密码学软件博物馆 (CryptoZoo)

---

一、密码学错误

• https://littlemaninmyhead.wordpress.com/2017/04/22/top-10-developer-crypto-mistakes/
• Decrypting the LockCrypt Ransomware - Palo Alto Networks Blog
• Apple 加密核心中验证素数的逻辑缺陷分析
• 椭圆曲线数字签名算法(ECDSA)生成签名中的时序攻击漏洞（CVE-2018-0735）
• Side-Channel Analysis of SM2: A Late-Stage Featurization Case Study

• cryptochief ( from hack.lu 2014 )
• Imagine viewer (DSA fixed $k$)
• DUHK attack
• beast attack
• heartbleed
• random oracle
• key reinstall attack
• cold boot attack
• The DROWN Attack
• Factoring as a Service
• DLogBot
• Weak Diffie-Hellman and the Logjam Attack
• zip attack

二、常见密码学库

high-level crypto library

• cryptlib
• GPGME
• Keyczar
• NaCL
• libsodium

low-level crypto library:

• botan
• crypto++
• tomcrypt
• nettle
• gcrypt
• Windows Crypto APIs

Java Crypto

• Apache Commons Crypto

SSL 库

• OpenSSL/BoringSSL/LibreSSL/GMSSL
• GnuTLS
• NSS
• CyaSSL/WolfSSL
• XySSL/PolarSSL/TropicSSL/mBed TLS
• axTLS
• MatrixSSL
• BearSSL

Lightweight Crypto

• Tinycrypt
• Libhydrogen
• Arduino Cryptography Library
• TinyECC
• A modified version of TinyECC
• TinyECDH
• MicroECC
• Lightweight Crypto Lib

python crypto

• Welcome to pyca/cryptography
• fastecdsa · PyPI

JS crypto

• bitwiseshiftleft/sjcl: Stanford Javascript Crypto Library

misc

• Fast, simple, cryptographically strong random numbers in C++. Experimental.

Obsolete

• RSAREF

Proprietary Crypto

• A Brief Look At North Korean Cryptography

三、常见密码学软件

• putty
• Truecrypt 7.2 (已经停止开发，但是依然很经典)
• Keepass
• OpenVPN
• OpenSSH

四、密码学习题

• CRYPTOCTF
• id0-rsa
• The Cryptopals Crypto Challenges
• Matasano Crypto Challenges - 答案
• Praetorian Tech Challenges: Crypto

五、密码学课程

• An intensive introduction to Cryptography
• 公钥密码学中的数学 V2.0