Redwood City has a lot of nice houses near the downtown for under $2M
Like this? http://www.abc10.com/news/local/sacramento/modular-apartment...
Kryptnostic | Redwood City, CA | ONSITE We're helping individuals and organization safely leverage their data in the cloud by building products & services that make it possible to search encrypted data server side…
Registration is a request to https://api.kryptnostic.com, which gets an A: https://www.ssllabs.com/ssltest/analyze.html?d=api.kryptnost...
We agree. RC4 must die. Will post back once we have resolved the issue.
We'll have a more readable write up available on ePrint, soon.
Yes, but there are some limitations when doing server side sharing of documents without a central trusted authority. It's dangerous to accept shares from untrusted sources as it exposes you to attacks by malicious…
This is definitely an issue and has been for a few years now: http://community.embarcadero.com/index.php/blogs/entry/the-h... One thing in our favor is that we're not using a lattice or ring-learning with errors…
This. If you aren't doing client-side encryption and keeping the keys private, the server has access one way or another.
From a practical perspective, yes. From a threat model perspective not really.
There's a third risk here. 3) Exploit programmatic access or side-channel attacks on the data. If the server can decrypt the data and this is driven by code on the box, then you're in a DRM-like situation trying to hide…
Amazon and other tech companies can design systems where the keys are held entirely by the end-users. How far is the US willing and able to go to get at that data?
Agreed. Without a trust the only thing that comes close is an in person P2P pairing ceremony. Key management might work in an enterprise setting with a central authority, but making sure your friend's public key isn't…
Open source client libraries providing end-to-end encryption and zero knowledge search, would enable a functional e-mail system that operates without any server held keys. You could still NSL a backdoor, but if the…
Just went and read your paper. VII. OPEN ISSUES AND FUTURE WORK ... One of the main issues of our concept is the termination problem. To solve this problem, a crypto-system that can selectively decrypt information is…
Curious about a detail here. If this machine can evaluate AND and XOR, then how do you prevent a malicious attacker with the public key from performing encrypted each power of two, performing an AND and comparing with…
tl;dr here be dragons. The ability to evaluate statements such as x == 5 falls under the realm of functional encryption ( see Boneh, Sahai, and Waters for a good intro…
The ability of an entity or entities to cause damage beyond their ability to compensate people for their aggression is not addressed either. For example the Bhopal gas tragedy or Anaconda Mining Corporation's superfund…
Redwood City has a lot of nice houses near the downtown for under $2M
Like this? http://www.abc10.com/news/local/sacramento/modular-apartment...
Kryptnostic | Redwood City, CA | ONSITE We're helping individuals and organization safely leverage their data in the cloud by building products & services that make it possible to search encrypted data server side…
Registration is a request to https://api.kryptnostic.com, which gets an A: https://www.ssllabs.com/ssltest/analyze.html?d=api.kryptnost...
We agree. RC4 must die. Will post back once we have resolved the issue.
We'll have a more readable write up available on ePrint, soon.
Yes, but there are some limitations when doing server side sharing of documents without a central trusted authority. It's dangerous to accept shares from untrusted sources as it exposes you to attacks by malicious…
This is definitely an issue and has been for a few years now: http://community.embarcadero.com/index.php/blogs/entry/the-h... One thing in our favor is that we're not using a lattice or ring-learning with errors…
This. If you aren't doing client-side encryption and keeping the keys private, the server has access one way or another.
From a practical perspective, yes. From a threat model perspective not really.
There's a third risk here. 3) Exploit programmatic access or side-channel attacks on the data. If the server can decrypt the data and this is driven by code on the box, then you're in a DRM-like situation trying to hide…
Amazon and other tech companies can design systems where the keys are held entirely by the end-users. How far is the US willing and able to go to get at that data?
Agreed. Without a trust the only thing that comes close is an in person P2P pairing ceremony. Key management might work in an enterprise setting with a central authority, but making sure your friend's public key isn't…
Open source client libraries providing end-to-end encryption and zero knowledge search, would enable a functional e-mail system that operates without any server held keys. You could still NSL a backdoor, but if the…
Just went and read your paper. VII. OPEN ISSUES AND FUTURE WORK ... One of the main issues of our concept is the termination problem. To solve this problem, a crypto-system that can selectively decrypt information is…
Curious about a detail here. If this machine can evaluate AND and XOR, then how do you prevent a malicious attacker with the public key from performing encrypted each power of two, performing an AND and comparing with…
tl;dr here be dragons. The ability to evaluate statements such as x == 5 falls under the realm of functional encryption ( see Boneh, Sahai, and Waters for a good intro…
The ability of an entity or entities to cause damage beyond their ability to compensate people for their aggression is not addressed either. For example the Bhopal gas tragedy or Anaconda Mining Corporation's superfund…