Hacker Newsnew | past | comments | ask | show | jobs | submit | orahlu's commentslogin

This was presented at SSTIC 2015.

paper (in french): https://www.sstic.org/media/SSTIC2015/SSTIC-actes/injection_... video (in french): http://static.sstic.org/videos2015/SSTIC_2015-06-03_P09_AGRE...


> Ad delivery networks, and google is one of the biggest, have one core business: delivering ads

It's made by an alphabet subsidiary, not google. Google are the bad ad-selling guys, they're the good guys. 100% true!


One drawback is that deleted files take disk space permanently.


Uses well-audited GPG, high level crypto functions which makes it difficult for the developer to get the crypto wrong.


These has been a security audit, ordered by the french ANSSI (French government IT Security agency). This audit resulted in a "CSPN" certificate, which basically means that 35 days were spent by a competent auditor (Thales), and no important vulnerabilities were found in KeePass 2.0 Portable.

Report: http://www.ssi.gouv.fr/uploads/IMG/cspn/anssi-cspn_2010-07fr...


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: