algorithm discovery api
play

Algorithm Discovery API WebCrypto API Proposal Israel Hilerio & - PowerPoint PPT Presentation

Mar 30, 2024 •27 likes •77 views

Algorithm Discovery API WebCrypto API Proposal Israel Hilerio & Vijay Bharadwaj, Microsoft Why? There are scenarios that have dependencies between specific algorithms in order to create a secure process Not having support for any one

  1. Algorithm Discovery API WebCrypto API Proposal Israel Hilerio & Vijay Bharadwaj, Microsoft

  2. Why? • There are scenarios that have dependencies between specific algorithms in order to create a secure process • Not having support for any one of these algorithms invalidates the flow • Not knowing which of these algorithms are supported ahead of time creates weird coding patterns • The creation of temporary keys to validate support for an algorithm • There are scenarios where a user can use a subset of algorithms from a supported set to establish a secure connection • Not knowing which of these algorithms are supported ahead of time creates weird coding patterns • The creation of temporary keys to validate support for an algorithm

  3. Scenario #1 • Imagine you are talking to a web service which has two modes. The server sends a challenge, and then: • If you run a PBKDF2 of the user’s password to derive an HMAC -SHA512 key, then send the HMAC-SHA512 of the challenge, you are authenticated as a high security user and can see more content • Otherwise, you can browse the site in anonymous mode • How do you know whether it makes sense to offer the user a password prompt or just tell them their browser is restricted to anonymous mode? • Do you create a garbage PBKDF2 key and a garbage HMAC-SHA512 key? • Or do you prompt the user for a password and then if HMAC-SHA512 is not supported you fail?

  4. Scenario #2 • Imagine you are writing an OTR messaging app. The messaging protocol requires you to offer one or more cipher suites from a given set when you begin a session • How do you decide which cipher suites to use without creating a bunch of garbage keys / operations to try out all the various components of each suite?

  5. Proposal Create a synchronous API that check if a list of algorithms are supported or not. The API will return true if all of the algorithms on the list are supported. Otherwise, it will fail as soon as one of the algorithms on the array list is not supported. Syntax partial interface SubtleCrypto { static boolean areAlgorithmsSupported (AlgorithmIdentifier[] algorithms) ; }; Usage crypto.subtle.areAlgorithmsSupported ( [ {name:“PBKDF2”}, {name:“AES -GCM ”}] );

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Week 7 Video 1 Clustering Clustering A type of Structure Discovery algorithm This type of

Week 7 Video 1 Clustering Clustering A type of Structure Discovery algorithm This type of

Week 7 Video 1 Clustering Clustering A type of Structure Discovery algorithm This type of method is also referred to as Dimensionality Reduction , based on a common application Clustering You have a large number of data points You

974 views • 63 slides
An Algorithm for Message Type Discovery in Unstructured Log Data Daniel Tovark Masaryk

An Algorithm for Message Type Discovery in Unstructured Log Data Daniel Tovark Masaryk

An Algorithm for Message Type Discovery in Unstructured Log Data Daniel Tovark Masaryk University CSIRT-MU ICSOFT 2019, July 27 ICSOFT 2019 Motivation 1 of 16 Motivation ICSOFT 2019 Motivation 2 of 16 Log Analysis via Complex

419 views • 17 slides
Gossip-based Truth Discovery Motivation Motivating Examples Problem Formulation Zhiying Xu

Gossip-based Truth Discovery Motivation Motivating Examples Problem Formulation Zhiying Xu

Gossip-based Truth Discovery Zhiying Xu Introduction Gossip-based Truth Discovery Motivation Motivating Examples Problem Formulation Zhiying Xu Computational Complexity Proposed Algorithms Exact June 4, 2017 Algorithm

1.1k views • 41 slides
Watson Discovery Spring 2020 Discovery pipeline Using NLU, document conversion, and UI tools

Watson Discovery Spring 2020 Discovery pipeline Using NLU, document conversion, and UI tools

Watson Discovery Spring 2020 Discovery pipeline Using NLU, document conversion, and UI tools Watson Discovery use cases The need to search thousands of product reviews at once: Create a Discovery collection and build a UI to query the

657 views • 9 slides
From Search to Discovery in our Future Library From Search to Discovery W e see a spectrum of

From Search to Discovery in our Future Library From Search to Discovery W e see a spectrum of

From Search to Discovery in our Future Library From Search to Discovery W e see a spectrum of di ff erence between Search & Discovery, Search being more targeted and specific and Discovery being more open and vague. This slide also

650 views • 53 slides
The Definition of Algorithm The Definition of Algorithm p.1/31

The Definition of Algorithm The Definition of Algorithm p.1/31

The Definition of Algorithm The Definition of Algorithm p.1/31 An informal discussion Informally speaking, an algorithm is a collection of simple instructions for carrying out a task Note: in

1.26k views • 31 slides
Share the joy of discovery. Fostering Curiosity Joy of discovery Inquisitiveness

Share the joy of discovery. Fostering Curiosity Joy of discovery Inquisitiveness

Share the joy of discovery. Fostering Curiosity Joy of discovery Inquisitiveness Promoting Innovation Risk-taking Continuously raise the bar Empowerment through inclusivity Access for everyone Welcoming

532 views • 15 slides
Value-Driven Development with Continuous Discovery Introductions Prabhat Sinha Hello

Value-Driven Development with Continuous Discovery Introductions Prabhat Sinha Hello

Value-Driven Development with Continuous Discovery Introductions Prabhat Sinha Hello Vishnu Vijayan Padmanabhan Nice to meet you Jordan Ryan Agenda Why Discovery? Discovery Workshops Shortcomings of Discovery Workshops Agile

785 views • 56 slides
Home Learning Event NSS Discovery: National benchmarking February 2020 What is NSS Discovery?

Home Learning Event NSS Discovery: National benchmarking February 2020 What is NSS Discovery?

Hospital at Home Learning Event NSS Discovery: National benchmarking February 2020 What is NSS Discovery? NSS Discovery is a management information system that provides approved users with access to a range of comparative health

579 views • 8 slides
RNA Search and Whirlwind tour of ncRNA search & discovery Motif Discovery RNA motif

RNA Search and Whirlwind tour of ncRNA search & discovery Motif Discovery RNA motif

Outline RNA Search and Whirlwind tour of ncRNA search & discovery Motif Discovery RNA motif description (Covariance Model Review) Algorithms for searching Rigorous & heuristic filtering Motif discovery Lecture

809 views • 27 slides
Object Discovery in 3D scenes via Shape Analysis Andrej Karpathy, Stephen Miller and Li Fei-Fei

Object Discovery in 3D scenes via Shape Analysis Andrej Karpathy, Stephen Miller and Li Fei-Fei

Object Discovery in 3D scenes via Shape Analysis Andrej Karpathy, Stephen Miller and Li Fei-Fei Abstract We present a method for discovering object mod- els from 3D meshes of indoor environments. Our algorithm first decomposes the scene into

342 views • 8 slides
Discovery & Monetisation Tom Greenaway Google @tcmg But fjrst Can someone please

Discovery & Monetisation Tom Greenaway Google @tcmg But fjrst Can someone please

Discovery & Monetisation Tom Greenaway Google @tcmg But fjrst Can someone please take notes? Why Discovery & Monetisation? Discovery Discovery Existing Efgorus Schema.org: https://schema.org/VideoGame Properuies: actor,

160 views • 13 slides
Pattern Discovery EECS 458 CWRU Fall 2004 Roadmap Pattern types Motivation

Pattern Discovery EECS 458 CWRU Fall 2004 Roadmap Pattern types Motivation

Pattern Discovery EECS 458 CWRU Fall 2004 Roadmap Pattern types Motivation Exhaustive searches TEIRESIAS, WINNOWER (Graph) Gibbs sampler EM algorithm (MEME) Problems Pattern matching: find the exact

840 views • 50 slides
Im Impact of f Discovery ry Populist sentiment against Standard Oil was particularly strong

Im Impact of f Discovery ry Populist sentiment against Standard Oil was particularly strong

Im Impact of f Discovery ry Populist sentiment against Standard Oil was particularly strong at the time of the Spindletop discovery and the mega-corporation could not move in on the discovery due to state of Texas anti-trust laws. This

495 views • 4 slides
Discovery of Linguistic Relations Using Lexical Attraction Deniz Yuret Overview Motivation

Discovery of Linguistic Relations Using Lexical Attraction Deniz Yuret Overview Motivation

Discovery of Linguistic Relations Using Lexical Attraction Deniz Yuret Overview Motivation Demonstration Theory, Learning, Algorithm Evaluation Contributions Syntax and Semantics independently constrain linguistic relations

1.09k views • 73 slides
Higgs discovery and BSM Mihoko M. Nojiri 12 11 12 Higgs discovery at the

Higgs discovery and BSM Mihoko M. Nojiri 12 11 12 Higgs discovery at the

Higgs discovery and BSM Mihoko M. Nojiri 12 11 12 Higgs discovery at the LHC Higgs boson: The Last missing particle of the SM particles Probably starting point of the Beyond the stard model why we think

437 views • 31 slides
Collision resistance Introduc3on Dan Boneh Recap: message

Collision resistance Introduc3on Dan Boneh Recap: message

Online Cryptography Course

472 views • 43 slides
Consummation of All One of the most One of the most IMP IMPORTAN TANT T courses you

Consummation of All One of the most One of the most IMP IMPORTAN TANT T courses you

Consummation of All One of the most One of the most IMP IMPORTAN TANT T courses you courses you will take!!!!!! will take!!!!!! IN INTR TRODUCTIO UCTION I. Introduction TER TERM M escato s - last logo s - words

274 views • 26 slides
SCALING JENKINS WITH DOCKER AND APACHE MESOS Carlos Sanchez @csanchez csanchez.org Watch online

SCALING JENKINS WITH DOCKER AND APACHE MESOS Carlos Sanchez @csanchez csanchez.org Watch online

CI AND CD AT SCALE SCALING JENKINS WITH DOCKER AND APACHE MESOS Carlos Sanchez @csanchez csanchez.org Watch online at carlossg.github.io/presentations ABOUT ME Senior Soware Engineer @ CloudBees Contributor to the Jenkins Mesos plugin and

667 views • 63 slides
Interim and Long-Run Dynamics in the Evolution of Conventions David K. Levine and Salvatore

Interim and Long-Run Dynamics in the Evolution of Conventions David K. Levine and Salvatore

Interim and Long-Run Dynamics in the Evolution of Conventions David K. Levine and Salvatore Modica 1 Introduction theory of the evolution of conventions: Markov process with strong forces such as learning and weak forces such as mutations

724 views • 59 slides
Lecture 7 - Applied Cryptography CMPSC 443 - Spring 2012 Introduction Computer and Network

Lecture 7 - Applied Cryptography CMPSC 443 - Spring 2012 Introduction Computer and Network

Lecture 7 - Applied Cryptography CMPSC 443 - Spring 2012 Introduction Computer and Network Security Professor Jaeger www.cse.psu.edu/~tjaeger/cse443-s12/ CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger

817 views • 18 slides
Mess with the best, die like the rest (mode) Volodymyr Pikhur @vpikhur REcon Brussels 2018 1

Mess with the best, die like the rest (mode) Volodymyr Pikhur @vpikhur REcon Brussels 2018 1

Mess with the best, die like the rest (mode) Volodymyr Pikhur @vpikhur REcon Brussels 2018 1 About Been doing RE for more than 15 years Privately wrote multiple tools for deobfuscation and binary analysis, PE unpackers, software VM

546 views • 54 slides
1 Simple Hash Functions Requirements for Hash Functions 1. can be applied to any sized message M

1 Simple Hash Functions Requirements for Hash Functions 1. can be applied to any sized message M

CPE 542: CRYPTOGRAPHY & NETWORK SECURITY Using Symmetric Ciphers for MACs can use any block cipher chaining mode and use final block as a MAC Chapter 12 Hash Algorithms Data Authentication Algorithm (DAA) is a widely used MAC

305 views • 5 slides
Verified Boot: From ROM to Userspace ROM-Code Bootloader Kernel Root File System ELC Europe

Verified Boot: From ROM to Userspace ROM-Code Bootloader Kernel Root File System ELC Europe

Verified Boot: From ROM to Userspace ROM-Code Bootloader Kernel Root File System ELC Europe 2016, 12.10.2016 Marc Kleine-Budde <mkl@pengutronix.de> Slide 1 - http://www.pengutronix.de - 13.10.2016 Why Verified Boot? Attractive hacking

774 views • 20 slides

More recommend