Latest Crypto related questions

I've come across this particular design where I have one file encrypted.

Then multiple people may want to access the file and I want to generate an individual key for each person, but each individual key should be able to totally decrypt the file.

Is there some encryption design that allow that?

Regards

I've found ECDH and ECIES, but those both require Alice to know Bob's public key and Bob to know Alice's public key in order to derive a shared secret. Now assume Bob knows Alice's public key $A$, but Alice does not know Bob's public key $B$. Is there an Elliptic Curve encryption scheme where Bob can encrypt a message for Alice using just their public key $A$ which Alice can then decrypt without needing B ...

I have the following pseudo code considering a ransomware methodology to encrypt files:

cFile = AESEncrypt(sessionKey, pFile, OFB, iv)

keyBlob = AESEncrypt(masterKey, sessionKey, OFB, iv)

ivBlob = AESEncrypt(masterKey, iv, ECB, null)

Aes 128 bytes is used for sure.

I don’t have information about master key, session key or ivblog or keyblog. Ivblog and keyblog are used to encrypt /decrypt cfile. ...

I am an FPGA engineer and my last experiences were related to digital communication implementation. I am about to start an experience for the cryptography market.

In digital radio communication, FPGA technology is common and viable in "niche" markets: modulators for broadcast or space telemetry for example. Some are not viable for FPGAs but for ASICs as GPS receivers or mobile baseband processing ...

Can the combination of X25519 ECDH and NTRU in OpenSSH 9.X defend me against quantum attacks?

Why is it believed that this combination is secure?

In the book we have talked about sEUF-CMA-secure with verification oracle being equivalent to sEUF-CMA-secure without verification oracle. The proof idea is simple. One direction is trivial. The other direction is proofed by this idea. For every adversary on sEUF-CMA-vq with max q-Verify requests, we can just guess at which Verify request the EUF-CMA-vq adversary is succesful. So we can simulate a verif ...

Is there a possibility to encrypt a message that is a concatenation of an encrypted message and another message ( encrypt_message + message )?

It's common knowledge that the NSA, before publication of DES, tweaked the algorithm to improve its resistance against differential cryptanalysis. Schneier writes some of this on his blog, for example ("It tweaked the algorithm, and it cut the key size by more than half.", https://www.schneier.com/blog/archives/2004/10/the_legacy_of_d.html).

However, information about the exact changes the NSA performed ...

I have a rough idea of how STARK work, but I want to know which part makes them quantum secure. Is it because when the prover generates the proof they use the random number from the Merkle root, which cannot be guessed by a quantum algorithm?

is Client Puzzle a challenge-response variant of Proof-of-work? I am kind of new to crypto, sorry if the question is kind of dumb. If it's not can you give examples of algorithms that implement the idea of a challenge-response variant of proof of work? And can you explain why the Client Puzzle is not challenge-response, please?

Is there a way to get flexible parameters in Seal for batching? The issue is that for polynomial mod $n=4096$, the function I am computing has a multiplicative depth of $3~4$, to handle noise growth I am trying to set smaller plaintext modulus $t~10$ bits but I keep getting an error that there are not enough primes. It looks like setting $t$ to $17$ bits is a sort of minimum requirement for batching, be ...