-
Podcast Dec 20, 2022
Root Causes 263: Secure Connection Methods Roundup
We discuss the three methods a user might choose for secure remote communications: VPN, SSH, and TOR, with use cases and the pros and cons of each.
-
Podcast Dec 14, 2022
Root Causes 262: The Continuing Erosion of Online Identity
We look back at the continued erosion of reliable online identity, including deep fakes, celebrity phishing, AI-generated art and Twitter blue check marks.
-
Podcast Dec 13, 2022
Root Causes 261: Why I Don't Say Spoof
The word spoof is a security industry term used regarding social engineering attacks. We discuss why this word is problematic in a security context.
-
Podcast Dec 08, 2022
Root Causes 260: CA TrustCor Deprecated
Public CA TrustCor has had its roots deprecated by Microsoft and Mozilla. We explain what happened and why these roots ultimately were distrusted.
-
Podcast Nov 30, 2022
Root Causes 259: What Went Wrong with the Twitter Blue Check Marks
We explore why the Twitter blue check marks failed and the challenges in authenticating and vouching for the identity of an individual or organization.
-
Podcast Nov 22, 2022
Root Causes 258: New S/MIME Baseline Requirements Ratified
The CA/Browser Forum has passed new Baseline Requirements for S/MIME certificates. We explain their broad stipulations.
-
Podcast Nov 18, 2022
Root Causes 257: FTX Crypto Exchange Collapses
"If you don't hold the keys, you don't hold the cheese." Crypto exchange giant FTX recently collapsed, causing ripples through the cryptocurrency world.
-
Podcast Nov 16, 2022
Root Causes 256: What Is Harvest and Decrypt?
For secrets with a reasonable lifespan, the quantum computer threat is much closer than you might think, including as early as today.
-
Podcast Nov 11, 2022
Root Causes 255: What Is a Privacy Browser?
In this episode we describe privacy browsers, the strategies they use, and the pros and cons of this approach.
-
Podcast Nov 08, 2022
Root Causes 254: Toyota Symmetric Key Exposed on GitHub
In a recently exposed error, key material for a popular automobile manufacturer's PKI has been discovered on GitHub, exposing sensitive information.
-
Podcast Nov 04, 2022
Root Causes 253: OpenSSL Vulnerability Explained
Last week the OpenSSL project announced an upcoming critical patch. We explain what the flaw was, what you should do, and why certificates are unaffected.
-
Podcast Oct 28, 2022
Root Causes 251: What's Next for the NIST PQC Primitives?
NIST has announced its new post-quantum cryptography primitives. We discuss the next steps required by industry and what the enterprise can do today.