-
Practical Advice for PQC Migration for TLS 1.3
Numerous blogs and articles are urging security professionals to start migrating to quantum-resistant algorithms immediately. This urgency was heightened on August 13, 2024, when NIST finalized the FIPS 203 (ML-KEM), FIPS 204 (ML-DSA), and FIPS 205 (SLH-DSA) standards. In this article, I present a simplified example of a client establishing a TLS 1.3 connection to…
-
What You Need to Know About “Harvest-Now, Decrypt-Later” Attacks
As quantum computing leapfrogs at great speed, the spotlight is now on post-quantum cryptography (PQC). Recently, NIST released the first three PQC encryption algorithm standards, urging organizations to test the new algorithms and prepare their cryptographic infrastructures for the inevitable shift to quantum-resistant methods. This push for PQC readiness is driven by a growing concern…
-
Friends don’t let friends reuse nonces
By Joe Doyle If you’ve encountered cryptography software, you’ve probably heard the advice to never use a nonce twice—in fact, that’s where the word nonce (number used once) comes from. Depending on the cryptography involved, a reused nonce can reveal encrypted messages, or even leak your secret key! But common knowledge may not cover every…
-
Microsoft Is Adding New Cryptography Algorithms
Microsoft is updating SymCrypt, its core cryptographic library, with new quantum-secure algorithms. Microsoft’s details are here. From a news article: The first new algorithm Microsoft added to SymCrypt is called ML-KEM. Previously known as CRYSTALS-Kyber, ML-KEM is one of three post-quantum standards formalized last month by the National Institute of Standards and Technology (NIST). The…
-
Best family calendar app for Android | Desktop | iPhone.
Managing your own busy schedule on top of your family’s sometimes seems impossible. Luckily, this is where a family calendar app is there to help you keep track of upcoming events and meetings. In this guide, we look at the best family agenda to use on any device (iPhone / Android / Desktop) and what…
-
2024: The year of growth for Tuta
One could call 2024 the year of growth for Tuta! From the launch of post-quantum cryptography for email, to a completely new look and feel with a beautiful new website, to an encrypted calendar app for Android and iOS, to the opening of our second office, 2024 has been packed with exciting developments. We’d like…
-
UI Improvement for Tuta Calendar
If you’re anything like us, your calendar app is your lifeline, and by the way, a private one. It’s where you organize everything—from work meetings to social gatherings—and sometimes, it feels like your entire life is neatly packed into those little squares. But, let’s be honest, even the most feature-packed calendar apps can get a…
-
Explanation on recent DDoS attacks & why we do not use third-parties for mitigation.
At Tuta we are building a privacy-first alternative to big tech offerings so that everyone can protect their data online by sending encrypted emails and sharing encrypted events with Tuta Mail and Tuta Calendar. This brings our service to the forefront of all kinds of adversaries. As a consequence, Tuta is regularly being attacked with…
-
How to delete your Yahoo email account (on Android | iPhone | PC)
Yahoo Mail is not known to have the best security or top privacy protections so it continues to lose popularity in 2024. Find out why it’s time to delete your Yahoo account – and how you can do so – easily and quickly! In this guide, we walk you through the steps needed for deleting…
-
Encryption is non-negotiable: open letter to EU to not undermine privacy.
At Tuta we fight for your right to privacy with encryption. But the EU is still discussing policies and law enforcement demands that threaten to break encryption. If the EU continues down this path, we at Tuta are given two choices – compromise our quantum-safe encryption, or relocate to a region that values and safeguards…