Posts tagged with 'security'
Joel Lord is using passwordless authentication. This episode is sponsored by Smartsheet.
Show Notes:
-
Joel works for Auth0
-
xkcd comic called "password strength"
-
Check out episode 71, Bill Sempf talking about security in the movie 'Sneakers'
-
Slack uses a 'magic link' passwordless system
-
What is a dongle? There are a lot of security dongles, here’s one called ChaosKey.
-
The Auth0 blog
-
Joel’s site: JavaScriptEverything.com
Want to be on the next episode? You can! All you need is the willingness to talk about something technical.
Music is by Joe Ferg, check out more music on JoeFerg.com!
Bill Sempf and I watched a movie called Sneakers. This episode is sponsored by Smartsheet.
This is an extra-large, jumbo-sized, special episode of Cross Cutting Concerns. There's just too much awesome in Sneakers to fit in a 15 minute episode. But don't worry, I'll be back to regular length episodes starting next week!
Show Notes:
- Sneakers is a 1992 movie. If you haven't seen it yet, go watch it first, because this podcast contains spoilers! It's available to stream on Amazon, and it is well worth a purchase.
- Check out the incredible cast on IMDb (and also peek at the trivia section)
- An interview with Bob Abbott
- RSA - named after Rivest, Shamir, Adleman
- Intel's 49 qubit chip
- Fluhrer, Mantin, and Shamir attack on RC4
- Book: Brute Force: Cracking the Data Encryption Standard by Matt Curtin
- We mentioned: Dark Web, Deep Web, Tor, look it up
- OSINT Framework by Justin Nordine
- Blue Team vs Red Team
- Conferences: CodeMash, DerbyCon
- David Kennedy segment on CNN Money
- Podcast: Security Through Education - Episode 098: Winning the SECTF with Chris & Rachel
- The Economist cover and story: The world’s most valuable resource is no longer oil, but data
- Bitcoin was mentioned
- Paper: Smartphone User Identity Verification Using Gait Characteristics (gait analysis)
- Comic: XKCD on Security
- Captain Crunch = John Draper, here's a video from ABC News
- Tiger Team: Car Dealer Takedown
- OWASP
Want to be on the next episode? You can! All you need is the willingness to talk about something technical.
Music is by Joe Ferg, check out more music on JoeFerg.com!
That's right, Cross Cutting Concerns is back for season 3! I know I always say this, but I've got a month full of amazing guests!
I've also got: new original music by JoeFerg (you've gotta hear this!). A new gameshow segment! And much more!
Subscribe now!
Here's what's coming in February:
- Rachel Andrew(!) on CSS Web Grid
- Correl Roush returning to talk Elm
- Tim Wingfield on API design
- Bill Sempf with a very special, jumbo episode discussing information security through the lens of one of my favorite films: Sneakers
Subscribe now with your podcatcher of choice!
Want to be on the next episode? You can! All you need is the willingness to talk about something technical.
Wolfgang Goerlich is using encryption frameworks.
Show Notes:
- Wolfgang's blog at jwgoerllich.com
- Some terms discussed in the podcast just in case you aren't familiar:
- SQL injection
- Password cracker (programs that can assist in figuring out a password by enumerating / guessing)
- OAuth
- TLS / HTTPS
- SFTP
- SecureString in the .NET framework
- Companies mentioned:
- Database level encryption, discussed for SQL Server docs
- Disk encryption article
- The Scrypt.NET library I kept going on about
- RSA 1024 article
- Dear listeners, to keep your passwords safe and secure, please consider using one or more of:
- Azure Key Vault
- Bruce Schneier on security
- Wolfgang's employer: CBI
Wolfgang Goerlich is on Twitter.
Want to be on the next episode? You can! All you need is the willingness to talk about something technical.
Theme music is "Crosscutting Concerns" by The Dirty Truckers, check out their music on Amazon or iTunes.
Brett Whittington is concerned about security on data in motion.
Note: I said "SSH" at one point, I meant SSL; Brett was too polite to point it out. I also made a mustard pun. Please send your hate tweets to @spetryjohnson.
Show Notes:
- SSL Labs - SSL Server Test
- ZAPP from OWASP
- Jim Manico ("AppSec Enthusiast") on Twitter
- The DROWN attack
- Heartbleed
- Google's collision attack on two different documents
- 0 Day Exploit exposed by Wikileaks
- Innovative Codes explaining how HTTPS works
- J Wolfgang Goerlich ("hacker strategist") on Twitter
Brett Whittington is on Twitter
Want to be on the next episode? You can! All you need is the willingness to talk about something technical.
Theme music is "Crosscutting Concerns" by The Dirty Truckers, check out their music on Amazon or iTunes.