June 7th 2007
Whenever your browser establishes a “secure” connection to a web site, it encrypts the data. Traditionally, the browser and site use a stream cipher called Rivest Cipher #4 (RC4), although some sites use newer techniques.
Stream ciphers use a deceptively simple mechanism: you combine the plaintext data, bit by bit, with “key” bits, using the exclusive or operation. This is often abbreviated xor, and denoted by ⊕ - a circle with a cross. Continue Reading »
June 5th 2007
Password guidelines did not start out with such complicated rules; the rules evolved in response to evolving attacks. Each extra requirement (minimum length, monthly changes, etc.) made life slightly more difficult until it became impossible for users to comply.
DILBERT © 1998 United Feature Syndicate. Used by permission.
June 5th 2007
Here is a list of articles and papers I have produced. Where possible, I include a link to the paper. If there are co-authors, they are listed at the end of the entry. Continue Reading »
June 5th 2007
This page provides links to the presentation slides for talks I have given. Continue Reading »