-
Podcast Aug 15, 2022
Root Causes 238: Tim's Big Phishing Adventure
Tim's identity as a Sectigo executive is being used in a "waterholing" phishing scam to raid job seekers' bank accounts. We describe what is going on.
-
Podcast Aug 10, 2022
Root Causes 237: Why Mozilla Is So Important to CAs
Mozilla is a highly important to the world of public certificates, with influence beyond what its browser market share would suggest. We examine why.
-
Podcast Aug 04, 2022
Root Causes 236: AD Patch Knocks Out Non-MS Identity Consumers
A recent Active Directory patch has forced a workaround for many software components to work with AD identities. We explain lessons for PKI owners.
-
Podcast Jul 27, 2022
Root Causes 235: What Is Lattice-based Cryptography?
The new NIST PQC algorithms focus on lattice-based encryption. We explain this cryptographic approach and why it fared so well in the NIST search.
-
Podcast Jul 22, 2022
Root Causes 234: Report from the 2022 RSA Conference
The RSA Security Conference is back. We talk about 2020 and how the first post-COVID RSAC compared to earlier years, plus major themes this year.
-
Podcast Jul 13, 2022
Root Causes 233: CISA Recommendations for Post-Quantum Cryptography
The Cybersecurity and Infrastructure Security Agency has listed six key actions for IT to commence for post-quantum cryptography. We put them in context.
-
Podcast Jul 08, 2022
Root Causes 232: NIST Announces Its Post Quantum Crypto Selections
NIST has announced its winning algorithms for its post-quantum cryptography contest. We name describe them, why they were chosen, and next steps.
-
Podcast Jul 06, 2022
Root Causes 231: What Is FIDO?
We explain device-centric authentication, the FIDO Alliance, WebAuthn, and how it all works.
-
Podcast Jun 30, 2022
Root Causes 230: What Is Apple Passkey?
Apple recently announced its Passkey functionality, which will allow passwordless authentication with supporting web services through key exchange.
-
Podcast Jun 08, 2022
Root Causes 229: Browsing Collectives and the 80/20 Rule of Privacy
In this follow-on to our two previous podcasts, we elucidate additional potential schemes for preserving consumer privacy.
-
Podcast Jun 01, 2022
Root Causes 228: Getting the FLoC out of Here
We discuss Google's Federated Learning of Cohorts (FLoC) initiative, why it failed, and other privacy directions the industry is looking in.
-
Podcast May 27, 2022
Root Causes 227: Let's Talk About Cookies
We discuss the many ways web users can be tracked including cross-site cookies, tracking pixels, and browser fingerprinting.