-
Listen Now
EPISODE 147
Broadcast Date:
February 5, 202112 minutes
Podcast Feb 05, 2021Root Causes 147: Google Titan Secure Key Attack
A new attack allows cloning of the Google Titan secure key. we describe this attack and its implications for Titan and other secure keys.
-
Listen Now
EPISODE 137
Broadcast Date:
December 21, 202031 minutes
Podcast Dec 21, 2020Root Causes 137: SolarWinds Supply Chain Attack and Digital Identity
The SolarWinds supply chain attack i includes unusual manipulations of digital identity and certificates. We explore these aspects of the attack.
-
Listen Now
EPISODE 132
Broadcast Date:
December 4, 202017 minutes
Podcast Dec 04, 2020Root Causes 132: Examining MFA Through Soft Tokens
In our ongoing examination of MFA, we examine authentication through soft-token OTP (one-time passcode) and compare it to SMS tokens and hard tokens.
-
Listen Now
EPISODE 129
Broadcast Date:
November 19, 202015 minutes
Podcast Nov 19, 2020Root Causes 129: Examining MFA Through Hard Tokens
Hard tokens are an old multi-factor authentication (MFA) form factor, still in use today. We examine the strengths and weaknesses of hard tokens.
-
Listen Now
EPISODE 124
Broadcast Date:
October 5, 202010 minutes
Podcast Oct 05, 2020Root Causes 124: Biometric MFA
We explore biometric MFA, including strengths and weaknesses and the idea that biometrics are more about proof of possession than identity authentication.
-
Download Now
Revisiting PKI to Support a Zero-Trust Security Strategy Whitepaper
Whitepaper from Sectigo
Whitepaper Aug 03, 2020This white paper by Enterprise Security Group examines how PKI fits into and enables your zero-trust strategy.
-
Listen Now
EPISODE 109
Broadcast Date:
July 29, 202015 minutes
Podcast Jul 29, 2020Root Causes 109: Examining MFA Through Phone-based SMS
SMS-based one time password (OTP) is a common form of multi-factor authentication (MFA). Our hosts explain how this scheme fails the security test.