NIST New Password Controls

NIST is currently reinventing its recommended password quality parameters.  In light of the many recent hacks that have been attributed […]

DRBG and RNG

No matter how good your algorithm and key sizes are, a bad random number generator means your cryptography will fail.  […]

IPsec Algorithms

Use: AES-CTR-128, AES-CTR-256, AES-GCM-128, AES-GCM-256 Avoid: AES-CBC-128, AES-CBC-256 IKEv1 Phase 1 exchanges use only main mode IKEv1 and IKEv2 SA […]