Por Cleber Lourenço O Rio amanheceu de luto, mas há quem transforme o luto em palanque. Nas vielas da Penha e do Alemão, o cheiro de pólvora ainda se mistura ao de sangue fresco, e a extrema-direita já posa para as câmeras. A megaoperação que deixou mais de cem mortos virou espetáculo político: […]
Bonessio (EV-Alleanza Verdi Sinistra): “Bene mozione Assemblea Capitolina per definire mobilità Ardeatina/Cecchignola nel Municipio IX”
"Grazie ad un lavoro unitario nato tra le forze di maggioranza, in collaborazione con alcuni gruppi dell'opposizione, oggi in Aula abbiamo approvato un importante mozione. Si tratta di un atto di indirizzo per lo sviluppo urbanistico del quadrante compreso tra via Ardeatina, via della Cecchignola, via Tor Pagnotta e via Laurentina, la…
Vor 50 Jahren marschierte Marokko in die Westsahara ein. Durch gewaltige Investitionen versucht das Land, Fakten zu schaffen. Doch Diplomaten und Völkerrechtler warnen vor weltweiten Folgen einer Annexion. Von S. Ehlert und S. Kisters.
Cryptography and security experts the world wide wish you would stop using outdated legacy cryptography when better tools are freely available in most programming language ecosystems.
As much job security as it makes for us to clean up the same mess for 30+ years, it isn't very fun.
There is another benefit to this, but it involves nightmare magic math.
(If you follow me on Fedi, or caught my DEFCON Furs talk, you've heard about this before.)
There's this thing you can do called Threshold Cryptography. If you've ever heard of Shamir's Secret Sharing Scheme, you probably know enough to grok the math, but basically:
Instead of 1 public key mapping to 1 secret key, you map it to some set of N shards of a secret key, for which T of the N must cooperate to produce a signature. That signature is valid for the 1 public key.
This lets you do some cool stuff, like, not ever have your signing key in the same country where an authoritarian government might demand it.
EdDSA (which Ed25519 is an instance of) inherits from Schnorr, which has a nice linear structure and makes threshold signing easy. See: RFC 9591 (FROST).
ECDSA was designed to avoid the Schnorr patent, and it's a nightmare to get right.
I'm not aware of any secure open source Threshold ECDSA library. Not a single one.
Look, I work in this field and I'm not sweating them. We can plan a migration to ML-DSA or whatever much later.
For my E2EE project (for which Key Transparency is an important first step), my plan was to use a X-Wing (a hybrid of X25519 + ML-KEM) with MLS (RFC 9420), with public keys from the key transparency service.
For confidentiality considerations, early adoption of PQ makes sense for encryption. Using a hybrid KEM with a currently accepted forward-secure key exchange algorithm is fine.
But for signatures, unless you have a time machine, a quantum computer doesn't do you any good until it's built. And we have no realistic timelines for that today.
This document describes a mechanism for creating, encoding, and verifying digital signatures or message authentication codes over components of an HTTP message.
In fact, you should write unit tests that are expected to fail when either algorithm is selected to ensure you don't accidentally enable support from a dependency upgrade.
This camera has everything you need and nothing extra — all in a durable painted brass chassis with lots of lens options, including a tiny pancake lens!
Asahi Pentax MX is a compact mechanical SLR compatible with a vast array of affordable lenses. It’s small enough to fit in a pocket (with the right lens), and it’s built like a tank.
O presidente Lula sancionou, nesta quinta-feira (30), o projeto de lei que promove mudanças na legislação para endurecer o combate ao crime organizado no país. A legislação amplia a proteção de autoridades e servidores públicos envolvidos nessa área. A nova lei classifica duas novas modalidades de crime relacionadas à obstrução de investigações e ações contra o […]
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.
I'd like to thank Utah for making it crystal clear that loving Jesus is just a front and Christian cults only exist to oppress the poor and/or mobilize them for their own greedy, rapey aims. People have a hard time accepting that, so thanks for hitting the nail on the head. Hopefully no one will ever make the mistake of thinking you're anything but evil fascists again.
Déjà membre à à titre personnel, c'est désormais l'entreprise au sein de laquelle je travaille qui est désormais membre de l' @aprilorg Comme ça nous sommes en cohérence avec nos valeurs. L'April a besoin de chacun d'entre nous pour finir l'année. mastodon.social/@opensource_ex…
En pleine campagne de dons de l' @aprilorg@pouet.april.org , nous avons fait le choix d'adhérer à l'association pour la soutenir. https://www.opensource-experts.com/OSE-est-membre-de-l-APRIL.
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.
"Palermo è da sempre luogo di incontro di grandi civiltà. Il 'mare nostrum', bacino vivente di storia millenaria, ponte naturale tra i tre continenti che vi si affacciano, continua a intrecciare vissuti del passato con le sfide del presente. (ANSA)
Wall Street apre negativa. Il Dow Jones perde lo 0,29% a 47.497,22 punti, il Nasdaq cede lo 0,82% a 23.769,69 punti mentre lo S&P 500 lascia sul terreno lo 0,57% a 6.853,67 punti. (ANSA). (ANSA)
strk@floss.social threaded views exist in many ActivityPub software already, including Lemmy, Piefed, mbin, and NodeBB (though that last one is a linear view.)
Fungi make up a massive, interconnected part of Earth’s ecosystems, yet they’re vastly underrepresented in research and public consciousness compared to plants and animals. That may change in the f…
ACESPEC London sapphics! Join us Thursday 13th November to connect, mix, mingle and meet at a special Sapphic Mix and Mingle just for you outsavvy.com/event/30106/acesp…
MEET SOME CUTIES & CHECK OUT THE VAGINA MUSEUM. This month's Mingle is run in collaboration with ACESPACELDN 💚💜🤍🖤ACESPACELDN is a community group for asexual & aromantic spectrum adults based in London.
Q&A with Palantir CTO Shyam Sankar on surveillance, AI, the future of war, data, privacy, the US military, ImmigrationOS, the DHS, ICE, the UK's IDs, and more (New York Times)
🤯 Cosa succede a partire dalla scoperta di essere incinta fino al momento dell'aborto, chirurgico o farmacologico?
👉 Questo sondaggio ha lo scopo di far emergere una realtà che gli attuali sistemi di rilevamento (previsti dalla legge 194/1978) non consentono di conoscere.
Il questionario è rivolto a chi ha interrotto volontariamente una gravidanza tra il 2020 e il 2025 in Italia, entro i primi 90 giorni di gestazione. Nella compilazione usiamo il femminile, ma può rispondere ogni persona che ha affrontato un aborto volontario anche se non si identifica come ragazza o donna.
🤝🏻 L'elaborazione del sondaggio è a cura di Period Think Tank, Pro-choice RICA e Laiga 194. Questa attività è stata realizzata grazie al supporto di Semia - Fondo delle Donne
Blogging’s identity shifted in 2001 from quirky personal logs to serious commentary and war-blogging, as new platforms and RSS made real-time publishing possible.
I'm trying to remember. I don't think I had a "blog" back then, but I posted individual pages on my website where I referenced news articles and responded long form to those articles. It was basically a manually hard coded blog I guess. The first post on my current blog is back from those days. Hard to believe it's been that long though.
I am currently translating some tales featuring monkeys which were kept as pets at large ducal courts in Germany, where they entertained the residents.
Does anyone know what species of primates would have been popular at these courts?
I was unaware of such things in Germany at all until you just said that. I suppose that would depend on where the monkeys were being brought in from. Capuchins, perhaps?
Bei deutschen Fürstenhöfen speziell bin ich überfragt, aber immerhin gibt es ja ein relativ bekanntes Gemälde von Brueghel mit zwei Affen. In dem Fall sind es Halsbandmangaben, die scheint es also in der frühen Neuzeit schon in Europa in Gefangenschaft gegeben zu haben:
Barbary Macaques: (Macaca sylvanus): This is one of the most frequently cited species. As they are native to North Africa (e.g., Algeria, Morocco) and are the only primate (other than humans) living wild in Europe (in Gibraltar), they were the most accessible and well-known "ape" or monkey to Europeans for centuries. They are intelligent, tailless (or have a vestigial tail), and were popular pets for nobility.
Guenons (Cercopithecus genus): This is a large group of colorful, long-tailed monkeys from sub-Saharan Africa. Historical records from the Prussian court, for example, note that Frederick the Great (1712-1786) was very fond of his pet "African monkeys," which most likely belonged to this genus. An 1842 inventory of the Berlin zoological garden also lists a "green monkey," which is a type of guenon.
Capuchins : They are the species most often depicted in singerie paintings (including German prints from Augsburg) and as the companions of organ grinders. The 1842 Berlin inventory also specifically lists "Kapuziner-Affen"
Soatok Dreamseeker
in reply to Soatok Dreamseeker • • •Further reading:
Seriously, stop using RSA
Trail of Bits (The Trail of Bits Blog)Soatok Dreamseeker
in reply to Soatok Dreamseeker • • •No, Ed25519 isn't post-quantum. (Neither is RSA or ECDSA.)
But signatures are less urgent to migrate before Q-Day (when a Cryptography Relevant Quantum Computer exists) than encryption is:
There is no "store now, decrypt later" for signing, like there is with encryption.
Soatok Dreamseeker
in reply to Soatok Dreamseeker • • •Cryptography and security experts the world wide wish you would stop using outdated legacy cryptography when better tools are freely available in most programming language ecosystems.
As much job security as it makes for us to clean up the same mess for 30+ years, it isn't very fun.
CatSalad🐈🥗 (D.Burch) reshared this.
Soatok Dreamseeker
in reply to Soatok Dreamseeker • • •There is another benefit to this, but it involves nightmare magic math.
(If you follow me on Fedi, or caught my DEFCON Furs talk, you've heard about this before.)
There's this thing you can do called Threshold Cryptography. If you've ever heard of Shamir's Secret Sharing Scheme, you probably know enough to grok the math, but basically:
Instead of 1 public key mapping to 1 secret key, you map it to some set of N shards of a secret key, for which T of the N must cooperate to produce a signature. That signature is valid for the 1 public key.
This lets you do some cool stuff, like, not ever have your signing key in the same country where an authoritarian government might demand it.
EdDSA (which Ed25519 is an instance of) inherits from Schnorr, which has a nice linear structure and makes threshold signing easy. See: RFC 9591 (FROST).
ECDSA was designed to avoid the Schnorr patent, and it's a nightmare to get right.
I'm not aware of any secure open source Threshold ECDSA library. Not a single one.
Soatok Dreamseeker
in reply to Soatok Dreamseeker • • •There are applications for which Ed25519 is not appropriate. Cryptocurrency being the main example.
For those advanced use cases, I recommend Ristretto255 instead.
For all else, until quantum computers are on this side of the horizon, just use Ed25519.
Soatok Dreamseeker
in reply to Soatok Dreamseeker • • •Look, I work in this field and I'm not sweating them. We can plan a migration to ML-DSA or whatever much later.
For my E2EE project (for which Key Transparency is an important first step), my plan was to use a X-Wing (a hybrid of X25519 + ML-KEM) with MLS (RFC 9420), with public keys from the key transparency service.
I think that's approximately where @evan is landing with github.com/swicg/activitypub-e… too?
For confidentiality considerations, early adoption of PQ makes sense for encryption. Using a hybrid KEM with a currently accepted forward-secure key exchange algorithm is fine.
But for signatures, unless you have a time machine, a quantum computer doesn't do you any good until it's built. And we have no realistic timelines for that today.
GitHub - swicg/activitypub-e2ee: Coordination of work on end-to-end encryption with ActivityPub
GitHubSoatok Dreamseeker
in reply to Soatok Dreamseeker • • •The main reason people still use RSA today is because of legacy decisions.
But Mastodon is getting RFC 9421 support soon. And maybe Ed25519 after that. And then, it might take some time, maybe we can move the default?
But the Fediverse is larger than just Mastodon! Thus, this thread.
Soatok Dreamseeker
in reply to Soatok Dreamseeker • • •Finally, some words of caution around RFC 9421 from an applied cryptography perspective.
The same API allows each of the following algorithms:
rfc-editor.org/rfc/rfc9421.htm…
Don't fucking support HMAC or JWS, please.
RFC 9421: HTTP Message Signatures
www.rfc-editor.orgSoatok Dreamseeker
in reply to Soatok Dreamseeker • • •Because HMAC is a symmetric-key algoritthm.
That means the ability to verify a signature also implies the ability to sign messages.
The Internet doesn't need more algorithm confusion vulnerabilities. auth0.com/blog/critical-vulner…
In fact, you should write unit tests that are expected to fail when either algorithm is selected to ensure you don't accidentally enable support from a dependency upgrade.
Critical vulnerabilities in JSON Web Token libraries
Auth0 - Blog