Tim Moses

About

Tim Moses, Entrust’s Senior Director of Advanced Security Technology, is responsible for Entrust’s research and standards activities. He holds BSc and PhD degrees in electronic engineering and has over 30 years’ experience in industry. He has worked in the field of information security — in both product design and consulting capacities — for the past 20 years. His current research interests include trust solutions for electronic travel documents and browsers. He is the past-chair of the CABForum.

Blog Posts 1-3 of 3

Elliptic-Curve Cryptography, Simplified

March 18, 2014 by Tim Moses     1 Comment

As both standalone and networked computing capabilities continue to grow in-line with Moore’s law, key sizes for the most widely used public-key cryptographic systems have to grow disproportionately fast. This trend makes a switch to elliptic-curve cryptography (ECC) more and more attractive. Unfortunately, ECC has a reputation for being difficult to understand. And this reputation, [Read More...]

Filed Under:
Tagged With:

Dual-EC DRBG Concerns Hit Media Again

December 23, 2013 by Tim Moses     1 Comment

NIST’s withdrawn special publication 800-90A is back in the news. This time, it’s due to an allegation carried by Reuters that RSA Data Security was paid by the NSA to make the dual-EC (elliptic curve) variant the default deterministic random-bit generator algorithm, or DRBG, in its commercial toolkit product. RSA has denied the allegation. Random-bit generation [Read More...]

Filed Under:
Tagged With:

Digital Certificate Revocation – What the Future Holds

April 19, 2012 by Tim Moses     No Comments

When you tell people that revocation doesn’t work, they tend to look at you incredulously: “You’ve got all these solutions: full CRLs, CRL distribution points, delta-CRLs, indirect CRLs, OCSP, stapled OCSP. Surely one of those will work.” That’s the problem, right there. There are so many protocol and configuration choices that no two products or [Read More...]