In this article we look at the role of random number generators (RNGs) and put them into a procedural context with hardware security modules (HSMs) and key management systems (KMSs).

In Part 1 of our article, we briefly summarised the challenges faced in the uptake of eIDAS services for SMEs. A recent study conducted for the European Commission found that awareness and lack of resources were the main barriers. Efforts to highlight the benefits of eIDAS services through real-life case studies was also found to be lacking. In order to address these barriers to adoption, certain recommendations were made which are summarised below.

SMEs continue to be a key focus area for the European agencies to fuel growth and enhance economic freedom for its citizens. Various policy tools and initiatives have been designed with an aim to level the playing field and make it easier for SMEs to compete with the big conglomerates using their limited resources. These tools may be termed as force multipliers and they are made possible through a combination of policy decisions and technological advancements.

The use of both symmetric and asymmetric cryptography & keys are part of a well-rounded solution for securing digital transactions. Each approach to protecting data has its benefits, especially when applied to the appropriate scenarios. Here we look at the reasons for using each cryptographic method.

The phrase “…Software is eating the world.” was famously used by Marc Andreessen in a WSJ article in 2011. It is now 2019 and one could argue that software has successfully eaten the world.

The world is slowly but surely moving away from its centuries-old obsession with paper. With the very real threat of man-made climate change, it is a welcome sign that the world is moving towards electronic means for recording and communicating information which is reducing the pressure on our forests. In addition to the trees saved, this also reduces the carbon impact of having to physically ship those documents around – usually via the least carbon-efficient modes like airplanes.

When it comes to digital certificates and signatures, the most obvious applications that pop into our heads are surrounding financial transactions or other such services where formal and legally binding contracts have to be signed. However, the benefits that qualified electronic signatures/ seals provide under EU law are not at all restricted to only such digital service providers. Today, we explore a significantly different environment, but one that faces the same challenges regarding security and trust.

The broader financial services industry – including banks, credit card companies, FinTech service providers, tech companies offering digital wallets etc – are today at the frontlines in the fight against cybercrime. Because these companies are involved in moving large sums of money around each day, they become obvious targets for criminal elements.

In this final article in a 3-part series on symmetric key encryption technology, we look at the use of encryption modes with symmetric block ciphers, including the need for padding and initialization vectors.