Jacob Kaplan-Moss: crypto

Bookmarks

Timing-independent array comparison « root labs rdist

An overview of some of the techniques that *don't* prevent or mitagate timing attacks.

(crypto, cryptography, programming, security, timingvulnerability)

A Lesson In Timing Attacks (or, Don't use MessageDigest.isEquals) | codahale.com

A very good, simple, overview of how timing attacks work. Also covers the “how realistic is an exploit” question well. (Answer: very.)

(authentication, crypto, security, timingvulnerability)

GPG Quick Start

Very simple, plain-English “getting started with GPG” guide.

(crypto, gpg, howto, pgp, privacy, quickstart, security, tutorials)

Copyright Jacob Kaplan-Moss.
Some rights reserved.