Security Boulevard

Carelessness versus craftsmanship in cryptography

Two popular AES libraries, aes-js and pyaes, “helpfully” provide a default IV in their AES-CTR API, leading to a large number of key/IV reuse bugs. These bugs potentially affect thousands of ...

‘They All Tried to Break Me’: Gisèle Pelicot Shares Her Story

In her first interview with an American media outlet, Pelicot opens up about surviving years of secret abuse — and a trial ...