Learn how the good guys implement cryptography and how the bad guys exploit it.
Everything we do in the digital world is protected by cryptography. But when pure math and algorithms are implemented in code, vulnerabilities emerge and can be exploited by hackers and bad actors.
Hacking Cryptography details dozens of practical cryptographic implementations and then breaks down the flaws that adversaries use to exploit them.
In
Hacking Cryptography you’ll find unique guidance for understanding how cryptography has failed time and again, including:
- DUAL_EC_DRBG random number generation using backdoored constants
- Exploiting the RC4 stream cipher, as used in WEP
- Block ciphers for padding oracle attacks and manipulation of initialization-vectors
- Exploiting hash functions by using length extension and rainbow table attacks
- Implementing RSA key generation vulnerable to short private exponents and exploiting it using the Weiner attack
- Exploiting PKCS1.5 padding by using Bleichenbacher's signature-forgery attack
In
Hacking Cryptography you’ll learn the common attack principles used against cryptographic security, and how to spot the implementation errors that make cryptography unsecure. Throughout, you’ll explore historical examples where popular cryptography has failed, such as the root key compromise for Sony PlayStation 3, and see what impact those failures have had on modern cryptography.