-
Listen Now
EPISODE 387
Broadcast Date:
May 16, 202431 minutes
Podcast May 16, 2024Root Causes 387: What Is the Post-quantum Readiness of HSMs?
We take a deep dive with return guest Bruno Coulliard on HSMs and the role they play in post-quantum cryptography (PQC).
-
Listen Now
EPISODE 386
Broadcast Date:
May 13, 202414 minutes
Podcast May 13, 2024Root Causes 386: Meta Commits MITM Attack On Its Users
In 2016 Meta (then Facebook) set up a system to get around encryption and spy on traffic between its users and competing social media platforms.
-
Listen Now
EPISODE 385
Broadcast Date:
May 10, 202412 minutes
Podcast May 10, 2024Root Causes 385: Failed Revocation and Wildcard Certificates
We discuss misuse of wildcard certificates, failure to revoke on time, and how these two failures magnify each other.
-
Listen Now
EPISODE 384
Broadcast Date:
May 7, 20247 minutes
Podcast May 07, 2024Root Causes 384: So What Is a Senior Fellow Anyway?
Jason has a new title, Senior Fellow. In this episode Jason explains what his new focus will be and how this will be good for Root Causes.
-
Listen Now
EPISODE 383
Broadcast Date:
May 2, 202425 minutes
Podcast May 02, 2024Root Causes 383: Delayed Revocation Events by the Numbers
An epidemic of delayed revocations has infected the public CA community. We track delayed revocations since the beginning of 2021 and discuss root causes.
-
Listen Now
EPISODE 382
Broadcast Date:
April 29, 202412 minutes
Podcast Apr 29, 2024Root Causes 382: Mobile Phone Malware Steals Faces for Access
New malware photographs users' faces to defeat authentication mechanisms. Biometrics are not "secrets."
-
Listen Now
EPISODE 381
Broadcast Date:
April 26, 20247 minutes
Podcast Apr 26, 2024Root Causes 381: Apple Chip Sideloading Attack Leaks Encryption Keys
A newly revealed side channel attack enables theft of private keys from M-series Apple chips. We explain.
-
Listen Now
EPISODE 380
Broadcast Date:
April 23, 202429 minutes
Podcast Apr 23, 2024Root Causes 380: If Quantum Supremacy Comes Earlier Than Expected
We talk about the challenges to PQC migration and what happens if quantum computers break RSA before we're expecting them to.
-
Listen Now
EPISODE 379
Broadcast Date:
April 18, 202413 minutes
Podcast Apr 18, 2024Root Causes 379: AI-generated Fake IDS for KYC
Inexpensive and easily obtained deepfake photographs of IDs, generated by AI, are available online. These pose a problem for KYC initiatives.
-
Listen Now
EPISODE 378
Broadcast Date:
April 15, 202421 minutes
Podcast Apr 15, 2024Root Causes 378: Why Are Forced Revocations So Difficult?
We delve deep into the problem of failure to revoke on time and the multiple causes that lead to this ongoing failure.
-
Listen Now
EPISODE 377
Broadcast Date:
April 11, 202417 minutes
Podcast Apr 11, 2024Root Causes 377: Is CPS/Issuance Misalignment a Revocation Event?
If you issue public certificates that are fully compliant except they don't reflect what your CPS says, are they misissued? Do they require revocation?
-
Listen Now
EPISODE 376
Broadcast Date:
April 8, 202419 minutes
Podcast Apr 08, 2024Root Causes 376: Gartner's New CLM Framework
Gartner has released a new framework for Certificate Lifecycle Management, called the Seven Core Functions of Certificate Automation.