No, not exactly. The SHA-1 hashing algorithm still does what it is supposed to do. SHA-1 creates an unpredictable 20 byte “fingerprint” of the data input into the function, in this case a web server certificate. It is the unpredictability of the output that makes cryptographic hash functions so useful. … Continue reading
Yes, it is possible in theory to forge the Web Server Certificate that is used in SSL/TLS communication. This is because the certificate is signed by a certificate authority that your browser trusts using a cryptographic hashing algorithm of a specific length. The hashing algorithms that have been used to… Continue reading
#SEC488 prepares students to confidently use the services of any of the leading CSPs and deploy a complete "infrastructure as code" environment to multiple cloud providers
Learn more: https://youtu.be/ndp8H2ENKV0
Take it with @KennethGHartman at #SANSCDI: http://www.sans.org/u/18jA
BYOK vs HYOK - Came across a great deck from RSA2017 that explains it clear & concise by
@solcates from Thales
https://published-prd.lanyonevents.com/published/rsaus17/sessionsFiles/4579/CSV-F03-BYOK-Leveraging-Cloud-Encryption-Without-Compromising-Control.pdf
Still using SMS 2FA? https://www.zdnet.com/google-amp/article/microsoft-urges-users-to-stop-using-phone-based-multi-factor-authentication/
