New Kitten release

• Fixes redirection from sign-in page when person is already authenticated.

https://kitten.small-web.org

To learn more about how Kitten automatically implements authentication for your Small Web sites and apps using public-key cryptography (so even your own server doesn’t know your secret)¹, please see the Authentication tutorial:

https://kitten.small-web.org/tutorials/authentication/

Enjoy!

:kitten:💕

¹ The security (and privacy) of Domain/Kitten are based on a 32-byte cryptographically random secret string that only the person who owns/controls a domain knows.

This is basically a Base256-encoded ed25519 secret key where the Base256 alphabet is a set of curated emoji surrogate pairs without any special modifiers chosen mainly from the animals, plants, and food groups with some exceptions (to avoid common phobias or triggers, etc.) that we call KittenMoji.

…

When setting up a Small Web app via Domain, this key is generated in the person’s browser, on their own computer, and is never communicated to either the Domain instance or the Kitten app being installed. Instead the ed25519 public key is sent to both and signed token authentication is used when the server needs to verify the owner’s identity (e.g., before allowing access to the administration area).

The expected/encouraged behaviour is for the person to store this secret in their password manager of choice.

More: https://kitten.small-web.org/reference/#cryptographic-properties

#Kitten #SmallWeb #SmallTech #authentication #publicKeyCryptography #web #dev #NodeJS #JavaScript #HTML #CSS

Elliptic curves on FunctionalScript. Including Secp256k1, which is used in Bitcoin.

Just in case if we have to use decentralized identity much more often in the near future.
https://github.com/functionalscript/functionalscript/blob/main/secp/test.f.cjs#L45 #elliptic_curve #elliptic_curve_cryptography #PublicKeyCryptography

In den 1970er-Jahren ist Martin Hellman der erste Mathematiker, der zu Kryptografie forscht. Damit zieht er den Groll der NSA auf sich, denn der US-Auslandsgeheimdienst sieht seine eigenen Bestrebungen gefährdet.

#Kryptografie #Mathematik #PublicKeyCryptography #SpektrumDerWissenschaft #GeschichtenAusDerMathematik

https://detektor.fm/wissen/geschichten-aus-der-mathematik-martin-hellman?utm_campaign=share_on_mastodon&utm_medium=mastodon&utm_source=mastodon

#TIL about #cjdns

"An encrypted IPv6 network using public-key cryptography for address allocation and a distributed hash table for routing."

https://directory.fsf.org/wiki/Cjdns

#P2P #IPv6 #encryption #PublicKeyCryptography

I've generated my official GPG key for real-world usage! I wanted to wait until 2024 to generate the key so that the key says it was generated on the 1st of 2024. A bit picky, I know, but it'll make my OCD brain happy, lol. I'll be testing it out before I upload my public key for everyone. :blobfoxfloof:

#GnuPG #GPG #PGP #Security #Privacy #Cryptography #PublicKeyCryptography

Great example of how helpful #ChatGPT is: it just walked me through the math behind #PublicKeyCryptography. I kind of, sort of understand the math better now.

It also came up with #emacs #lisp code to show each step of the math involved, for whichever two primes are input. It seems to work fine, without any tweaking or fixing.

Don't worry - I know enough #CyberSecurity to know not to try to roll my own *anything*. This is just for showing #K12 #InfoTech students how public key crypto works.

why do websites rely on email they should also support making a account with #publicKeyCryptography
image boards kinda do this with trip codes, https://en.wikipedia.org/wiki/Tripcode
there are already tools for managing keys like #openkeychain for android. authentication can be done via challenge and response. anonymity can be handled with locally managed sub keys. or new unrelated keys. account recovery can be done by web of trust or make a back up account and mutually sigh your main one.

Passwörter im Internet sind oft nervig, schwer zu merken und dazu auch noch unsicher. Die Tech-Giganten Google, Apple und Microsoft wollen sie künftig durch sogenannte „Passkeys“ ersetzen. Sind die klassischen Passwörter also bald Vergangenheit?

#Biometrie #Datenschutz #FIDO #Passkeys #Passwörter #PublicKeyCryptography #ZurückZumThema

https://detektor.fm/digital/zurueck-zum-thema-passwoerter?utm_campaign=share_on_mastodon&utm_medium=mastodon&utm_source=mastodon

I wonder if it's possible to implement public-key signing for posts within ActivityPub, it could be a good verification solution for those who really need it. Maybe it's already in the spec?

#Mastodon #ActivityPub #Fediverse #Cryptography #PublicKeyCryptography #AsymmetricCryptography #GnuPG #PGP #Verification #AccountVerification #DigitalIdentity #CyberSecurity #InfoSec

Here's an idea: A digital camera that uses public key cryptography to encrypt photos and videos on a micro SD card.

The idea is that your camera uses the public key to encrypt the photos and videos as you take them. Then, when you want to review your album, you can enter your private key passphrase to see the contents.

The keys could be stored on a TPM in the camera for secure tamper-resistant access to ensure the key isn't swapped with a different key only accessible by a malicious actor. The keys could also be copied to the micro SD card for when you go to import the media to your computer.

Some open source software could be used to automate the process of prompting for the private key passphrase and decrypting process as it's being transferred to your computer.

But the goal here is to ensure that whatever photos and videos you take on it is encrypted and safe from someone who might steal your camera and/or the micro SD card.

#Photography #Encryption #PublicKeyCryptography #Security #Privacy #FOSS

Referenced link: https://hackernoon.com/a-complete-overview-of-cryptography
Discuss on https://discu.eu/q/https://hackernoon.com/a-complete-overview-of-cryptography

Originally posted by HackerNoon | Learn Any Technology / @hackernoon@twitter.com: https://twitter.com/hackernoon/status/1575243969939869702#m

"A Complete Overview of Cryptography" by @wagslane https://hackernoon.com/a-complete-overview-of-cryptography #cryptography #publickeycryptography

Here's an idea for #surveillance camera systems for businesses: Use public key cryptography to ensure that the security footage is secure and private against malicious actors. Use the public key to encrypt the footage and store the clips on disk as an encrypted file. Then, when you need to pull up the footage, you use the private key (ideally stored on a flash drive most of the time with secure backups) to decrypt the clips and go through the footage.

#PublicKeyCryptography #RSA #Encryption

If anyone is struggling to understand how public key cryptography works, this video should help you out explaining #RSA. I know this video talks about quantum computers, but this guy's explanation of RSA on traditional computers like we have now really helped me understand it better.

#Security #Encryption #Cryptography #PublicKeyCryptography #QuantumComputers

https://www.youtube.com/watch?v=6H_9l9N3IXU