HTTPS Encryption and Attacks on Authentication in Remote Banking Services - a Russian Perspective

Read the Russian Version Шифрование HTTPS

This article discusses the secure HTTPS Protocol intended for web-resources and its principles of operation as well as its strengths and weaknesses. It explains how attacks on HTTPS may lead to traffic being decrypted, particularly in systems for remote banking services and personal logins to web-resources.

Read more

Is non-repudiation really non-repudiable with digital signatures?

Non-repudiation is a legal concept that is widely used in information security. It refers to any service, which provides proof of the origin of data and the integrity of the data. In other words, non-repudiation makes it very difficult to successfully deny who/where a message came from as well as the authenticity of that message.

Read more

W3C's suggestion for a Web Cryptography API

The World Wide Web Consortium or W3C as it is commonly known was founded in 1994 by the original architect of the World Wide Web, Tim Berners-Lee. It is a consortium of international companies that are involved with the Web and the Internet.

Read more

The future of eIDAS in Britain

Markets hate uncertainty and the confusion regarding issues related to Britain’s exit from the European Union have roiled equity and currency markets. But it’s not just the financial markets which are affected- companies which rely upon EU regulations in order to conduct their day to day business are also reeling from this uncertainty.

Read more

Digital authentication - factors, mechanisms and schemes

Indiana University defines authentication as "the process of determining whether someone or something is who or what it is declared to be." Similarly, digital authentication is about having suitably secure mechanisms in place to be able to confirm whether an individual or online user is who they say they are.

Read more

US Court Rejects DocuSign E-Signatures as method to provide Digital Authorization

An interesting case rose in the state of California this year regarding a bankruptcy lawyer who utilized DocuSign for many official legal documents. 

Read more

Strong authentication for Governments through trust service providers - a European perspective

One of the greatest benefits of the digital age is the availability of being able to perform many different government processes online in a shorter amount of time versus having to depend upon the postal service or taking time out of a busy day to go stand in a line at a government office.

Read more

How eIDAS affects the USA

On July 1st 2016, eIDAS was introduced in the EU to replace the almost 20 year old European Signatures Directive. The directive was originally built with the intent to encourage the adoption of electronic signatures, and provide a legal framework by which member states could implement for consistency.

Read more

Understanding non-repudiation of origin and non-repudiation of emission

This article sheds light on the two approaches to achieve non-repudiation of an electronic message: non-repudiation of emission and non-repudiation of origin.

Read more