This article introduces the fundamentals of encryption, compares symmetric (AES) and asymmetric (SM2) algorithms, clarifies the role of HTTPS as a protocol suite, distinguishes hash functions from encryption, and walks through a national‑standard mutual authentication flow using SM2 and SM4.
This article explains OpenSSL’s origins, its role in encryption on CentOS, common use cases such as web servers and database security, provides step‑by‑step installation and upgrade commands, and demonstrates how to generate RSA, SM2, AES, and SM4 keys via the OpenSSL command line and Java alternatives.
Ant Financial's MorseCrypto team secured first place in the 2024 Financial Cipher Cup second‑stage competition by delivering highly optimized SM2, SM3, and SM4 implementations on X86 and ARM platforms that achieve up to 4.3‑times faster verification while meeting strict security and memory constraints.
This guide introduces GmSSL, an OpenSSL‑compatible toolbox that implements China’s national cryptographic algorithms, explains its lightweight and cross‑platform features, and provides step‑by‑step instructions for compiling, installing, and using core commands, SM4/SM3/SM2 operations, and certificate authority workflows.
The article introduces China’s national cryptographic standards—including SM1, SM2, SM3, SM4, SM7, SM9 and ZUC—explaining their origins, key features, implementation details, comparison with international algorithms, and typical use cases such as AD‑WAN, IPsec, and 4G/5G VPDN networks, highlighting their role in enhancing information security.
This article explains how to install pycryptodome (or pycryptodomex) to perform SM2 signing and verification in Python, provides complete code examples, and offers guidance for ensuring compatibility with Java's Bouncy Castle SM2 implementation.
The article analyzes constant‑time computation of the multiplicative inverse in SM2’s prime field, compares the variable‑time Extended Euclidean Algorithm with a constant‑time Fermat‑based square‑and‑multiply exponentiation, optimizes the fixed exponent using add‑chain generation, and shows this reduces multiplications from ~187 to ~41, making inversion the dominant cost in secure SM2 signing.
This article explains why side‑channel attacks threaten SM2, SM3, and SM4 algorithms, describes the vulnerabilities of table‑lookup and double‑and‑add implementations, and presents constant‑time scalar multiplication and selection methods in Go to protect private keys on blockchain platforms.
TencentKona 8.0.4 introduces an SM2/SM3/SM4 JCE provider for Chinese national cryptographic algorithms, parallel G1 Full GC, parallel heap inspection, and various performance enhancements, all demonstrated with a micro‑service encryption example and detailed curl commands for practical use.
