-
Listen Now
EPISODE 428
Broadcast Date:
October 4, 202417 minutes
Podcast Oct 04, 2024Root Causes 428: .MOBI Attack Puts WHOIS-based DCV into Question
White hat researchers control .mobi WHOIS, signaling the decline of WHOIS as a reliable source for Domain Control Validation (DCV) emails.
-
Listen Now
EPISODE 428
Broadcast Date:
October 4, 202417 minutes
Podcast Oct 04, 2024Root Causes 428: .MOBI Attack Puts WHOIS-based DCV into Question
White hat researchers managed to take over WHOIS for the .mobi TLD, foretelling the death of WHOIS as an email source for Domain Control Validation (DCV).
-
Listen Now
EPISODE 427
Broadcast Date:
October 2, 202416 minutes
Podcast Oct 02, 2024Root Causes 427: Mapping CLM to NIST CSF 2.0
In this episode we map the contributions of Certificate Lifecycle Management into the new NIST Cybersecurity Framework 2.0.
-
Watch Now
60 minutes
Webinar Oct 01, 2024How mature is your Certificate Lifecycle Management?
The surge in certificate usage has reached unprecedented levels, with industry standards for certificate lifespans progressively shrinking.
-
Listen Now
EPISODE 426
Broadcast Date:
September 30, 20248 minutes
Podcast Sep 30, 2024Root Causes 426: Expired Certificate Takes Down Bank of England
A certificate expiration is now known to have created July's outage of Bank of England. Join us as we shake our heads in amazement yet again.
-
Listen Now
EPISODE 425
Broadcast Date:
September 27, 202411 minutes
Podcast Sep 27, 2024Root Causes 425: PQC Requirements for Voting Systems
In honor of the upcoming US elections, we describe the six main requirements for a post-quantum voting system.
-
Listen Now
EPISODE 424
Broadcast Date:
September 25, 202412 minutes
Podcast Sep 25, 2024Root Causes 424: Using LoRA IoT Protocol for Clandestine Communication
In this episode we describe the LoRA protocol, which allows IoT devices to communicate securely without using a cellular network.
-
Listen Now
EPISODE 423
Broadcast Date:
September 20, 202418 minutes
Podcast Sep 20, 2024Root Causes 423: Is a Certificate Software or a Service?
In this episode we discuss the dual nature of a public certificate as both a file and part of a holistic service that lasts until its expiration.
-
Listen Now
EPISODE 422
Broadcast Date:
September 19, 20245 minutes
Podcast Sep 19, 2024Root Causes 422: New Date for Entrust Distrust
With a few easy tweaks, you can get your track to listeners most likely to love it. Learn more about how to modify your track to make it eligible.
-
Listen Now
EPISODE 421
Broadcast Date:
September 16, 20248 minutes
Podcast Sep 16, 2024Root Causes 421: FIDO 2 Implementation Problems
White hat researchers have raised concerns about FIDO 2 (AKA WebAuthn). We explain.
-
Listen Now
EPISODE 420
Broadcast Date:
September 13, 202413 minutes
Podcast Sep 13, 2024Root Causes 420: New Side Channel Attack Against YubiKeys
EUCLEAK, a newly revealed side-channel vulnerability, can clone the contents of a YubiKey. We talk about the attack and its significance.
-
Listen Now
EPISODE 419
Broadcast Date:
September 10, 202416 minutes
Podcast Sep 10, 2024Root Causes 419 - What Happens to Vendors Who Don't Support ACME?
There are still products and operating systems that don't support ACME. We explore what happens to them when 90-day SSL certificates become required.