Show more
Dennis boosted

Auf Betreiben von #FinTech und @GCHQ@twitter.com hat @ETSI_STANDARDS@twitter.com versucht, in die Transportverschlüsselung TLS 1.3 eine Hintertür einzubauen. Als das nicht gelang, machte #ETSI daraus einen eigenen Standard: #ETS. Das ist der #BBA19-Jury 1 #BigBrotherAward wert.

bigbrotherawards.de/2019/techn

Dennis boosted

Vermutlich war es nur eine Frage der Zeit...

(Gleichzeitig schöne Werbung für Mozilla's deepvoice. Hat das schonmal jemand mit openhab kombiniert?)

Amazons "Alexa" als Zeugin?. Staat will "Smart Home"-Daten abgreifen.

n-tv.de/politik/Staat-will-Sma

Dennis boosted

Mit der Beschneidung der Chrome-API für Werbeblocker nutzt Google seine quasi Monopolstellung auf dem Browser-Markt aus. Die Antwort kann nur sein: Weg von Chrome und weg von Google. Deren Produkte existieren nur, um die Nutzer zu melken.

Tschüss Datenkrake: kuketz-blog.de/tschuess-datenk

Don't forget to vote today!

Wählen gehen heute nicht vergessen!

🇪🇺

Dennis boosted
Dennis boosted

The greatest trick the devil ever pulled is how JavaScript got 100x more complex from 2009 to 2019 and yet web apps look exactly the same, except that they’re often slower now.

Dennis boosted

Follow-up on tool that extracts GPG secret keys of Nitrokey Start tokens:

github.com/Nitrokey/nitrokey-s

github.com/Nitrokey/nitrokey-s

– obviously, the Nitrokey Start wasn't protected
– owners should update their firmware to release RTM.7 or above

Original toot: mastodon.at/@infosechandbook/1

#gpg #nitrokey #infosec #cybersecurity #security

Well researched New York Times article on how the food we eat impacts climate change and what are the better options.

nytimes.com/interactive/2019/0

Dennis boosted

It does prove the usefulness of #federation that through all the #Matrix outage, my account was not affected at all. Most of the people I chat to are on other servers than the one affected.

Federate <3

Dennis boosted
Dennis boosted
Dennis boosted

Matrix.org publishes timeline after security breach:

matrix.org/blog/2019/04/11/sec

– the attacker exploited vulnerabilities in Jenkins
– the attacker had full database access, including access to unencrypted content like private messages, passwords hashes, access tokens
– Matrix.org recommends changing your password (including NickServ password)

#matrix #breach #infosec #cybersecurity #security

Dennis boosted
Dennis boosted
Dennis boosted

Oh my goodness I've just learned a thing about The Matrix that causes it to make a lot more sense: In the original script the humans were used as neural network compute clusters by the Machines and as a crucial component of The Matrix itself.

Which is why humans who were aware of the simulation could control aspects of The Matrix - their minds were part of its foundation.

Unfortunately the test audiences had trouble understanding this concept so the studio changed the human role to "batteries".

Dennis boosted

Looks like 0-RTT in TLS1.3 comes with a quite high price: Vulnerability to replay attacks.

If you are one of the early adopter, check that your application is not affected as this is a fundamental problem on protocol level.

"What Application Developers Need To Know About TLS Early Data (0RTT)" by Paul Kehrer:

blog.trailofbits.com/2019/03/2

#TLS #TLS13 #infosec #security #HTTPS #0RTT

Dennis boosted
Dennis boosted
Dennis boosted
Show more
social.bankmann.name

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!