Elliptic curve cryptography (ECC) is an approach to public-key cryptography. Its security is based on the complexity of discrete logarithm problem. ECC allows the use of a special format of digital certificates called implicit certificates. An implicit certificate has the characteristic of having very small size which make them very useful in resource constrained environments such as embedded sensor devices.

This article provides an overview of the flow for deriving and delivering implicit certificates by a certification authority.

→ Read more...

This is a howto for compiling the ope-source WPA2 supplicant 'wpa_supplicant' for the Windows OS.

→ Read more...

More and more wireless access networks are adopting WPA2, the latest wireless network security standard. This howto explains how to configure and run a WPA2 supplicant (wpa_supplicant) with EAP-TLS authentication on your wireless network device.

→ Read more...

This is a howto for creating a wireless access point using a FreeBSD computer equipped with a wireless network interface.

→ Read more...

We have a cable connected to port 7 of the interface number 2 of a Foundry Bigiron switch. We want to setup this port and connect it to a specific VLAN. These are the steps.

→ Read more...

This is a note that explains how to add a new IPv6 DNS zone into a running DNS server.

→ Read more...

This document is a step by step tutorial for establishing an IPv4 tunnel secured with IPSec for encapsulating IPv6 traffic. The tunnel allows a host to connect to a router, establish a secure IPSec tunnel, then use that tunnel to receive router advertisements and configure a global IPv6 address and from there, connect the the IPv6 Internet.

→ Read more...

This document describes howto use rsync and the required configuration to have duplication of a cvs tree in a secondary cvs server for backup. The secondary cvs server will use rsync over ssh (public key based auth) to synchronize with the primary cvs server.

→ Read more...

Sharity is a software package that runs on Unix machines and allows you to mount shares exported by Windows (NT, 95, for Workgroups, etc.), OS/2, samba etc. in your filesystem. It's NOT an ftp-like client like the smbclient program distributed with samba, it really mounts the shares in your filesystem just as NFS does. Since the major release 2, Sharity supports browsing (like the Windows “Network Neighborhood”) and has a GUI for the configuration. This howto explains how to use sharity to access Windows partitions from FreeBSD. The same procedure should apply to similar operating systems.

→ Read more...

This is a simple howto for manipulating PKI SSL certificates using Openssl.

→ Read more...