Crypto System

[Ajan]

A strength of the crypto system is based on the types of languages it uses or the number of languages it uses, besides the dependency of the key or algorithm being used.

I've come across couple of case studies and equations that talk abut the unicity distance. A paper talks about the unicity distance being compared to four different languages English, Telugu, Hindi and Kannada. 

However, I haven't come across any case study or link explaining the algorithm or talking about making use of different languages as an example of a crypto system.

Can you suggest a few links that I can refer to

--
Regards,

Ajan Kancharla

[Blade snipes]

Hello NULL,

 This is Abhinav. I have started working on web services and want to create something to secure web services......if any one of you can provide me some data or even a link which provides me with what major market players are in the web services security market and what are there major issues regarding web services security faced by those players.....thanks in advance.....

--
With Regards,

Abhinav Nath Gupta

[nm04 acer]

hi all,

         when it comes to security there are many players who are developing products to secure web content. Major one's are like Juniper, Fortinet, Sonicwall, Cisco, all of them developed a technology universally called as UTM (unified threat management).

--
Get ready for the Dilli Shakedown!
nullcon security conference Delhi Sept 26-29th 2012
http://nullcon.net
 
null - Spreading the right Information
null Mailing list charter: http://null.co.in/section/about/null_list_charter/
 
 

[Ajan]

I was wondering, how did Web Security come in a "Crypto System's" question. haha! But, good information guys.

On Mon, Aug 27, 2012 at 6:24 PM, Praveen Kumar K <indsu...@gmail.com> wrote:

Hi,

Juniper, Fortinet, Sonicwall, Cisco are firewall manufacturers. They are not leaders on securing web.

For web security it should start from secure SDLC.
web application firewall
vulnerability assessment
penetration testing
os hardening
Network hardening

--
Get ready for the Dilli Shakedown!
nullcon security conference Delhi Sept 26-29th 2012
http://nullcon.net
 
null - Spreading the right Information
null Mailing list charter: http://null.co.in/section/about/null_list_charter/
 
 

--
Regards,

Ajan Kancharla

[Kumar]

Hi Praveen,
   Cisco and Juniper do have web security ....i guess even F5 have it ....not sure about Fortinent and Sonicawall .....however the solution is different from just encrypting and decrypting at two ends .....you can get more info about scansafe product which cisco has...

On Mon, Aug 27, 2012 at 6:24 PM, Praveen Kumar K <indsu...@gmail.com> wrote:

Hi,

Juniper, Fortinet, Sonicwall, Cisco are firewall manufacturers. They are not leaders on securing web.

For web security it should start from secure SDLC.
web application firewall
vulnerability assessment
penetration testing
os hardening
Network hardening

 

On Sunday, August 26, 2012 1:37:19 PM UTC+5:30, Ajan wrote:

[nm04 acer]

hi praveen,

                 i think that UTM technology has it. 

Abhinav,

              you looking to develop something on your own to secure the web services?

what kind of services ? are you planning to start a web server ?

cheers,

nm

[Praveen kumar]

Hi,

Yes UTM has built in IDS/IPS , Content filter, Firewall bundled together. This works good for small business however UTM can not safeguard your web application from web aap attacks like XSS, Sql injection etc.


Scansafe and Ironport from cisco are good web content filter product. I have supported both these products. Again this will not prevent web app attacks. This can be used to prevent users from accessing malicious sites.

[nm04 acer]

Yes i agree ,but , web app attacks are possible because of the flaw in app code. If you code good, attacks can be prevented. And besides i think UTM can detect unusual string patterns. Correct me if I am wrong.

[Praveen kumar]

It depends on your IT setup. Usually these UTM boxes are used inline basically as a firewall with additional features of IDS and content filtering.

[Ajan]

Ademello,

Thank you for responding to the original question. I've been waiting for more than 5 days to see if anyone would even read the original thread. 

Something to think about and research.

On Fri, Aug 31, 2012 at 1:52 PM, ademello <adem...@gmail.com> wrote:

Lots of good comments on this thread. Palo Alto Networks has quickly emerged as a leader in web application security (that is secure access to SaaS-type applications delivered over the web). Why? Because unlike ScanSafe, and others, they did not get their start trying to be a network-level McAfee. There are dozens of other vendors, many interesting, but today you can build your own "web security" layer using a variety of open source technologies.

To the original poster, language has always been useful in developing ciphers. In fact, after numbers, you could easily say that ciphering has its roots in language. However, if you look at any modern crypto system, there are few if any that use language to generate a random key. The reason for this is we have many other sources of "likely random" roots, which can be mathematically proven.

This reminds me of an old joke about a group of university researchers who developed a cryptographic spoken language that only they could speak... and nobody could understand, themselves included. < Yes, nerd humor here!

On Sunday, August 26, 2012 1:37:19 PM UTC+5:30, Ajan wrote:

--
Get ready for the Dilli Shakedown!
nullcon security conference Delhi Sept 26-29th 2012
http://nullcon.net
 
null - Spreading the right Information
null Mailing list charter: http://null.co.in/section/about/null_list_charter/
 
 

--
Regards,

Ajan Kancharla