/Logo%202023.svg "Logo 2023"){kind=small}
2 min read
PCI Key Blocks: Phases & Key Management Explained
In June 2019, the PCI Security Standards Council issued an information supplement titled PCI PIN Security Requirement 18-3 – Key Blocks, which...
3 min read
The SHA-1 Attack Further Emphasizes the Need for Crypto-Agility
Edlyn Teske: 24. January 2020
The first practical chosen-prefix collision attack on SHA-1 was announced in January 2020 by researchers Gaëtan Leurent and Thomas Peyrin: “SHA-1 is...
2 min read
SHA-1 is Practical and Cost-Effective to Crack Now
This article discusses recent warnings that a chosen-prefix collision attack on SHA-1 is now practical and cost-effective for attackers.
2 min read
ANSI X9.24-1-2017: General Key Management Requirements
Martin Rupp (guest): 21. January 2020
The ANSI X9.24-1-2017 norm details how symmetric cryptographic keys should be managed and handled by the relevant actors of the retail financial...
3 min read
A Guide to FIPS 140-3 Compliance Standards
FIPS 140 (“Federal Information Processing Standard”) is a series of security standards published by the U.S. government that specify security...
4 min read
Symmetric Key Encryption - why, where and how it’s used in banking
In today’s cyber-world there is an ever-present risk of unauthorized access to all forms of data. Most at risk is financial and payment system data...
6 min read
A NIST-Based Summary of Cryptographic Algorithms
A system's cryptographic protection against attacks and malicious penetration is determined by two factors: (1) the strength of the keys and the...
6 min read
Key Management and use cases for HSMs
Chris Allen: 17. December 2019
With the rise of e-commerce, corporations and banks were able to more easily expand their businesses and services around the world.
3 min read
PCI PTS HSM: The Origin, Evaluation Criteria, and Updates
PCI PTS HSM compliance is mandated on banks, acquirers, processors and all other players involved in payment card systems. This article explores the...