Basic Encryption Failure Defect #1: Obscurity

“Impossible!” the man exclaimed, “I designed that encryption myself!  No one can break it as fast as you claim!” I am John Tränkenschuh, a CISSP-ISSAP with 24 years experience in Information Security. 

Read more

A summary of the revised NIST standards for Key Management

Cryptography is the foundation of protecting electronic data and cyber security. Encryption can effectively prevent breaches while also protecting both consumer privacy and sensitive data.

Read more

PAdES and Long Term archival (LTA)

Under the eIDAs Regulation, specifications for formatting advanced electronic signatures for PDF documents are set under PAdES. PAdES is the electronic signature design for PDF Advanced Electronic Signatures.

Read more

Implementing Digital Authentication in accordance with the new NIST guidelines (SP 800-63-3)

In 2016, the National Institute of Standards and Technology (NIST) (run by the US Department of Commerce) announced they were producing a new publication which would overhaul their previous guidance for digital authentication – which was released on August 30th.

Read more

Generating Cryptographic Keys: Will Your Random Number Generators (PRNGs) Do The Job?

Conversations about cryptography are common place in the cyber-security world.  One can find security professionals discussing everything from PKI to issues with RSA. 

Read more

UBS launches qualified electronic signatures

The ZertES legislation (Swiss digital signature law) was placed into effect in Switzerland on December 19, 2003. The purpose of this legislation was to regulate the manner for which trust service providers could use certification services with electronic signatures.

Read more

The future of eIDAS in Britain

Markets hate uncertainty and the confusion regarding issues related to Britain’s exit from the European Union have roiled equity and currency markets. But it’s not just the financial markets which are affected- companies which rely upon EU regulations in order to conduct their day to day business are also reeling from this uncertainty.

Read more

Enabling legally binding e-signatures on mobile devices

The ever-growing number of applications and uses for mobile devices has long been a hot topic. Using mobiles to electronically sign transactions and documents is one such use case, and many organisations have been looking for mobile e-signature solutions, which could hold legal ground in court. 

Read more

eIDAS and PSD2 – A perfect symphony in the digital marketplace?

The European Union is leading the way in the move towards the creation of a single digital market. The many advantages that a digital business has over it’s more traditional counterparts are only amplified when such businesses are allowed to operate seamlessly across multiple markets.

Read more