Jim Alfred on Mobile Security
Okay... a bit of fair disclosure... I used to work for Certicom and I have a little bit of Certicom stock left in my portfolio, so I'll be the first to admit I'm not completely unbiased.However... I think there's widespread agreement in the crypto world that Elliptic Curve Crypto is a pretty valueable addition to your aresenal of information security weapons. In an article recently published by Dr. Dobb's (Ensuring Strong Security for Mobile Transactions) author Jim Alfred provides a nutshell view of mobile security. Jim is, of course, a current Certicom employee, so you might not be surprised to discover that ECC factors into his view of "good security." But it's good to see Certicom, which seems to make most of it's money licensing low-level crypto algorithms talking about the complete device security chain, from bottom to top.
One of the drawbacks of ECC is, however, that is't not nearly as easy to explain as RSA or Diffie-Hellman. So any time I talk about ECC, I also like to point to certicom's Elliptic Curve Tutorial. If you don't know anything about ECC, this is a good place to start.
Tags: crypto, Certicom, mobile
0 Comments:
Post a Comment
<< Home