-
Listen Now
EPISODE 329
Broadcast Date:
August 29, 202311 minutes
Podcast Aug 29, 2023Root Causes 329: What Is Messaging Layer Security?
The recently published Messaging Layer Security (MLS) protocol establishes key exchange protocols for simultaneous communication with 3+ participants.
-
Listen Now
EPISODE 328
Broadcast Date:
August 23, 20237 minutes
Podcast Aug 23, 2023Root Causes 328: What Is the Debian Weak Key Flaw?
In 2008 the world of SSL was shocked by a flaw in a popular operating system that limited the set of possible private keys on this OS to about 32,000.
-
Listen Now
EPISODE 327
Broadcast Date:
August 18, 202317 minutes
Podcast Aug 18, 2023Root Causes 327: What Is Multi-perspective Domain Validation? (MPIC)
In this episode we explain Border Gateway Protocol (BGP) attacks and how multi-perspective domain validation (MPDV) can defeat them.
-
Listen Now
EPISODE 326
Broadcast Date:
August 15, 202312 minutes
Podcast Aug 15, 2023Root Causes 326: The Difference Between .ml and .mil
Mistyped email addresses aimed at the US military frequently are sent to email addresses in Mali instead, to the tune of hundreds of thousands per year.
-
Listen Now
EPISODE 325
Broadcast Date:
August 11, 202310 minutes
Podcast Aug 11, 2023Root Causes 325: Certificate Error Causes Sharepoint Outage
A recent outage in Microsoft Sharepoint was caused by an error in certificate installation. We explain what happened and the lessons to be learned.
-
Listen Now
EPISODE 324
Broadcast Date:
August 7, 202316 minutes
Podcast Aug 07, 2023Root Causes 324: Apple Vs New UK Surveillance Bill
The UK is attempting to build secret back doors into end-to-end encrypted services. Apple shot back by threatening to remove services from the UK.
-
Listen Now
EPISODE 323
Broadcast Date:
August 3, 202312 minutes
Podcast Aug 03, 2023Root Causes 323: Update on Microsoft Key Compromise
In this follow up to our episode 320, we explain Microsoft's mitigation and new understanding that shows its impact to be broader than originally thought.
-
Listen Now
EPISODE 322
Broadcast Date:
July 31, 20236 minutes
Podcast Jul 31, 2023Root Causes 322: RIP Kevin Mitnick
In July famous security researcher Kevin Mitnick passed away. We briefly pay tribute to Kevin and talk about his contributions to white hat hacking.
-
Listen Now
EPISODE 321
Broadcast Date:
July 27, 202316 minutes
Podcast Jul 27, 2023Root Causes 321: CABF Moratorium on New Certificate Consumer Members
The CA/Browser Forum recently passed a temporary moratorium on new members of the Certificate Consumer class.
-
Listen Now
EPISODE 320
Broadcast Date:
July 24, 202311 minutes
Podcast Jul 24, 2023Root Causes 320: Microsoft-signed Root Kit Attack
A new root kit attack in the wild is code signed by a Microsoft certificate. We explain kernel-level attacks and how this attack occurred.
-
Listen Now
EPISODE 319
Broadcast Date:
July 21, 202320 minutes
Podcast Jul 21, 2023Root Causes 319: EU Digital Wallets
A new agreement mandates that European countries will make digital wallets available to their citizens in 2024.
-
Listen Now
EPISODE 318
Broadcast Date:
July 18, 202310 minutes
Podcast Jul 18, 2023Root Causes 318: What Is ACME Renewal Information (ARI)?
A new extension to the ACME certificate protocol will help automate renewals. In this episode we explain ACME Renewal Information (ARI).