-
Podcast Jan 16, 2024
Root Causes 354: CyberSlash Attack Against CRYSTALS-Kyber
A new attack against implementations of CRYSTALS-Kyber illustrates how cryptographic implementations can be vulnerable even as the cyphers remain sound.
-
Podcast Jan 10, 2024
Root Causes 353: Why Isn't PKI Everywhere?
Our hosts firmly believe that PKI is a necessary component of all digital interactions. And yet there are still gaps in PKI implementation.
-
Podcast Jan 04, 2024
Root Causes 352: FBI Vs. End-to-end Encryption in Meta Apps
Meta is finally rolling out end-to-end encryption across its messaging apps. This is the latest chapter in the long story of government versus encryption.
-
Podcast Dec 27, 2023
Root Causes 351: 2024 Predictions
We look forward to 2024 and predict trends for PKI, certificates, and digital identity.
-
Podcast Dec 21, 2023
Root Causes 350: Public Certificates & the GDPR Right to Be Forgotten
GDPR provides a "right to be forgotten," whereby individuals can demand the removal of PII from IT systems. This can run contrary to public PKI systems.
-
Podcast Dec 18, 2023
Root Causes 349: 2023 Lookback - Overall Trends
We look back at PKI in 2023. Trends include AI, enterprise crypto agility, OCSP's fall, PKI everywhere, weak passwords, and government vs. the internet.
-
Podcast Dec 15, 2023
Root Causes 348: What Is a Merkle Tree?
One foundational element of modern cryptographic systems is the Merkle tree. We explain this data structure, its properties, and its use cases.
-
Podcast Dec 11, 2023
Root Causes 347: 2023 Lookback - Shortening Certificate Lifespans
90-day SSL certificates is only part of it! 2023 has been a year of certificate lifespans getting shorter.
-
Podcast Dec 08, 2023
Root Causes 346: Private Credentials in Public Code
We uncover the epidemic of private credentials in public-facing code repositories, including why it occurs and what do to about it.
-
Podcast Dec 05, 2023
Root Causes 345: Apple Versus European Sideloading
The European Union is applying pressure to Apple to allow application sideloading. We cover why this is occurring, potential dangers, and Apple's response.
-
Podcast Nov 29, 2023
Root Causes 344: Introducing the PQC Onramp
NIST continues the search for PQC algorithms, especially those using non-Lattice schemes. We explain the PQC "onramp" and what we should expect.
-
Podcast Nov 22, 2023
Root Causes 343: The EIDAS 2.0 Controversy
A controversial aspect of the upcoming eIDAS 2.0 standard is that it limits browsers' ability to determine their own trusted roots. We explain.