2 min read
NIST is Sunsetting Triple DES - so what will the Financial Industry do?
NIST recently published a document "Transitioning the Use of Cryptographic Algorithms and Key Lengths" which formalizes the sunset of Triple DES by...
8 min read
This Week’s [in]Security – Issue 106
Welcome to This Week’s [in]Security. This week: PCI quiet, the future of card numbers, multiple breaches including AeroGrow card data, 500M resumes,...
8 min read
This Week’s [in]Security – Issue 105 - 2nd Anniversary Edition
Welcome to This Week’s [in]Security. This week: PCI 2019 priorities, Kubernetes and PCI, card breaches at more restaurants, breaches at Toyota,...
8 min read
This Week’s [in]Security – Issue 104
Welcome to This Week’s [in]Security. This week: NIST FPE update may render some deployed solutions weak, NIST formalizes TDES sunset, Magecart...
4 min read
NIST Update to Format Preserving Encryption Standard affects PCI Use Cases
Last month NIST announced they were seeking feedback on a proposed updated guidance for FPE. More formally this is SP 800-38G rev 1 "Recommendation...
5 min read
This Week’s [in]Security – Issue 103
Welcome to This Week’s [in]Security. This week: Citrix, Ixigo, and a Chinese breach, the "creepy assignment", skepticism over Facebook's privacy...
7 min read
This Week’s [in]Security – Issue 102
Welcome to This Week’s [in]Security. This week: PCI DSS 4.0 begins its journey, debates on cashless and contactless payments, 2018 data breaches up...
7 min read
This Week’s [in]Security – Issue 101
Welcome to This Week’s [in]Security. This week: detailed alert on trending e-commerce attack methods, PCI glossary for small business, PCI seeks...
7 min read
This Week’s [in]Security – Issue 100
Welcome to This Week’s [in]Security. This week: PCI PIN program gets moving, POS breach, credential stuffing TurboTax breach, breach fallout, secret...