The money side of Clipperz

April 11, 2007

Recently we received several inquiries about our business model. How is Clipperz going to make money? From a security point of view this is a very sensible question to ask. The basic answer is: we really don’t know yet.

business model

Say a final goodbye to SHA-1

January 25, 2007
Slashdot says that NIST is planning to augment and revise the current Secure Hash Standard. Due to recent attacks on the SHA-1 hash function specified in FIPS 180-2, Secure Hash Standard, NIST is initiating an effort to develop one or more additional hash algorithms through a public competition, similar to the development process for the Advanced Encryption Standard (AES). In a recent interview to this blog, Vincent Rijmen of AES fame declared to be working mostly on hash functions: “[…] there are very interesting developments going on in the cryptanalysis of hash functions.

Interview with Tom Wu, inventor of the SRP protocol

January 04, 2007

At Clipperz we are huge fan of cryptography as a tool to empower users and protect freedom, therefore we are beholden to all the people who contributed to the development of this science. Among them a special thanks goes to Tom Wu who invented SRP, the Secure Remote Password protocol, at Stanford University during the late nineties. Today SRP is a widely appreciate authentication method and it is our choice for Clipperz online password manager. Tom Wu was so kind to answer some of our questions about SRP and its chances to gain even more traction in the future.

MyBlackBook, the security issues of a sex log

October 10, 2006

Prof. Eugene Spafford in his latest post talks about MyBlackBook, an unusual web service whose mission is “to provide people with a place to store their sexual history, partners, and experiences in a safe, secure and confidential place”. This New York based venture moved from the assumption that “one out of three people have some kind of sex log” mostly kept on paper. A solution that is hard to maintain and troublesome to protect from prying eyes.


Freenigma, email encryption done right

August 24, 2006

During the last two days I had a chance to test drive Freenigma, the recently released email encryption service for webmail users. What I like more of Freenigma is its “Johnny can encrypt” approach. For the average Johnny, cryptography is insanely complex, while Freenigma makes a point of hiding this complexity under a very simple user interface.