/Logo%202023.svg "Logo 2023"){kind=small}
/Group.svg "Group"){kind=small}
3 min read
BYOK: a Solution for EBA’s New ICT and Security Risk Management Guidelines
The European Banking Authority's (EBA’s) new ICT and Security Risk Management Guidelines provide guidance for cybersecurity requirements for...
5 min read
W3C's suggestion for a Web Cryptography API
The World Wide Web Consortium or W3C as it is commonly known was founded in 1994 by the original architect of the World Wide Web, Tim Berners-Lee. It...
2 min read
PCI Key Block Implementation: Migration Phases & Key Management
In June 2019, the PCI Security Standards Council issued an information supplement titled PCI PIN Security Requirement 18-3 – Key Blocks, which...
3 min read
SHA-1 is Practical and Cost-Effective to Crack Now
This article discusses recent warnings that a chosen-prefix collision attack on SHA-1 is now practical and cost-effective for attackers.
6 min read
Summary of cryptographic algorithms - according to NIST
A system's cryptographic protection against attacks and malicious penetration is determined by two factors: (1) the strength of the keys and the...
5 min read
Key Types and Crypto-Periods: NIST Key Management Recommendations
This article introduces and classifies cryptographic key types and crypto-periods as suggested by NIST, based on proven best practices for key...
7 min read
Compliant eID Verification & Onboarding for Financial Institutions
This article discusses the benefits eIDs provide for both banks and customers in streamlining cross-border transactions and what is required under...
4 min read
What is Banking-Grade Tokenization According to PCI DSS
The concept of a token has been used in the digital world for almost 50 years to separate and protect real data elements from exposure. In recent...
3 min read
PAdES and Long Term archival (LTA)
Under the eIDAS Regulation, specifications for formatting advanced electronic signatures for PDF documents are set under PAdES. PAdES is the...