Blog ►

List News Background articles Commentaries Development/Java IT Security Computer Guides & Tips

HissenIT Blog: Everything around IT Security, Cryptography, Encryption

Also with a focus on Secure Programming, Web Application Security and Security Testing (Pentesting).

You can follow this blog through this news feed or our social media channels.
Previous publications can be found in the publication archive.

Data Security through Cryptography - Interview with Frank Hissen

Added on 06/09/2019 by Frank Hissen

IT Security Expert and Computer Scientist Frank Hissen talking about cryptography and how cryptography helps to protect our data security during our private and professional everyday life. continue

Internet Security: Why cryptography (and encryption) is essential

Added on 06/03/2019 by Frank Hissen

Internet connections are no direct lines. Every intermediary component holds full access to your Internet traffic. That means: read, alter, redirect, discard. Or put another way: manipulate, record, log, render unusable. continue

CrococryptFile still in active development - Wipe function and more in preparation

Added on 08/08/2018 by Frank Hissen

With this quick post, we wanted to let users know that CrococryptFile is still in active development. We are busy with other (commercial) projects, hence, CrococryptFile has to wait a little bit for its new version. The new version will include the often requested wipe function, to securely delete encrypted files. continue

HissenIT has reached more than 10,000 online students worldwide with in-depth IT security courses on Udemy

Added on 05/16/2018 by Frank Hissen

With more than 14 years of IT security and security training experience, HissenIT publishes also online trainings in the areas of application security, encryption and cryptography. Information technologies are the essential part of any business and a huge part in our private life. Hence, awareness of IT security on the technical level has become essential. Increased numbers of reports on cyber attacks and system vulnerabilities are one proof. continue

Computer security – Not "Update Flash Player" but "Remove Flash Player"

Added on 04/11/2018 by Frank Hissen

In light of current events, many IT news pages create headlines like "Patch your Flash Player, now!". This happens – again and again – with regularity when a new vulnerability in Adobe Flash gets out or a corresponding security patch or update is published... continue

Attention when choosing an Encryption solution - Weakness in Password manager of Firefox and Thunderbird

Added on 03/21/2018 by Frank Hissen

An "IT security researcher" recently engaged attention on a seemingly older, known weakness in Mozilla's password managers of Firefox and Thunderbird. Core problem is the way of dealing with the master password (keyword: secure password hashing). We recommend for years to pay close attention - when choosing an encryption software - which password hashing procedure is used. Otherwise, you eventually have no real data encryption at all. We try to provide some clear background information. continue

HissenIT CrococryptMirror Pro v1.5 released - Software for encrypted File Backups

Added on 02/19/2018 by Frank Hissen

HissenIT introduced the Pro version of the file and folder backup encryption tool CrococryptMirror. To finance the freeware project, the new Pro version costs a small fee. New features of CrococryptMirror will always be introduced in the Pro version first. Version 1.5 received a massive performance enhancement due to internal optimization. Also, the UI was revised and several stability fixes were added. Still, the software works independent and does not require an online connection or registration. continue

CrococryptFile Offline Training Course as free Windows Software available

Added on 05/26/2017 by Frank Hissen

HissenIT published the existing and freely available online video training course "File Encryption Basics and Practices with CrococryptFile" now also as offline version as a portable Windows software - using its in-house application framwork. Since it contains HD video, the portable extractor setup is ~125MB in size and the extracted application needs ~250MB of disk space. continue

Open-source File encryption software CrococryptFile 1.5 released - New crypto suites and crypto settings

Added on 01/13/2017 by Frank Hissen

HissenIT released a new version of the file archive encryption tool CrococryptFile. Three new crypto suites using Twofish, Serpent, and Camellia are included. Moreover, the hash iteration count in case of password-based encryption following PBKDF2 is now selectable by the user (which is backward compatible). continue

File and Folder encryption software CrococryptMirror 1.4 released - New password features and stability improvements

Added on 01/10/2017 by Frank Hissen

HissenIT released a new version of the file and folder encryption tool CrococryptMirror. It includes a password change function and - as requested by many users - a command-line option to provide the keyfile password. Although not recommended, this function can be used to provide the password, e.g., in scripts for automation purposes. The feature can also be used to "store" the keyfile password. continue

"IT Security for Project Managers" now also as Kindle e-Book

Added on 09/18/2016 by Frank Hissen

Our Whitepaper/Guideline is now also available as e-book for Amazon's Kindle (English/German). continue

German PCWorld counterpart recommends CrococryptFile in online article

Added on 09/18/2016 by Frank Hissen

In the article called "Security Tools: Secure Windows 10", CrococryptFile is shortly described and recommended. continue

IT Security for Project Managers: About implementing security in IT projects properly – A Guideline

Added on 05/23/2016 by Frank Hissen

Despite many accepted IT security standards, many IT projects fail at IT security. What needs to be considered, what mistakes and pitfalls to avoid. continue

HissenIT published Application Security and Cryptography Online Trainings

Added on 02/04/2016 by Frank Hissen

Reports on cyber attacks have increased tremendously over the last years. Information technologies are the essential part of any business and a huge part in our private life. Hence, awareness of IT security on the technical level has become very important – for developers and decision makers alike. continue

Video Tutorial: File Encryption Basics and Practices with CrococryptFile

Added on 02/01/2016 by Frank Hissen

In this course, you will learn how to use CrococryptFile, the open-source file encryption solution. Learn what encryption means on the technical level – as a background information to choose the right file encryption method for your case. If you care about privacy and if you are willing to do something about it, you are already on the right track. This applies for enterprise and private users alike. continue

CrococryptMirror 1.2 released – 32bit support and bugfixes

Added on 01/18/2016 by Frank Hissen

We released an update of CrococryptMirror as version 1.2. This relates to the setup and the portable version. Beside some bugfixes, we added a 32bit version for Windows XP and above. continue

Say no to plain passwords: Secure Password Hashing

Added on 11/02/2015 by Frank Hissen

Plaintext passwords should not be used anymore. You are probably using a web shop software framework that takes already care of this. Most application frameworks in the world do not use plain passwords anymore but password hashes instead. continue

Encryption background: What is key wrapping?

Added on 10/07/2015 by Frank Hissen

Key wrapping is a simple technique in cryptography that is used in almost all common encryption technologies. continue

Open-Source and Security: Why Open-Source is not insecure

Added on 10/06/2015 by Frank Hissen

Recently, I received the question if it would not be dangerous, when the source code for an encryption software is publicly available. An answer... continue

Password-based Encryption made easy

Added on 09/28/2015 by Frank Hissen

Here is a simple example for using strong password-based encryption for non-cryptographers with CrococryptLib. continue

Easy encryption for Android apps – CrococryptLib 1.4 released

Added on 09/25/2015 by Frank Hissen

CrococryptLib 1.4 for Android released: A library for mobile apps that allows the most easiest integration of password-based encryption, hashes and other cryptography operations. No in-depth cryptography knowledge is required to integrate encryption into Android apps. continue

The easiest way to integrate encryption into enterprise applications – HissenIT released CrococryptLib

Added on 08/24/2015 by Frank Hissen

HissenIT recently released CrococryptLib for Java: A library for Java back-end, desktop and mobile applications that allows the most easiest integration of encryption and other cryptography operations. No in-depth cryptography knowledge is required to integrate encryption into enterprise applications or software products. continue

CrococryptMirror and CrococryptFile ready for Windows 10

Added on 07/31/2015 by Frank Hissen

We were able to test CrococryptMirror and CrococryptFile on Windows 10 successfully. Both applications run without problems in their respective current versions. continue

Introducing cloaked (headerless) files - CrococryptFile 1.3 released

Added on 07/02/2015 by Frank Hissen

Today, we released CrococryptFile 1.3 as free download. This version includes a new crypto suite: "cloaked" archives. This kind of suite encrypts archives without headers. What this exactly means, we explain in the following. continue

CrococryptFile 1.2 released – GPG/OpenPGP keys are now supported

Added on 06/25/2015 by Frank Hissen

We released CrococryptFile 1.2 today. This version includes support for GPG/OpenPGP keyrings which can be used as an additional crypto suite. Multiple recipients for an encrypted archive are also supported. continue

Container vs. File-by-file Encryption OR CrococryptFile vs. CrococryptMirror

Added on 06/15/2015 by Frank Hissen

This article is about the differences of the encryption schemes between a container and a file-by-file encryption solution and the resulting privacy implications. At the end, you will see that it is also a matter of taste and application context. continue

CrococryptFile – GnuPG keyfile support as Kickstarter project

Added on 06/03/2015 by Frank Hissen

Open-source file encryption CrococryptFile as Kickstarter project continue

HissenIT released CrococryptFile – An open-source file encryption software

Added on 05/10/2015 by Frank Hissen

HissenIT recently released an open-source file encryption software called CrococryptFile. continue

About HissenIT's Blog & News

This blog is written by Frank Hissen (Computer Scientist). The majority of posts is about HissenIT, new software and other topics within the areas of software development and IT security.