EPISODE 278
Broadcast Date:
February 17, 2023
11 minutes
Recent public discussion of FIDO and digital certificates reveal details of Microsoft's approach to consumer digital authentication.
EPISODE 262
Broadcast Date:
December 14, 2022
23 minutes
We look back at the continued erosion of reliable online identity, including deep fakes, celebrity phishing, AI-generated art and Twitter blue check marks.
EPISODE 259
Broadcast Date:
November 30, 2022
14 minutes
We explore why the Twitter blue check marks failed and the challenges in authenticating and vouching for the identity of an individual or organization.
EPISODE 164
Broadcast Date:
May 20, 2021
11 minutes
We explore out-of-band phone calling as a MFA method, including, what attacks it defends against successfully, and what attacks can circumvent it.
EPISODE 147
Broadcast Date:
February 5, 2021
12 minutes
A new attack allows cloning of the Google Titan secure key. we describe this attack and its implications for Titan and other secure keys.
EPISODE 133
Broadcast Date:
December 7, 2020
24 minutes
In 2020 COVID-19 changed the way we work. Our hosts dicsuss the affect on employee access, Zero Trust, retail IT, immunity passports, and more.
EPISODE 132
Broadcast Date:
December 4, 2020
17 minutes
In our ongoing examination of MFA, we examine authentication through soft-token OTP (one-time passcode) and compare it to SMS tokens and hard tokens.
EPISODE 130
Broadcast Date:
November 24, 2020
16 minutes
We discuss the weaknesses of passwords and why they nonetheless are still common. We describe the roadmap for weeding out passwords from most systems.
EPISODE 129
Broadcast Date:
November 19, 2020
15 minutes
Hard tokens are an old multi-factor authentication (MFA) form factor, still in use today. We examine the strengths and weaknesses of hard tokens.
EPISODE 122
Broadcast Date:
September 28, 2020
33 minutes
A discussion of passwordless authentication and access for Apple platforms (with Joel Rennich of Jamf).
EPISODE 120
Broadcast Date:
September 18, 2020
20 minutes
How do digital identity and certificates fit into the SASE (Secure Access Service Edge) paradigm?
A Whitepaper from Sectigo
This white paper by Enterprise Security Group examines how PKI fits into and enables your zero-trust strategy.