PowerPoint プレゼンテーション
PKI DAY 2014 IETFã§ã®TLS関連ã®æ¨™æº–åŒ–å‹•å‘ SATORU KANNO MARCH 13, 2014 IETF88th Technical Plenary PKI Day 2014 1 Copyright(c) 2014 NTT Software Corporation. All rights reserved. 自己紹介 2 • åå‰ ïƒ˜ è…野 哲(ã‹ã‚“ã® ã•ã¨ã‚‹ï¼‰ • 所属  NTTソフトウェア æ ªå¼ä¼šç¤¾ • ãã®ä»–ã®æ‰€å±ž  IPA(éžå¸¸å‹¤ç ”究員)  ISOC Japan Chapter(Program Committee)  MIT-KIT Japan Chapter(窓å£ï¼Ÿï¼‰ • 主ãªæ´»å‹•  æš—å·æŠ€è¡“ã«é–¢ä¿‚ã™ã‚‹è‰²ã€…ãªãŠä»•äº‹ã«å¾“事(標準化〜 開発)  Camellia標準化&OSSãªã© PKI Day 2014 Copyright(c) 2014 NTT
Exclusive: Emails reveal close Google relationship with NSA
National Security Agency head and Internet giant’s executives have coordinated through high-level policy discussions Email exchanges between National Security Agency Director Gen. Keith Alexander and Google executives Sergey Brin and Eric Schmidt suggest a far cozier working relationship between some tech firms and the U.S. government than was implied by Silicon Valley brass after last year’s reve
Google, mixiãªã©ãŒå¯¾å¿œã—ã¦ã„ã‚‹2-legged OAuthã®ç·´ç¿’å•é¡Œã§ãƒãƒžã‚Šã¤ã¤ã€Perlã®OAuth::LiteãŒã„ã‘ã¦ã‚‹ã“ã¨ã‚’確èªã—㟠- ã¤ã‚Œã¥ã‚Œæ—¥è¨˜
Google, mixiãªã©ãŒå¯¾å¿œã—ã¦ã„ã‚‹2-legged OAuthã® ç·´ç¿’å•é¡Œã§ãƒãƒžã‚Šã¤ã¤ã€Perlã®OAuth::LiteãŒã„ã‘ã¦ã‚‹ã“ã¨ã‚’確èªã—ãŸã€‚ Google Developers Conferenceå‚åŠ ç”³ã—è¾¼ã¿ã§ 出題ã•ã‚ŒãŸå•é¡Œã€‚OAuthã®å…¬é–‹éµã‚’使ã£ãŸ3-leggedèªè¨¼ã§ã¯ãªãã€å…±æœ‰éµã‚’使ã£ã¦éµã¤ãダイジェストèªè¨¼ã‚’ã™ã‚‹ã€è‘—者ä¸åœ¨ã® 2-legged(足)ãªèªè¨¼ã‚’ã™ã‚‹ã€‚devquizã¨ã„ã†æ¯”較的簡å˜ãªå•é¡Œ ãªã®ã ã‘ã‚Œã©ã‚‚ã€ã„ã¾ã¾ã§ä½¿ã£ãŸã“ã¨ãŒãªã„ã®ã§ç·´ç¿’ã®ã¤ã‚‚ã‚Šã§ã‚„ã£ã¦ã¿ãŸã€‚自分ã§Google Apps premierを使ã£ã¦ã„ã‚Œã°ã€åˆ©ç”¨ã—ãŸã‹ã‚‚ã—ã‚Œãªã„ãŒã€ãã†ã§ã‚‚ãªã„ã—。3-legged OAuthを見ã¦ã€ã‚ーã‚ã‚“ã©ã€ã¨æ€ã£ã¦ 敬é ã—ã¦ã„ãŸã®ã‚‚ã‚る。 自分ã®ç†è§£ã®ãŸã‚ã«ã€æ‰‹ã§seed作æˆã¨HMAC-SHA1ダイジェスト作æˆã‚’ コーディングã—ã¦ã„ãŸãŒã€ã©ã†ã‚‚ã†ã¾ãã„ã‹ãª
GMail ã§S/MIMEを使ã†ãŸã‚ã®FireFoxæ‹¡å¼µã®ä½¿ã„æ–¹ - ã¤ã‚Œã¥ã‚Œæ—¥è¨˜
GMail ã§S/MIMEを使ã†ãŸã‚ã®FireFox æ‹¡å¼µã®ä½¿ã„方。 ã©ã†ã„ã†è¡¨ç¤ºã«ãªã‚‹ã‹æ›¸ã„ã¦ã„ãªã„説明書 ã¨ã„ã†ã®ã¯ç¢ºèªã—ãšã‚‰ã„ã€ã¨ã„ã†ã“ã¨ã‚’å†ä½“験ã—ãŸã€‚ ã‚„ã£ã¦ã¿ã¦ã‚ã‹ã£ãŸã“ã¨: Comodoã®ãƒ¡ãƒ¼ãƒ«ç”¨è¨¼æ˜Žæ›¸ã®ç§˜å¯†éµã«ã¯ãƒ‘スワードãŒãªã„ Gmail S/MIME FireFox Add-onã¯ç§˜å¯†éµã«ãƒ‘スワードã¯ã‹ã‹ã£ã¦ã„ãªã„ã®ã« 秘密éµã‚’解èªã™ã‚‹ãŸã‚ã®ãƒ‘スワード入力を求ã‚ã¦ãる。空欄ã®ã¾ã¾ OK を押ã›ã°ã‚ˆã„。Gmail S/MIME FireFox Add-onã¯ã€SMTP用ã®ãƒ‘スワードをèžã„ã¦ãã‚‹ Gmailアカウントã®ãƒ‘スワードを入力ã™ã‚Œã°ã‚ˆã„。 Gmailã‹ã‚‰é€ä¿¡ã—ãŸS/MIMEç½²åã¤ãメールをBeckyã§å—ä¿¡ã—ãŸã‚ã¨ã€S/MIMEã§æ¤œè¨¼ã™ã‚‹ã¨ã€è‡ªå‹•çš„ã«è¨¼æ˜Žæ›¸ãŒWindows㮠証明書リãƒã‚¸ãƒˆãƒªã«ã‚¤ãƒ³ãƒãƒ¼ãƒˆã•ã‚Œã‚‹ã€‚ã¾ãŸã€Becky上ã§ã€Œæ¤œè¨¼ã§ããŸã€ã¨è¡¨ç¤ºã•ã‚Œã‚‹ã€‚ Becky
Protecting data for the long term with forward secrecy
The latest news and insights from Google on security and safety on the Internet LogicMagic said... Are you planning on moving to TLS 1.1 or TLS 1.2? Are you planning on using an RC4 cipher that drops some packets to reduce the risk that the key can be recovered? Thank you for adding fast security which is transparent to users. November 22, 2011 at 3:22 PM agl said... TLS 1.1 and 1.2 support is a n
OpenSSH sshd – memory leak | Hacker News
This is garbage. Probably the same guys behind this other one recently (http://pastebin.com/qPxR9BRv).One of the members of the full disclosure mailing list outed these guys here: http://seclists.org/fulldisclosure/2014/Apr/292 Only this time - they got smart: > Please note that we are busy and we will NOT answer to questions, social engineering tentatives or dumb comments. AKA > Please note that
TLS 1.3ã®æ¨™æº–化動å‘ãŒãŠã‚‚ã—ã‚ã„ - ã¤ã‚Œã¥ã‚Œæ—¥è¨˜
TLS 1.3ã®æ¨™æº–化動å‘ãŒãŠã‚‚ã—ã‚ã„。 先日èžã„ãŸã€ãƒ†ãƒ¬ãƒ“CMã®å›½éš›ã‚³ãƒ³ã‚¯ãƒ¼ãƒ«ã®ã‚³ãƒ¡ãƒ‡ã‚£æ˜ ç”»ã«ã¨ã¦ã‚‚ä¼¼ã¦ã„ã‚‹æ„Ÿã˜ã€‚「Dance with TLSã€ã¨ã„ã†ã“ã¨ã§ã€ã“ã‚“ãªæ„Ÿã˜: ã‚ã‚‹ã¨ãã€ã‚¹ãƒžãƒ›ã®WebブラウザãŒãŠã‹ã—ãªã“ã¨ã‚’言ã£ã¦ããŸè¨¼æ˜Žæ›¸ãŒæ¤œè¨¼ã•ã‚Œã¦ãŠã‚‰ãšã€ãƒ‰ãƒ©ã‚¤ãƒ–ãƒã‚¤ãƒ€ã‚¦ãƒ³ãƒãƒ¼ãƒ‰ã®é¤Œé£Ÿã«ãªã£ãŸ(音楽ã€ã‚ªãƒ¼ãƒ—ニング)ãã®ã“ã‚ã€æ—¥æœ¬ã®æŸä¼æ¥ã§ã¯è‡ªç¤¾ã®æš—å·æ–¹å¼ã‚’æ™®åŠã•ã›ã‚‹ãŸã‚é ã‚’ã²ãã£ã¦ã„ãŸã€Œãã†ã ã€è¶…メジャーãªå›½éš›æ¨™æº–ã«å…¥ã‚Œã¡ã‚ƒãŠã†ã€ã€ŒãŠã¾ãˆã¡ã‚‡ã£ã¨è¡Œã£ã¦ã“ã„ã€ã¨æŒ‡ç¤ºã•ã‚ŒãŸæ–°äººå›½éš›ä¼šè°å ´ã§ã¯ã‚¢ãƒ„ã„ãƒãƒˆãƒ«ãŒç¹°ã‚Šåºƒã’られã¦ã„ãŸã€‚「オレãŒæ¨™æº–ã ã€ã€Œã„ã‚„ã€ä½•ãŒä½•ã§ã‚‚ストリーム暗å·ã ã€ã€Œã‚‚ã£ã¨çŸãã¦ã„ã„ã‚“ã ã‘ã©ã€ã€Œä½•ã‚’ã‚„ã£ã¦ã‚‹ã€ã ã¾ã‚Œã€å¥½ãå‹æ‰‹è¡Œã£ã¦ã„ã‚‹å‚åŠ è€…ã¨ã€ã©ã†ã„ã†ã‚ã‘ã‹å¹…を利ã‹ã›ã‚‹ãƒŠã‚¾ã®äººç‰©ãã®ã“ã‚ã€æ–°äººã¯ã‚る女性ã«ä¼šã£ã¦ã„ãŸã€‚ä¼èª¬ã®ã 円曲線暗å·ã®é–‹ç™ºè€…「ã„ã„? ã‚°ãƒãƒ¼ãƒãƒ«æ¨™æº–ã¯æŠ€è¡“ã®è‰¯ã—悪
Apple preps a smaller ipad - The Inquirer
Our news mission • Every day, we bring you the most important technology product news, written by our team of experts. Find out more about our writers • We’ll always try to put stories in context, find the extra details that other sites don’t, and explain what they mean for you. • In this section, you’ll find product news, deals, rumours and features. Email us and tell us what you think. Key categ
ランã‚ング
ランã‚ング
障害
リリースã€éšœå®³æƒ…å ±ãªã©ã®ã‚µãƒ¼ãƒ“スã®ãŠçŸ¥ã‚‰ã›
最新ã®äººæ°—エントリーã®é…ä¿¡
j次ã®ãƒ–ックマーク
kå‰ã®ãƒ–ックマーク
lã‚ã¨ã§èªã‚€
eコメント一覧を開ã
oページを開ã
ISOC-JP_IETF87_SEC_KannoRev4.pptx
JVN#10603428: Android 版アプリ「JRæ±æ—¥æœ¬ã‚¢ãƒ—リã€ã«ãŠã‘ã‚‹ SSL サーãƒè¨¼æ˜Žæ›¸ã®æ¤œè¨¼ä¸å‚™ã®è„†å¼±æ€§
Facebook – Fran's Computer Services' Blog
æ–°ã—ã„ストリーム暗å·ã®Salsa20ã®æŽ¡ç”¨ä¾‹ã¨ã€ChaChaã®æŽ¡ç”¨ä¾‹ãŒæ¿ƒã„ - ã¤ã‚Œã¥ã‚Œæ—¥è¨˜
Yahoo Mail shifts to SSL by default, but lacks perfect forward secrecy
Well done for flicking always-on crypto switch, Yahoo! Now here's what you SHOULD have done • The Register
https://www.ietf.org/proceedings/88/slides/slides-88-tls-4.pdf
SSL – IETF drops RSA key from TLS 1.3
Remove rsa by ekr · Pull Request #37 · tlswg/tls13-spec
TLS 1.3 Draft Prepares to Drop Static RSA Key Exchange - Slashdot
{{#tags}}- {{label}}
{{/tags}}