CryptoGotchas
Cryptography-Guidelines
CryptoGotchas | Cryptography-Guidelines | |
---|---|---|
4 | 5 | |
308 | 392 | |
- | - | |
2.3 | 0.0 | |
2 months ago | over 1 year ago | |
HTML | ||
GNU General Public License v3.0 or later | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
CryptoGotchas
- Study found that developers (still) have a distinct lack of knowledge in understanding the fundamental concepts of cryptography - call for dedicated studies to investigate the usability of crypto APIs
-
I know the mantra is “don’t roll your own crypto”. What are the common pitfalls that people fall into when making their own cryptography programs? For example, why shouldn’t I use the Chacha program that I just wrote?
I present the list of Crypto Gotchas that I've seen in real world code. All of these mistakes have happily many times and broken systems. (They also generally assume that your underlying cryptography is properly built but you still get things wrong.)
-
How to learn cryptography?
My Crypto Gotchas: Getting Started page is a list of resources designed to get people into cryptography. I hope that it is helpful.
- Advice on self-learning crypto
Cryptography-Guidelines
What are some alternatives?
Top10 - Official OWASP Top 10 Document Repository
blake3 - An AVX-512 accelerated implementation of the BLAKE3 cryptographic hash function
portable-secret - Better privacy without special software
orion - Usable, easy and safe pure-Rust crypto
crypto101
edgetk - 🔒 EC Integrated Security Suite written in Go
black - The uncompromising Python code formatter
VbAsyncSocket - Sockets with pure VB6 impl of TLS encryption
sessionKeys - A tool for the deterministic generation of unique user IDs, and NaCl cryptographic keys from a single username and high entropy passphrase.
scratch-cryptography-library - Modern cryptography primitives implemented in Scratch, via Boiga
python-fpe - FPE - Format Preserving Encryption with FF3 in Python
CryptoSwift - CryptoSwift is a growing collection of standard and secure cryptographic algorithms implemented in Swift