Category Archives: Cryptography

LUKS: Plausible deniability on crypto containers

Since several years, we have faced a “transparency campaign” on cryptography. That means that the cipher announces itself as an “encrypted container”. This suppose a serious risk by exposing you to a rubber-hose attack.

LUKS (Linux Unified Key Setup) which is used by common Linux distributions is not the exception. But there is a hope to provide some kind of privacy.

Continue reading LUKS: Plausible deniability on crypto containers

Android OpenVPN CLI flasheable Installer

I developed an openvpn flasheable installer package for android. This OpenVPN,  unlike others in the play store, have the capability to run entirely from a command line based interface. This option was included on CM10.2 but they have dropped it on CM11. Now you can use it again:

Alice and bob are no longer online

In the past few years Diffie-Hellman has become unsupported in the main internet websites, do you know the implications?

But this is not the only thing happening, many reputable websites, including banks, social networks and search engines have chosen to continue to support for TLSv1.0 and SSLv2 “for compatibility reasons”

Continue reading Alice and bob are no longer online

Speeding up or Securing up the Encrypted Root Filesystem on Fedora 10

Fedora, and some others Linux distributions doesn’t provide you any simple way to setup the cypher properties on root filesystem.

Here, we will provide you enough information about the cypher process on fedora and one technique to speed up and/or secure up the cypher using XTS instead CBC-ESSIV
Continue reading Speeding up or Securing up the Encrypted Root Filesystem on Fedora 10