Have you been pwned? posted December 2013

HaveIbeenPwned.com is a new website allowing you to check if your mail + password has been leak by some of those famous data breach. It's pretty bad, mine is compromised. Fortunately I use different passwords for different kind of websites. I use a garbage password for websites I don't trust, I use an easy and quick password to type for websites I don't care about, I use complicated password for more important things like my server, my steam account, my gmail account, my facebook account etc... and I regularly change them.

Well done! You've reached the end of my post. Now you can leave me a comment or read something else.

Here are some random popular articles:

- Fault attacks on RSA's signatures
- A New Public-Key Cryptosystem via Mersenne Numbers
- Let's Encrypt Overview
- BEAST: An Explanation of the CBC Attack on TLS
- QUIC Crypto and simple state machines
- Common x509 certificate validation/creation pitfalls
- What is the BLS signature scheme?

Here are some random recent articles:

- 4 years of consulting
- A book in preparation
- Authentication, What The Fuck?
- Algorand's cryptographic sortition
- Difference between shamir secret sharing (SSS) vs Multisig vs aggregated signatures (BLS) vs distributed key generation (dkg) vs threshold signatures
- What is the BLS signature scheme?
- Hardware Solutions To Highly-Adversarial Environments Part 2: HSM vs TPM vs Secure Enclave

Have you been pwned? posted December 2013

Comments