Security hardening for digital wallets
This article discusses security controls that reduce the risk of unauthorized access or misuse, information leakage and unauthorized physical access, mostly.
Posts by Collection
articles
Verifying digital signatures
The verification of digital signatures ensures that a message wasn’t altered and that the sender is the one who ‘signed’ the message, the owner of the key pa...
A brief notion of cryptography
To have a better understanding of what it is and how a blockchain works, one must know a few things about cryptography. Hashes, cryptographic key pairs and d...
Information Security Collection
A collection of documents, standards and regulations to help the information security practitioner.
Verifying digital signatures: Debian Linux
The downloaded copy of the operating system must also have its digital signature verified before installation on a new host or virtual machine.
Debian Verifier
A script that downloads the image and verifies the digital signature and hashes of Debian Linux.
portfolio
Applied Cryptography
What is cryptography and how does it work in the real world? A lecture about Applied Cryptography, written in English and translated to Portuguese.
Cloud: Should I stay or should I go?
A small presentation written in English regarding cloud security.
Information Security Strategic Management
A lecture from my MBA class about information security strategic management, covering compliance, risk management, ISMS frameworks and ISO/IEC standards.
Memory Vulnerabilities
A long lecture written in English showing examples of buffer overflows and other memory vulnerabilities and how to exploit them.
Obscurity as an additional layer of information security. Why not?
A presentation written in English and translated to Portuguese defying the concept of obscurity and how it has been misinterpreted by the security community.
Password-based authentication
A presentation written in English summarizing security best practices for password-based authentication.
Patch and Vulnerability Management
A lecture written in English and translated to Portuguese describing patch and vulnerability management process.