for kicks, this base64 encodes the encapsulated context, ciphertext, and aad,

and now base64 encodes the key files and password protects the private key.

#cryptography #KEM #AuthHPKE #Circl

for completeness sake, after some errands, this is a far as I got with circl's -HPKE/KEM... https://codeberg.org/risottobias/ampoule (I don't have the hpke context marshalled, or extracting the encapsulated key) #cryptography #circl #HPKE #KEM

Did you know?
CIRCL's vulnerability-lookup is mentioned in the LF/OpenSSF CRA training. (screencap, top left)
https://vulnerability.circl.lu/
https://training.linuxfoundation.org/express-learning/understanding-the-eu-cyber-resilience-act-cra-lfel1001/
@adulau
#circl #vulnerability-lookup #cra

Latest Updates on Kunai
by Quentin Jerome

#CIRCL
#SysMonLikeForLinux #YARA
#LightningTalk #hacklu2024

Still recovering from #FOSDEM.
Next year I'll try to stick to the planned visits to the various talks.

Looking forward especially to an extended #security track which may also include @MISPProject and other #infosec platforms developed by #CIRCL

@cedricbonhomme Someone should tell the #Monarch team to open an account on mastodon.opencloud.lu.
If also #CIRCL and securitymadein.lu do that then we can create a nice Luxembourgish security community on #Mastodon.

Excellent reading for the weekend:

Open Reference Architecture for #Security and #Privacy

https://security-and-privacy-reference-architecture.readthedocs.io

Odd to see that @MISPProject is not included in the list of #OpenSource security applications but overall a very nice and well written document.

Maybe #CIRCL and #BeeSecure could contribute to the document?

#infosec

Another nice article by @Gijs regarding vulnerability disclosure policies.
Wondering if @MISPProject #CIRCL may have some experiences to share with them.

https://joinup.ec.europa.eu/news/fund-mitigation-approach?platform=mastodon.opencloud.lu

Welcome to this new Mastodon instance mostly dedicated to promoting #OpenSource #Security #Privacy in #Luxembourg @cataspanglish

We are slowly building up a community here but in the meantime follow a couple of nice chaps like @Edent which knows a couple of things about Open Data and Open Source and @rysiek which seems to know a thing or two about #infosec.

Maybe the #CIRCL and #MISP team could join this instance?

We deployed #LookyLoo yesterday and boy is it fun to use. Exploring phishing links has never been easier!

A huge thank you to nice people at #CIRCL for creating it: https://github.com/CIRCL/lookyloo

Keep in mind it's a simple solution and should most definitely not be deployed out in the wide Internets. Doesn't handle multi-user too well, and you really shouldn't throw a complicated site at it with Depth > 2. But for phishing links it's amazing.

Here's how it looks for mastodon.social.

#InfoSec