etc. The regulation stipulates that the use of the digital wallet and the credentials it contains should ensure the privacy of their users. The privacy-preserving credentials, also called anonymous credentials, will allow their holder to prove attribute values to verifying parties such as government entities or other private services without revealing non-relevant attributes. However, the current regulation does not provide a way to avoid user profiling. Meaning that if users present the same credential multiple times, a profile of the users can be made by the verifying entities which poses a privacy issue for the future. This problem arises because of the regulation recommends a cryptographic solution (i.e., SD-JWT)) that does not achieve this feature. Another cryptographic solution enables this property, namely BBS+ signature scheme.
Read more Details
Kalpana Singh PhDToday’s payment systems are heavily dependent on traditional cryptographic security protocols such as RSA 2048 (asymmetric) and AES 256 (symmetric) to secure data and communications. The NIST also recommends [1] RSA 2048 key size is the most used in the industry such as EMV 3DS specification recommends such key size [2] or above. The usefulness of the asymmetric cryptographic primitives RSA, Elliptic curve based, and symmetric cryptographic primitive AES are huge in payments, refer to our previous blog post to find in detail, you can find a description of where these RSA, Eliptic curve or AES cryptographic primitives are used for payments and how the asymmetric ones (RSA, EC) are absolutely threatened by quantum computers. And even if quantum computing does not pose a fatal threat to symmetric cryptography such as AES, you need to double the key length to guarantee the same level of security against a quantum computer attack.
Read more Details
Kalpana Singh PhDModern cryptography has been used to enable secure communications between individuals or servers, even if these entities do not share any pre-established secret. The cryptographic primitives allow kickstarting a secure channel primarily to deliver two main functionalities: protected channel establishment (known as key establishment) and authentication of digital information/parties (by the use of digital signatures). Once the channel is established, it can use other cryptographic primitives to secure communications over the Internet, provide the root of trust for secure transactions in the digital economy, and keep data private by encrypting it.
Read more Details