Showing items from Cybersecurity

CNAME - The hidden security risk in your DNS zone

• Jean-Baptiste Lanel
• 8 Min To Read
• 18 Nov, 2025
• • Cybersecurity

Domain Name System (DNS) records are fundamental to how the internet works, translating human-readable domain names into machine-readable IP addresses. Among these records, the CNAME (standing for Canonical Name) record is the most commonly used for delegating a website to a third-party provider. However, this seemingly simple delegation mechanism harbors significant security implications that are often overlooked.

Read more Details

SEPN - Secure's Electronic Payments

• Pascal Kleijer
• 4 Min To Read
• 27 Oct, 2025
• • Cybersecurity
  • Infrastructure and operations

Cashless payment security is becoming increasingly important for merchants, banks, and business partners, while the requirements are rising due to cyberattacks (DDoS or others), outages, or regulatory-compliant demands, it requires robust and well-protected networks & services.

Read more Details

Proper key management in the cloud with a Cloud Secure Module

• Jurjen N.E. Bos
• 22 Min To Read
• 04 Feb, 2025
• • Cybersecurity

I describe a “Cloud Secure Module”, a software alternative to cloud HSMs that solves some of the security problems associated with HSMs in the cloud.

Read more Details

The OAuth proxification guide for frontend developers with Microsoft EntraID

• Ibrahim Gharbi
• 11 Min To Read
• 04 Feb, 2025
• • Software engineering
  • Cybersecurity

Basically for most frontend developers, OAuth integration means adding a third party authentication library to your application. But for some cases, having an OAuth proxy is a good solution to integrate your applications with a third party identity provider.

Read more Details

Hybridation journey towards Quantum-secure solutions

• Kalpana Singh PhD
• 4 Min To Read
• 17 May, 2024
• • Cybersecurity

Hybridation consists of combining two (or more) cryptographic schemes, the combination should be secure in the classical/quantum computation model as long as one underlying scheme is secure in that model. We refer to our blog Migration towards Quantum-Safe payments for more details on simple Hybridation.

Read more Details

Privacy-preserving Solution Using BBS+ for Digital Identity and Wallet

• Hanae Rateau, PhD Kalpana Singh PhD
• 11 Min To Read
• 14 May, 2024
• • Cybersecurity

With the eIDAS 2.0 regulation enactment, European citizens will be able to use a Digital Wallet to manage their own digital identity documents, or credentials. These credentials will contain attributes about their holder such as, date of birth, address, etc. The regulation stipulates that the use of the digital wallet and the credentials it contains should ensure the privacy of their users. The privacy-preserving credentials, also called anonymous credentials, will allow their holder to prove attribute values to verifying parties such as government entities or other private services without revealing non-relevant attributes. However, the current regulation does not provide a way to avoid user profiling. Meaning that if users present the same credential multiple times, a profile of the users can be made by the verifying entities which poses a privacy issue for the future. This problem arises because of the regulation recommends a cryptographic solution (i.e., SD-JWT)) that does not achieve this feature. Another cryptographic solution enables this property, namely BBS+ signature scheme.

Read more Details

• page number 1
• page number 2
• page number 3
• page number 4
• page number 5
• navigate next page