supaskills
Sign InStart Free
Quickstart
SkillsPowerPacksPricingSkillStreaming ✦

Features

Skill APISkill CollectionSupaScore

Resources

BlogBenchmarkChangelogFAQAPI DocsOpenClawChatGPT
← Back to Skills
SecurityEngineeringPlatinum

Need expert advice on implementing secure cryptography in software systems.

Cryptography Implementation Advisor

Encryption, TLS, Key Management, Post-Quantum

1 activationsadvancedv5.0

Best for

  • Selecting AES-GCM vs ChaCha20-Poly1305 for specific performance constraints
  • Designing envelope encryption architecture with AWS KMS for multi-tenant SaaS
  • Configuring TLS 1.3 cipher suites for FIPS 140-2 compliance requirements
  • Implementing certificate pinning alternatives using Certificate Transparency

What you'll get

  • Detailed encryption architecture with specific AWS KMS integration patterns, key rotation schedules, and envelope encryption implementation using proven libraries
  • TLS configuration with exact cipher suite recommendations, OCSP stapling setup, and certificate management automation using Let's Encrypt/ACME
  • Comprehensive key management strategy with HSM integration, key escrow procedures, and compliance mapping for specific regulatory requirements
Expects

Specific technical requirements including data sensitivity, threat model, performance constraints, compliance needs (FIPS, PCI DSS, HIPAA), and deployment environment details.

Returns

Concrete implementation recommendations with specific algorithms, key sizes, library choices, configuration examples, and architecture patterns following proven cryptographic best practices.

What's inside

You are a Cryptography Implementation Advisor. You hunt for cryptographic failures that slip past code review because they're not obvious or because the engineer trusted a default that turned out to be dangerous. - **You start by extracting the actual threat model and data longevity, not by recommen...

Covers

What You Do DifferentlyMethodologyWatch For
Not designed for ↓
  • ×Creating custom cryptographic algorithms or novel encryption schemes
  • ×Performing cryptographic mathematical proofs or academic research
  • ×Reverse engineering or breaking existing cryptographic implementations
  • ×Providing legal advice on cryptography export control regulations

SupaScore

89.9
Research Quality (15%)
9.1
Prompt Engineering (25%)
8.95
Practical Utility (15%)
8.8
Completeness (10%)
9.4
User Satisfaction (20%)
9
Decision Usefulness (15%)
8.85

Evidence Policy

Standard: no explicit evidence policy.

cryptographyencryptionkey-managementtlshashingdigital-signaturespost-quantumkmshsmaesfipscertificate-management

Research Foundation: 7 sources (4 official docs, 2 industry frameworks, 1 academic)

This skill was developed through independent research and synthesis. SupaSkills is not affiliated with or endorsed by any cited author or organisation.

Version History

v5.03/25/2026

v5.5 distilled from v2 via Claude Sonnet

v2.02/21/2026

Pipeline v4: rebuilt with 3 helper skills

v1.0.02/15/2026

Initial release

Works well with

API Security HardenerPlatinumAuthentication & Authorization ArchitectPlatinumContainer Runtime Security ExpertPlatinumSecrets Management AdvisorPlatinumZero Trust Access PatternsPlatinum

Need more depth?

Specialist skills that go deeper in areas this skill touches.

Penetration Testing GuidePlatinumThreat Modeling AdvisorPlatinumSecurity Architecture ReviewerPlatinum

Common Workflows

Secure API Implementation

End-to-end secure API development from design through cryptographic implementation to security hardening and access control

api-design-architectcryptography-implementation-advisorAPI Security HardenerAuthentication & Authorization Architect

© 2026 Kill The Dragon GmbH. This skill and its system prompt are protected by copyright. Unauthorised redistribution is prohibited. Terms of Service · Legal Notice