The FIPS Compliance of HKDF HKDF is an HMAC-based key-derivation function specified in RFC 5869. It’s nice and we g... 2024-9-26 04:42:7 | 阅读: 21 | 收藏 | Filippo.io - words.filippo.io hkdf kdf derivation approved agreement

The FIPS Compliance of HKDF 文章讨论了基于HMAC的密钥导出函数（HKDF）在FIPS 140-3标准下的合规性问题。作者详细分析了HKDF在密钥协商方案中的应用及其作为一般用途KDF的合规性，并指出其扩展步骤符合NIST SP 800-108 Rev. 1的规定，而提取步骤则符合SP 800-133 Rev. 2的新方法。文章还强调了FIPS模块需通过特定测试和厂商声明以支持这些功能。... 2024-9-25 20:42:7 | 阅读: 7 | 收藏 | Filippo.io - words.filippo.io hkdf derivation kdf expand agreement

Let’s All Agree to Use Seeds as ML-KEM Keys 21 Aug 2024 Last week, NIST published t... 2024-8-21 22:47:42 | 阅读: 20 | 收藏 | Filippo.io - words.filippo.io expanded seeds security kem

Let’s All Agree to Use Seeds as ML-KEM Keys NIST发布ML-KEM1规范FIPS 203最终版，建议仅使用64字节种子存储私钥，并弃用扩展解封装密钥格式。种子体积小、验证简单且无冗余复杂性。生态系统应统一采用种子格式以避免互操作性问题和复杂性负担。... 2024-8-21 14:47:42 | 阅读: 10 | 收藏 | Filippo.io - words.filippo.io expanded seeds security kem

age Plugins age is a file encryption tool, library, and format. It lets you encrypt files to “recip... 2024-7-17 22:39:12 | 阅读: 18 | 收藏 | Filippo.io - words.filippo.io recipient recipients security stanzas yubikey

age Plugins Age 是一个灵活的文件加密工具和库，支持多种加密方式和第三方扩展。它允许用户将文件加密给多个“收件人”，并使用对应的“身份”解密。Age 提供内置的公钥和密码加密功能，并通过插件系统和语言无关的协议支持第三方扩展，如 YubiKey 和 Apple Secure Enclave 等硬件集成。... 2024-7-17 14:39:12 | 阅读: 10 | 收藏 | Filippo.io - words.filippo.io recipient recipients security yubikey stanza

Geomys, a blueprint for a sustainable open source maintenance firm 08 Jul 2024 In 2022, I left Google in s... 2024-7-8 22:36:43 | 阅读: 13 | 收藏 | Filippo.io - words.filippo.io geomys maintainers portfolio maintainer maintained

Geomys, a blueprint for a sustainable open source maintenance firm 作者离开Google后成立专业开源维护公司Geomys，专注于Go项目，并与团队一起提供稳定维护服务。... 2024-7-8 14:36:43 | 阅读: 7 | 收藏 | Filippo.io - words.filippo.io geomys maintainers maintainer portfolio ssh

XAES-256-GCM 26 Jun 2024 About a year ago I wrote th... 2024-6-26 22:24:27 | 阅读: 14 | 收藏 | Filippo.io - words.filippo.io gcm security aead xaes k1

XAES-256-GCM XAES-256-GCM是一种新的AEAD算法，采用256位密钥和192位随机数，旨在提供高安全性、FIPS 140合规性和简单实现。它基于AES-256-GCM扩展设计，适用于需要大随机数和安全加密的场景。... 2024-6-26 14:24:27 | 阅读: 5 | 收藏 | Filippo.io - words.filippo.io gcm security aead xaes derived

My Maintenance Policy I wrote a short document describing how I maintain open source projects, to link it fro... 2024-4-7 04:40:2 | 阅读: 15 | 收藏 | Filippo.io - words.filippo.io security maintainer filippo maintenance prs

My Maintenance Policy Filippo分享了他对开源项目的维护政策，包括按批次集中处理工作、明确项目范围以避免功能蔓延、重视详细问题报告而非PR，并通过赞助和安全报告处理来支持项目维护。... 2024-4-6 20:40:2 | 阅读: 6 | 收藏 | Filippo.io - words.filippo.io security maintainer filippo maintenance prs

PINs for Cryptography with Hardware Secure Elements 14 Feb 2024 I’m a big fan of technologi... 2024-2-14 22:1:51 | 阅读: 33 | 收藏 | Filippo.io - words.filippo.io security entropy hardware encryption yubikey

PINs for Cryptography with Hardware Secure Elements 硬件安全元件通过将高熵密钥与低熵PIN结合使用，解决了传统密码学无法处理的问题。这些元件被用于保护设备加密和云存储数据（如YubiKey、iPhone和iCloud），提升了安全性并改善了用户体验。... 2024-2-14 14:1:51 | 阅读: 5 | 收藏 | Filippo.io - words.filippo.io security entropy encryption hardware ux

Post-quantum Cryptography for the Go Ecosystem 30 Jan 2024 filippo.io/mlkem768 is a pu... 2024-1-31 01:48:1 | 阅读: 25 | 收藏 | Filippo.io - words.filippo.io kem kyber security ecdh alice

Enough Polynomials and Linear Algebra to Implement Kyber 07 Nov 2023 I was once talking with a m... 2023-11-8 02:37:37 | 阅读: 41 | 收藏 | Filippo.io - words.filippo.io ntt mathbf bmatrix circ kem

Why We Don’t Generate Elliptic Curves Every Day 24 Oct 2023 With all the talk recently... 2023-10-24 22:56:36 | 阅读: 57 | 收藏 | Filippo.io - words.filippo.io security client attacker curves diffie

Announcing the $8,192 NIST Elliptic Curves Seeds Bounty 05 Oct 2023 The NIST elliptic curves th... 2023-10-6 05:21:8 | 阅读: 40 | 收藏 | Filippo.io - words.filippo.io seeds curves ansi eligible jerry

I want XAES-256-GCM/11 06 Jul 2023 In 2023, the way to use AES... 2023-7-7 01:48:57 | 阅读: 41 | 收藏 | Filippo.io - words.filippo.io gcm security rounds nonces

I want XAES-256-GCM/11 06 Jul 2023 In 2023, the way to use AES... 2023-7-7 01:48:57 | 阅读: 49 | 收藏 | Filippo.io - words.filippo.io gcm security rounds nonces