InfoQ Homepage Cryptography Content on InfoQ

  • Making 'npm install' Safe

    At QCon New York 2019, Kate Sills, a software engineer at Agoric, discussed some of the security challenges in building composable smart contract components with JavaScript. Two emerging TC39 JavaScript proposals, realms and Secure ECMAScript (SES) were presented as solutions to security risks with the npm installation process.

  • Microsoft Releases Azure Bastion, Eliminating the Jumpbox Virtual Machine

    In a recent blog post, Microsoft announced the preview of a secure remote desktop solution, called Azure Bastion, which does not require organizations to expose virtual machines using public IP Addresses. The platform as a service (PaaS) extends virtual machine connectivity using Remote Desktop Protocol (RDP) and Secure Shell (SSH) inside a modern web browser.

  • Cloudflare CIRCL Experiments in Post-Quantum Cryptography

    Cloudflare has open-sourced CIRCL (Cloudflare Interoperable, Reusable Cryptographic Library), a collection of algorithms for post-quantum (PQ), elliptic curve cryptography, and hashing for prime groups.

  • NGINX Plus Release 18 Available with Support for Dynamic Certificate Loading

    NGINX has released version 18 (R18) of NGINX Plus, their all-in-one load balancer, content cache, and web server. This release includes support for dynamic certificate loading, enhancements to their OpenID Connect implementation, and the ability to specify port ranges for virtual servers.

  • Adiantum Brings Disk Encryption to Low-End Smartphones

    Adiantum is a new encryption algorithm for low-end smartphones, smartwatches, and other Android Pie devices that are too slow to use the Advanced Encryption Standard (AES) standard for storage encryption.

  • Tink is Google Cryptographic Library for the Cloud, Android, and iOS

    Tink is a multi-language, cross-platform cryptographic library developed by a group of cryptographers and security engineers at Google to help developers implement cryptography correctly without being cryptographic experts. Under development for the last two years, version 1.2 adds support for Cloud, Android, and iOS platforms, and C++ and Objective-C.

  • MIT Researchers Test Oracles and Smart Contracts on Bitcoin Lightning Network

    The Massachusetts Institute of Technology (MIT) has revealed the results of their tests running smart contracts on the Bitcoin Lightning Network. Running smart contracts on the Bitcoin network isn’t necessarily new, however, the approach of using trusted entities called oracles with smart contracts is what makes their approach unique on the Bitcoin blockchain.

  • Coindesk 2018 State of Blockchain

    Coindesk recently released their 2018 State of Blockchain report, which provides more than 160 pages of blockchain related research covering investments in top cryptocurrencies, enterprise blockchain solutions, raising capital through initial coin offerings, government, regulation and sentiment. InfoQ has analyzed this report and has compiled a list of key developments that impact our readership.

  • SaaS Platform for Managing Configurations Enters Private Beta

    Config is a new SaaS offering for managing configuration files. Created by Bien David in 2017, the company looks to simplify how teams store and access configurations used by systems, apps, modules, environments, and server instances. InfoQ spoke to the team behind Config to learn more about how these problems are solved.

  • Blockchain and Smart Contracts in a Business Process

    Buying something through an internet portal, for example a car, normally involves two parties who don’t trust each other; a buyer and a seller. The portal is just a broker so either the buyer must transfer money before getting the ordered item, or the seller must send the item before getting the money. To overcome this lack of mutual trust, Bernd Rücker claims that a blockchain can be used.

  • W3C Publishes DRM as a Recommendation

    After a divided vote, the World Wide Web Consortium has adopted Encrypted Media Extensions as a full recommendation, formalizing closed-source Digital Rights Management into the specification. In response, the EFF has resigned from the W3C.

  • Microsoft Announces Coco Framework for Enterprise Blockchain Networks

    In a recent blog post, Microsoft announced a new open framework, called Coco, which targets enterprise consortium networks. The framework sits on top of existing blockchain platforms, such as Ethereum, and focuses on improving network throughput, adding new confidentiality models, network policy management and support for non-deterministic transactions.

  • Stack Overflow Becomes HTTPS by Default

    Nick Craver, architecture lead at StackOverflow, has published a blog announcing StackOverflow's migration to HTTPS. Some of the technical challenges along the way included supporting hundreds of domains, migrating URL’s, user generated content, and meeting the sites stringent performance requirements.

  • Google Introduces Cloud-Based Encryption Key Management Service

    Google has announced a new service for its Google Cloud Platform (GCP) that allows to create, use, rotate, and destroy symmetric encryption keys. Although the new Cloud Key Management Service (KMS) is integrated with Google's Cloud Identity Access Management and Cloud Audit Logging, keys managed using KMS can be also used independently.

  • Google Pushing for HTTPS

    Google wants to push for HTTPS everywhere with a combination of deprecating existing Chrome features in non-secure sites, as well as new features only supported in HTTPS.


Is your profile up-to-date? Please take a moment to review and update.

Note: If updating/changing your email, a validation request will be sent

Company name:
Company role:
Company size:
You will be sent an email to validate the new email address. This pop-up will close itself in a few moments.