NSA begins to provide guidance on resisting quantum computer attacks against current cryptographic systems. D-Wave Systems makes 1000-qubit quantum computers available for sale this month. And Microsoft has already deprecated SHA-1 and will start retiring support for certificates using SHA-1 in earnest starting January of 2017. Security planners have both short-term and long-terms tasks to add to their agendas.
PowerShell Protect-CmsMessage and Unprotect-CmsMessage provide an easy way to use RFC 5652 public key encryption of your data. This article gives example PowerShell code, and talks about limitations, issues, problems, error messages, and how to get around some of them.
Server Nano is a headless installation option with Windows Server 2016. This post shows screenshots of Server Nano, including using PowerShell remoting to review the attack surface of Server Nano.
KeePass is a free, open source password manager for Windows, Linux and Mac OS X. KeePass can be scripted with PowerShell to view, add, edit or remove entries. This makes it easy to store secrets like passwords and encryption keys in KeePass for use in PowerShell scripts that need to use these secrets. This little article is just some sample PowerShell code to get you started.
TrueRNG is a hardware-based true random number generator the size of a USB thumb drive. PowerShell and C# can easily access TrueRNG as a COM port. Random bytes from TrueRNG can be fed into the various classes of Math.NET Numerics, including the pseudo random number generators built into Math.NET, for high-speed output.