Simple Steps to Data Encryption by Loshin Peter
Author:Loshin, Peter
Language: eng
Format: epub
ISBN: 9780124078826
Publisher: Elsevier Science
Published: 2013-05-01T16:00:00+00:00
“Did you see those last three lines there? The digital signature checked out, and it says that Sam Mallory, me, signed it--but these three lines tell you that GnuPG thinks you have no reason to believe that the ‘signature belongs to the owner’.”
Slamming down his drink, Sam turns to Bob and says, “Listen, right now I’m here to tell you that that is my public key; the fact we’re sitting here having this conversation should be enough for you to trust me. So you will sign off on my key (which I’ll show you in a minute). But for anyone else, you’re going to need to check credentials like passport or drivers license, at least, before you trust the signature. Got that?”
“Sure. If you sign someone’s public key, I should trust that key, too?” asks Bob.
“You trust it if I tell you to trust it--and don’t trust any key that hasn’t been signed by me,” replies Sam. “Listen, the web of trust idea is pretty cool, it’s just not really taken off in the same way that, say, Facebook has taken off with users. It’s kind of like LinkedIn5 in how it gives you access to other people’s networks. But with web of trust, you’re certifying how trustworthy you judge someone to be. If it’s a stranger whose passport you’ve checked, that’s one thing--but if it’s your cousin or lifelong friend or long-time work buddy and you check their passport, you might give that person’s key a higher level of certification; if you’re confident they are serious about security, you might even trust other people who they trust.”
“But, as cool as the web of trust is, some people never bother with it. You can still use GnuPG without thinking about web of trust--it’s easy if you don’t have many keys and get them mostly in person. Or else if you keep in mind that using a key you pulled off some web site may or may not be the key for the person it purports to be.” Sam pauses, then says, “Just remember to be careful about who you trust, and whose keys you trust.”
Download
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.
| Cryptography | Encryption |
| Hacking | Network Security |
| Privacy & Online Safety | Security Certifications |
| Viruses |
Effective Threat Investigation for SOC Analysts by Yahia Mostafa;(6510)
Practical Memory Forensics by Svetlana Ostrovskaya & Oleg Skulkin(6226)
Machine Learning Security Principles by John Paul Mueller(6196)
Attacking and Exploiting Modern Web Applications by Simone Onofri & Donato Onofri(5866)
Operationalizing Threat Intelligence by Kyle Wilhoit & Joseph Opacki(5831)
Solidity Programming Essentials by Ritesh Modi(3998)
Microsoft 365 Security, Compliance, and Identity Administration by Peter Rising(3640)
Operationalizing Threat Intelligence by Joseph Opacki Kyle Wilhoit(3368)
Future Crimes by Marc Goodman(3345)
Mastering Python for Networking and Security by José Manuel Ortega(3344)
Mastering Azure Security by Mustafa Toroman and Tom Janetscheck(3327)
Blockchain Basics by Daniel Drescher(3292)
Learn Computer Forensics - Second Edition by William Oettinger(3137)
Mobile App Reverse Engineering by Abhinav Mishra(2879)
Mastering Bitcoin: Programming the Open Blockchain by Andreas M. Antonopoulos(2868)
Incident Response with Threat Intelligence by Roberto Martínez(2854)
The Code Book by Simon Singh(2823)
From CIA to APT: An Introduction to Cyber Security by Edward G. Amoroso & Matthew E. Amoroso(2779)
Building a Next-Gen SOC with IBM QRadar: Accelerate your security operations and detect cyber threats effectively by Ashish M Kothekar(2683)
