* readme: Fix Cryptanalysis of block ciphers
The link was already on web.archive. However, we need to pin to
exact date because the latest snapshot is for 404 page.
* Fix Cache Attacks and Countermeasures
Here we have eprint link so let's use it. It's fast, free and has
HTTPS support :)
* Fix On the Security of Public Key Protocols
Unfortunately, the link is not working anymore and there are no free
resources with this work. So, let's use web.archive
* Use https for How to construct zero-knowledge proof
Maybe it will help CI because as for now it fails with this link.
* ci: Update lychee version
* Fix A Method for Obtaining Digital Signatures
The previous link was used unsafe TLS features, so lychee was not
happy about it.
* As always, replace the link with web.archive
* Run link check every month
Let's deal with the batch of broken links every month instead of
spending time fixing one link every week. I think that our readers
will barely notice a few broken links before we fix them.
* Fix crypto.cs.mcgill.ca
I don't know why it is down, so, as always, replace it with the web
archive.
* Okay, add also http://
In both cases it works locally, but github doesn't seem to like it.
PAKE algorithms have a long and unfortunate history. The task is
simple - exchange keys with a password or shared secret mixed in.
There are many requirements, and even more algorithms designed. But
most of them have their drawbacks, weak points, or are vulnerable
to particular attacks. This is still an area that requires research,
and this paper captures it.
So, I think it's a worthwhile addition as it raises awareness and
interest in such studies.
Co-authored-by: Pavlo Farb <pavlo@cossacklabs.com>
* Add entries about ECDSA leakage
The ECDSA is fragile: even small leakages in nonce can help
recovering the private key. The leakage could be a result of a
faulty RNG or timing leak. The most unfortunate part is that this
fact is generally unknown. Therefore, I think this is a valuable
addition.
* Fix link with garykessler.net
Replace it with web archive.
Co-authored-by: Pavlo Farb <pavlo@cossacklabs.com>
* Fix actions so they run only once on Sunday
* Increase timeout to prevent false positives
Set timeout to 60 seconds, instead of default 20.
* Pin lychee version
It is recommended by the lychee-action authors:
https://github.com/lycheeverse/lychee-action#security-and-updates
* Add action for checking links every sunday
* Add workflow that check link on every PR
* Replace link to Post-quantum with web-archive
It is actually working, but it doens't allow automatic tools like
lychee, returning 403.
Som replace this link with the web-archive.
* Replace links that don't respons with web.archive
* Replace badge link
The old gave a TLS error for some reason.
Update broken links for the following resources:
* Proofs of Knowledge
* How to Prove a Theorem So No One Else Can Claim It
* Knowledge Complexity of Interactive Proof Systems
* Zero Knowledge Protocols and Small Systems
* Handbook of Applied Cryptography
[id0-rsa crypto challenges](https://id0-rsa.pub/) is a good web for both start learning cryptography throught examples and strengthen knowledge. It covers from Caesar to AES in symetric encryption, the basis of the RSA cryptography, pseudo random number generation, hashing... And after a problem is solved, you can read other users writeups.
