We decided for OpenVPN to build secure connections to our Private Spaces. We braced for difficulties, but that was only the beginning. The point of this post is that integration testing does make a difference. And that OpenVPN is a very nice tool!
Continue reading Think OpenVPN is easy? Think again as it’s worth it
The Gateway is our first Private Space – like a VPN (if you know it), but for sharing and co-operation. We have been building Private Spaces for the last three months – a one-click secure cloud space for companies, teams, or home users.
Brainstorming session: what is key management really useful for? VPN.!?! Whatever is VPN for? Well, it could create a “private space”. A space where we could share documents, put private messaging server, or just make it a gateway to an existing office network or even the internet.
Continue reading Private Cloud Space and Gateway in A Few Minutes – OpenVPN on AWS
I love cryptography. It’s an abstract science, where I can define a problem, come up with a solution and prove it (eventually). I also like applying cryptography as it involves real world (users, limitations of computers, …), which messes everything up and turns pure mathematics into a fun game. Continue reading Transaction Security with Slow Clock and Counter – How to Conjure Up Entropy
Many companies drive their computer systems without wearing seatbelts, even though they know and constantly witness they risk being injured by cyber crashes. There are simple economic reasons for this. It is not the unavailability of cyber “seat belts”, but the difficulty of putting them in. Enigma Bridge technology gives customers self-driving cyber-security for safe navigation through the cyberspace and protection of its payload.
Continue reading Self-driving Cyber Security – Step 1: Professional PKI
We introduce an integration plugin for Let’s Encrypt. It provides integration for a variety of mechanisms that enable and simplify verification of domain control and certificate installation. We already tested it with Dehydrated (former letsencrypt.py) . It supports all existing verification methods: DNS, HTTP and TLS-SNI, in their current versions “01”.
Continue reading How Certbot and Letsencrypt Work (DNS and SNI-TLS automation)
We have extended the original research and can now use information from public keys (HTTPS, TLS, SSH, SSL) to audit cyber security management and compliance with internal standards.
Continue reading Your HTTPS Certificate Shows Where Its Key Comes From
The growth of Let’s Encrypt is phenomenal – 7 million certificates in last four months. The remaining hurdle for automation is verification of domain ownership. Well, actually it is NOT true. We were doing syntax testing – hoping to get the right kind of verification error … only to discover we have been successfully verified without providing any information.
Continue reading Letsencrypt’s Vulnerability Or Feature – Eternal Account Key
The main reason we want to use cloud technologies is because they simplify cost management and allow us spend only as much as we need at any given time. The question is how secure it is and what risks are acceptable.
Continue reading Why Enigma Bridge is the best option available for cloud security
This post is about a research done by one of our co-founders. Petr showed that it is possible to find which tool or hardware device generated RSA keys from just a few public keys. I’m thinking it’s an attack, unexpected data leakage channel, but also an excellent source for audit-related analytics.
Continue reading Re: Investigating the Origins of RSA Public Keys