Matt Sicker
Matt Sicker
Consider the design of Themis: https://docs.cossacklabs.com/themis/crypto-theory/cryptosystems/secure-message/ And consider the NaCl and libsodium API, the [box](https://doc.libsodium.org/public-key_cryptography/authenticated_encryption) APIs for authenticated public-key encryption, and the [sealed box](https://doc.libsodium.org/public-key_cryptography/sealed_boxes) APIs for anonymous public-key encryption. Create...
Consider the design of Themis: https://docs.cossacklabs.com/themis/crypto-theory/cryptosystems/secure-cell/ Similarly, in NaCl and libsodium, this concept is exposed as a [secretbox](https://doc.libsodium.org/secret-key_cryptography/secretbox) API for authenticated encryption, and the [secretstream](https://doc.libsodium.org/secret-key_cryptography/secretstream) API is used as a...
After working out some proof of concept code to try out https://github.com/mit-plv/fiat-crypto for elliptic curve stuff, it turns out to be fairly straightforward to build and include native variants of...
This SPI should the Argon2 (i or id; d is not too relevant here) key derivation function as standardized in [PHC](https://www.password-hashing.net/). There are some Java bindings on the main Argon2...
As noted in [this blog post](https://cryptosense.com/blog/mighty-aphrodite-dark-secrets-of-the-java-keystore/), it seems as though most of the built-in `KeyStore` providers are insecure. Using #7, a more secure implementation for `KeyStore` can be made. Alternatively,...