KeyChest is being integrated with Let’s Encrypt more tightly, it now has its first integration hook for Certbot. It registers domains using self-registered API keys and creates dormant accounts for you simply to confirm.
Continue reading Certbot and KeyChest APIAll posts by Dan Cvrcek
Intruder – Automated Pen Testing for SMEs
I met Chris Wallis last week for a cuppa and to talk shop as we both have been doing start-ups for a while. He’s ahead of me and it’s incredible he pulled it off.
Continue reading Intruder – Automated Pen Testing for SMEsDash cashless – design and operation (HTTPS)
I recently attended a workshop about app/web product design. The presenter asked us to think of a well and badly designed app. Dash sprang to my mind as an example of the latter. While its design is an ongoing issue, it happened at least once that its server certificate expired and users couldn’t do payments.
Continue reading Dash cashless – design and operation (HTTPS)KeyChest – Getting Rid of Broken Padlocks
We all have seen it – I go to visit an interesting blog, DEFCON website, or pay for your parking on the go. But I can’t – the website or web service has an expired certificate and the “damn security wouldn’t let me do it”.
Encryption and Databases Are Actually Similar
We have been building encryption service for a while. I grew up in the world of encryption and many things just came with experience, without being spelled out. Here’s another why I believe in “hardware encryption”.
Continue reading Encryption and Databases Are Actually Similar
JSignPdf Now Supports Remote Signing
A great news – our CloudFoxy is now supported by JSignPdf 1.6.4. You can now sign PDF with eIDAS compliant smart-cards (or OpenPGP dongles) – zero drivers or configuration on user computers.
Growth Of HTTPS Public Logs (CT)
As we have a database of all the issued public certificates, we started looking at some of the data. This is a quick note about the frequency of updates of certificate transparency (CT) logs.
Real-Time Certificate Info – 5,560,000,000 KeyChest Index
We have finally completed a GLOBAL certificate look-up table for real-time notifications in our re-designed KeyChest service. KeyChest has been using an external service to check for new certificates. This has become unsustainable due to the number of users and certificates we monitor.
Continue reading Real-Time Certificate Info – 5,560,000,000 KeyChest Index
Multiparty Encryption – Our Talk at DefCon 25 – August 2017
I just found a video of our presentation at DefCon last year, which I haven’t watched since. The talk included a live demonstration connecting to a bank of smart-cards in Cambridge, UK. Organizers warned us not to do it as the network was pretty locked-down and a lot of …. interesting traffic was flowing around.
Continue reading Multiparty Encryption – Our Talk at DefCon 25 – August 2017
PDF Signing With CloudFoxy And Smartcards – Production Notes
We have handed over the first deployment of our CloudFoxy (smart cards over RESTful API) for PDF signing and it is now in live use. Here are a few observations of mine about dependencies, performance, and delivery.
Continue reading PDF Signing With CloudFoxy And Smartcards – Production Notes