2026-04-05
04 (System) Document has expired
2025-10-02
04 周伯才 New version available: draft-zhou-tls-tls14-04.txt
2025-10-02
04 周伯才 New version accepted (logged-in submitter: 周伯才)
2025-10-02
04 周伯才 Uploaded new revision
2025-10-02
03 周伯才 Changed document external resources from:
Archiv: Technik / Techniker / Programmierer / technicians / technics / programmers
When Encryption Meets Quantum
(May 14, 2026)
Quantum processors can evaluate many possible solutions in parallel rather than sequentially. This capability has profound implications for cryptography. Today’s most widely deployed encryption schemes, RSA and elliptic curve cryptography (ECC), can be broken and rendered obsolete by a quantum computer.
Everything from industrial IoT sensors and automotive control systems to cloud infrastructure and secure boot mechanisms relies on RSA or ECC for encryption today. When quantum computers reach the scale required to break these algorithms, that entire trust architecture collapses simultaneously.
Compounding the urgency is an attack vector already in use: Harvest now, decrypt later.
Brief History of the Domain Name System
Jan. 7, 1958 – President Eisenhower requested funds to start ARPA.
(…)
– Early 1967 – Meeting of ARPA’s principal investigators in Ann Arbor, Michigan. Roberts (the director of the IPTO) put forward the idea of a computer network. Wes Clark introduced the idea of a subnetwork: small, identical computers all interconnected – “interface message processors (IMPs).” Engelbert volunteered to the Network Information Center (NIC).
– 1967 – Roberts published paper on ARPANET.
– End of 1967 – The Association for Computing Machinery’s computer conference in Gatliburg, Tennessee. Roberts presented his first paper on ARPANET and heard of work done by Donald Davies’ team at NPL and Paul Baran at RAND.
(…)
Summer 1975 – The Defense Communications Agency (DCA) took over the management of ARPANET.
(…)
– November 1983 – The rapid growth of the internet caused massive problems in bookkeeping. To deal with this problem a group including Jon Postel, Paul Mockapetris and Craig Partrige published RFC 882 which created the domain name system (DNS) to make Internet navigation easier. With DNS, users can type host names such as “USC-ISIF” instead of “10.2.0.52.” Every Address would have information from specific to general.
technical updates
A few weeks ago, we implemented some important updates and / or changes. For security reasons, we waited a little before making that public.
A Picture’s Worth… Digital Image Analysis and Forensics
(2007)
5 Example: Dr. Ayman al Zawahiri
As-Sahab is the video production branch of Al Qaeda. They periodically release videos designed to remind people of Al Qaeda’s existence, issue threats, recruit members, and potentially act as a covert channel for triggering terrorist cells. Many of the videos by As-Sahab appear to have been manipulated.
On 20-Dec-2006, Dr. Ayman al Zawahiri (#2 guy in Al Qaeda) released a video. USA Today covered the video release with a headline story (Figure 25).24 USA Today’s description of the video says, “He wore a black turban and white robe … he had a rifle behind his right shoulder that was leaning against a plain brown backdrop.” While this is a valid description of the As-Sahab video, the picture used by USA Today did not show that image. Instead, USA Today used a picture from another video, dated 28-Sept-2006. This is an example of a mislabeled image.
The picture that USA Today chose to use with the story includes many other interesting features. First, it came from the IntelCenter (www.intelcenter.com) – an organization that tracks terrorist activities. The IntelCenter placed their logo in the top-right corner of the video. However, the company name is clearly cropped – likely by USA Today. A comparison with the same frame from the actual video shows many other observable differences. In particular, the IntelCenter adjusted the color and sharpness of the picture (Figure 26).
(…)
5.1 Other Al Zawahiri Videos
The video from 28-Sept-2006 was not the only manipulated video. In fact, many of the videos featuring al Zawahiri test positive for chroma-key masking. Consider the video released on 27-July-2006 (Figure 27).26 This video appears to show al Zawahiri sitting in a video studio.
When this video came out, many Americans became enraged at the US government. The main strife was generated
by a single argument: if al Zawahiri is sitting in a studio making videos, the why can’t we catch him? The answer is simple: he is not in a studio.
(…)
5.2 Back in Black
Claiming that there was a chroma-key background is not the same as actually seeing it. On 22-Jan-2007, the SITE
Institute (www.siteinstitute.org) – an organization that tracks terrorist activities – announced that they had
intercepted an Al Qaeda video before it had been publicly released; SITE released it. Three days later, As-Sahab
also released the video. ….
2007 BlackHat Vegas V38 Krawetz A Pictures Worth 02
Nov 2, 2010
Hacker Proves How MSM is Fooled by al Qaeda Photochopped Images
(August 5th, 2007)
At the Black Hat computer Hacker‘s conference held in Las Vegas last week, Neal Krawetz of „Hacker Factor“ showed how easily the MSM has been tricked into believing the fake images that al Qaeda has offered to further their propaganda. Krawetz specifically referred to two images, one the July 27, 2006 image of al Qaeda second in command al-Zawahiri supposedly sitting in a modern television studio. It was an image that had the tongues of the MSM and pundits alike wagging. How is it, they clucked, that al-Zawahiri could be sitting in a modern television studio yet still could not be found?
Krawetz demonstrated how the elements of the two images, however, are special effects and not real.
PowerHammer: Exfiltrating Data From Air-Gapped Computers Through Power Lines
(April 2018)
In this paper we provide an implementation, evaluation, and analysis of PowerHammer, a malware (bridgeware [1]) that uses power lines to exfiltrate data from air-gapped computers. In this case, a malicious code running on a compromised computer can control the power consumption of the system by intentionally regulating the CPU utilization. Data is modulated, encoded, and transmitted on top of the current flow fluctuations, and then it is conducted and propagated through the power lines. This phenomena is known as a ‚conducted emission‘. We present two versions of the attack. Line level powerhammering: In this attack, the attacker taps the in-home power lines1 that are directly attached to the electrical outlet. Phase level power-hammering: In this attack, the attacker taps the power lines at the phase level, in the main electrical service panel. In both versions of the attack, the attacker measures the emission conducted and then decodes the exfiltrated data. We describe the adversarial attack model and present modulations and encoding schemes along with a transmission protocol. We evaluate the covert channel in different scenarios and discuss signal-to-noise (SNR), signal processing, and forms of interference. We also present a set of defensive countermeasures. Our results show that binary data can be covertly exfiltrated from air-gapped computers through the power lines at bit rates of 1000 bit/sec for the line level power-hammering attack and 10 bit/sec for the phase level power-hammering attack.
Hackers found a way to steal data from air gapped networks using powerlines
(8th May 2018)
Hot on the heels of exploits that use fan noise, infra red cameras, heat, LED lights and drones, magnetic fields and smartphones, and a multitude of other hacks to gain access to sensitive air gapped computer systems, the researchers from Israel’s Ben Gurion University have shown once again that air-gapped networks are not safe from a determined and patient attacker.
The researchers have already devised several devious techniques to extract data from isolated or air-gapped computers that store highly sensitive data and now their latest technique, dubbed PowerHammer, exploits current fluctuations flowing through the power lines supplying electricity to air-gapped computers.
The researchers have been able to exfiltrate data at a rate of 1,000 bits per second for lines connected to the target computer and 10 bits per second from the grid.
ClassicPress 2.7.0 Release Notes
We’re happy to announce the release of ClassicPress 2.7.0.
This is a security, feature and maintenance release.
Jeffrey Epstein Recruited NSA Codebreakers for Genome “Manhattan Project”
(February 10, 2026)
For the next decade, Epstein continued to recruit engineers from U.S. national security entities, including DARPA, to his genome hacking project. He asked Kathryn Ruemmler, the White House attorney who had handled the legal fallout from the Edward Snowden leaks, to help him source cryptographers from the National Security Agency. “Can you find a guy from nsa that can think about signal intelligence applied to DNA,” Epstein wrote . “I want to intercept communication between living cells in organisms.”
In late 2012, he had sent the same request to Boris Nikolic, Bill Gates’ top aide: “do you have any contacts at nsa so that we can use de encypriton (sic) in biological systems?” “Yes,” Nikolic replied, “There are no many places where I do not have someone ;)”
‘Stop This Spying’: Members of Congress Accuse the DOJ of Surveilling Lawmakers’ Epstein Files Searches
(February 12, 2026)
Mace told NPR that “there is someone or two people from the DOJ monitoring you as you sit on those computers” and that lawmakers are given their “own identification” upon being logged into the computers by a “tech person” at the department. “They are tracking all of the documents that members of Congress open, and they‘re tracking everything that you do in that room,“ she said.
F-Droid: HeliBoard – Customizable open-source keyboard
HeliBoard is a privacy-conscious open-source keyboard, based on AOSP / OpenBoard.
Does not use internet permission, and thus is 100% offline.
Let‘s Encrypt 4096 bit
(March 9, 2020)
Look at setting in panel.ini
rsa-key-size = 4096
here Managing Let’s Encrypt Settings
I hope it will help.
CIQ’s NSS Module 1st to Achieve CAVP Certification for Post-Quantum Cryptography Algorithms
(February 4, 2026)
The National Security Agency’s CNSA 2.0 sets a compressed timeline for National Security Systems to adopt quantum–resistant cryptography, with key transition milestones beginning in 2027 and a full migration targeted by 2035. However, the “harvest now, decrypt later” threat makes immediate preparation critical. Adversaries can collect encrypted data today and decrypt it once quantum computers become capable.
Quantum Computing Forces Shift to Post-Quantum Security
(February 3, 2026)
This technical vulnerability facilitates „harvest now, decrypt later“ attacks. In these scenarios, malicious actors capture encrypted communications in the present to decrypt them once quantum hardware achieves the necessary stability and processing power.
The cybersecurity landscape faces a critical convergence between artificial intelligence and quantum computing. Nikesh Arora, CEO, Palo Alto Networks, says during the Quantum-Safe Summit that quantum technology is no longer a theoretical scientific project but an operational reality with documented success in stable computing tasks. The integration of these capabilities accelerates the decryption of traditional security protocols, which compromises sensitive government and industrial information.
Brief History of the Domain Name System
Jan. 7, 1958 – President Eisenhower requested funds to start ARPA.
(…)
– Early 1967 – Meeting of ARPA’s principal investigators in Ann Arbor, Michigan. Roberts (the director of the IPTO) put forward the idea of a computer network. Wes Clark introduced the idea of a subnetwork: small, identical computers all interconnected – “interface message processors (IMPs).” Engelbert volunteered to the Network Information Center (NIC).
– 1967 – Roberts published paper on ARPANET.
– End of 1967 – The Association for Computing Machinery’s computer conference in Gatliburg, Tennessee. Roberts presented his first paper on ARPANET and heard of work done by Donald Davies’ team at NPL and Paul Baran at RAND.
(…)
Summer 1975 – The Defense Communications Agency (DCA) took over the management of ARPANET.
(…)
– November 1983 – The rapid growth of the internet caused massive problems in bookkeeping. To deal with this problem a group including Jon Postel, Paul Mockapetris and Craig Partrige published RFC 882 which created the domain name system (DNS) to make Internet navigation easier. With DNS, users can type host names such as “USC-ISIF” instead of “10.2.0.52.” Every Address would have information from specific to general.
Brief History of the Domain Name System
Jan. 7, 1958 – President Eisenhower requested funds to start ARPA.
(…)
– Early 1967 – Meeting of ARPA’s principal investigators in Ann Arbor, Michigan. Roberts (the director of the IPTO) put forward the idea of a computer network. Wes Clark introduced the idea of a subnetwork: small, identical computers all interconnected – “interface message processors (IMPs).” Engelbert volunteered to the Network Information Center (NIC).
– 1967 – Roberts published paper on ARPANET.
– End of 1967 – The Association for Computing Machinery’s computer conference in Gatliburg, Tennessee. Roberts presented his first paper on ARPANET and heard of work done by Donald Davies’ team at NPL and Paul Baran at RAND.
(…)
Summer 1975 – The Defense Communications Agency (DCA) took over the management of ARPANET.
(…)
– November 1983 – The rapid growth of the internet caused massive problems in bookkeeping. To deal with this problem a group including Jon Postel, Paul Mockapetris and Craig Partrige published RFC 882 which created the domain name system (DNS) to make Internet navigation easier. With DNS, users can type host names such as “USC-ISIF” instead of “10.2.0.52.” Every Address would have information from specific to general.
Mysterious technical problem: what a waste of time
Unfortunately, a technical problem, currently not to be verified, has cost us three days.
Welcome to electronic colonialism.
UncensoredDNS: About
UncensoredDNS was started in November 2009. At the time I was working at an ISP where one of my (reluctant) responsibilities was to administer the censored DNS servers that all Danish ISPs have to run for their customers. I have never been a fan of the Danish DNS censorship system, and working with it first hand didn‘t exactly help….
Brief History of the Domain Name System
Jan. 7, 1958 – President Eisenhower requested funds to start ARPA.
(…)
– Early 1967 – Meeting of ARPA’s principal investigators in Ann Arbor, Michigan. Roberts (the director of the IPTO) put forward the idea of a computer network. Wes Clark introduced the idea of a subnetwork: small, identical computers all interconnected – “interface message processors (IMPs).” Engelbert volunteered to the Network Information Center (NIC).
– 1967 – Roberts published paper on ARPANET.
– End of 1967 – The Association for Computing Machinery’s computer conference in Gatliburg, Tennessee. Roberts presented his first paper on ARPANET and heard of work done by Donald Davies’ team at NPL and Paul Baran at RAND.
(…)
Summer 1975 – The Defense Communications Agency (DCA) took over the management of ARPANET.
(…)
– November 1983 – The rapid growth of the internet caused massive problems in bookkeeping. To deal with this problem a group including Jon Postel, Paul Mockapetris and Craig Partrige published RFC 882 which created the domain name system (DNS) to make Internet navigation easier. With DNS, users can type host names such as “USC-ISIF” instead of “10.2.0.52.” Every Address would have information from specific to general.
SSL Report: pressenza.com (65.108.40.92)
Protocols
TLS 1.3 No
TLS 1.2 Yes
TLS 1.1 No
TLS 1.0 No
SSL Report: amerika21.de (193.96.188.217)
TLS 1.3 No
TLS 1.2 Yes*
TLS 1.1 No
TLS 1.0 No
SSL Report: telesurenglish.net (179.63.248.14)
Protocols
TLS 1.3 No
TLS 1.2 Yes*
TLS 1.1 Yes
TLS 1.0 Yes*
DNSSEC History Project
DNS Security Prehistory
Few technologies are more critical to the operation of the Internet than the Domain Name System (DNS). The initial design of DNS did not take security into consideration, which was not unusual for protocols designed in the early 1980s. At the time of its development, and for many years there after, DNS had functioned without many formal security mechanisms, thereby making it vulnerable to DNS spoofing and other malicious attacks.
Determining the Need for DNSSEC
[What drove the work? Big picture issues. Surely this includes the demonstrations of cache poisoning by Steve Bellovin and Tsutomu Shimomura in the early 1990s and the similar work by Dan Kaminsky in 2008, but it may include much other activity.]
(…)
Cache Poisoning
The earliest known security problem with DNS was DNS cache poisoning, also sometimes called DNS spoofing. DNS cache poisoning happens when a DNS server downstream from the authoritative one returns incorrect data to queries for names or IP addresses. This occurs because an attacker has ‘poisoned’ the cache of the downstream DNS server to return the malicious response. DNS cache poisoning is a subset of a group of problems computer scientists often classify as cache invalidation.
This problem, known to the Computer Science Research Group(CSRG) at U.C. Berkeley since 1989, was finally described in a paper by Steve Bellovin in 1993. Bellovin initially put off publishing the paper out of fear the information would be exploited.
(…)
Concern over DNS cache poisoning, specifically that the leak would become publicly known, existed from 1989 to 1995.
Brief History of the Domain Name System
Jan. 7, 1958 – President Eisenhower requested funds to start ARPA.
(…)
– Early 1967 – Meeting of ARPA’s principal investigators in Ann Arbor, Michigan. Roberts (the director of the IPTO) put forward the idea of a computer network. Wes Clark introduced the idea of a subnetwork: small, identical computers all interconnected – “interface message processors (IMPs).” Engelbert volunteered to the Network Information Center (NIC).
– 1967 – Roberts published paper on ARPANET.
– End of 1967 – The Association for Computing Machinery’s computer conference in Gatliburg, Tennessee. Roberts presented his first paper on ARPANET and heard of work done by Donald Davies’ team at NPL and Paul Baran at RAND.
(…)
Summer 1975 – The Defense Communications Agency (DCA) took over the management of ARPANET.
(…)
– November 1983 – The rapid growth of the internet caused massive problems in bookkeeping. To deal with this problem a group including Jon Postel, Paul Mockapetris and Craig Partrige published RFC 882 which created the domain name system (DNS) to make Internet navigation easier. With DNS, users can type host names such as “USC-ISIF” instead of “10.2.0.52.” Every Address would have information from specific to general.
SmallTechnology Foundation
Hello!
We’re a tiny and independent two-person not-for-profit based in Ireland.
We are building the Small Web.
No, it’s not web3, it’s web0.
Learn more about us.