-
Listen Now
EPISODE 137
Broadcast Date:
December 21, 202031 minutes
Podcast Dec 21, 2020Root Causes 137: SolarWinds Supply Chain Attack and Digital Identity
The SolarWinds supply chain attack i includes unusual manipulations of digital identity and certificates. We explore these aspects of the attack.
-
Listen Now
EPISODE 136
Broadcast Date:
December 17, 202014 minutes
Podcast Dec 17, 2020Root Causes 136: 2020 Lookback - Quantum Safe Certificates
We discuss 2020's progress in the quest for quantum-safe encryption, including the algorithm candidate list, hybrid certificates, and IoT devices.
-
Listen Now
EPISODE 135
Broadcast Date:
December 14, 202025 minutes
Podcast Dec 14, 2020Root Causes 135: The Heartbleed Vulnerability
2014's Heartbleed vulnerability made it possible to steal private keys directly from web servers, requiring certificate replacement by the millions.
-
Listen Now
EPISODE 134
Broadcast Date:
December 10, 202024 minutes
Podcast Dec 10, 2020Root Causes 134: 2020 Lookback - SASE and Zero Trust Architecture
2020 was a big year for SASE (Secure Access Service Edge). We define SASE, ZTNA (Zero Trust Network Architecture), and SDP (Software Defined Perimeter).
-
Listen Now
EPISODE 133
Broadcast Date:
December 7, 202024 minutes
Podcast Dec 07, 2020Root Causes 133: 2020 Lookback - COVID-19
In 2020 COVID-19 changed the way we work. Our hosts dicsuss the affect on employee access, Zero Trust, retail IT, immunity passports, and more.
-
Listen Now
EPISODE 132
Broadcast Date:
December 4, 202017 minutes
Podcast Dec 04, 2020Root Causes 132: Examining MFA Through Soft Tokens
In our ongoing examination of MFA, we examine authentication through soft-token OTP (one-time passcode) and compare it to SMS tokens and hard tokens.
-
Listen Now
EPISODE 131
Broadcast Date:
November 30, 202017 minutes
Podcast Nov 30, 2020Root Causes 131: Apple OCSP Slowdown Explained
Apple's Big Sur OS rollout drove a slowdown in the company's OCSP responders, affecting all Apple operating systems. We explain what happened and why.
-
Listen Now
EPISODE 130
Broadcast Date:
November 24, 202016 minutes
Podcast Nov 24, 2020Root Causes 130: How to Get Rid of Password Breaches
We discuss the weaknesses of passwords and why they nonetheless are still common. We describe the roadmap for weeding out passwords from most systems.
-
Listen Now
EPISODE 129
Broadcast Date:
November 19, 202015 minutes
Podcast Nov 19, 2020Root Causes 129: Examining MFA Through Hard Tokens
Hard tokens are an old multi-factor authentication (MFA) form factor, still in use today. We examine the strengths and weaknesses of hard tokens.
-
Listen Now
EPISODE 128
Broadcast Date:
November 12, 202015 minutes
Podcast Nov 12, 2020Root Causes 128: What Is Total Certificate Agility?
Certificate agility refers to building our systems so that all certificates are known, current, and immediately replaceable.
-
Listen Now
EPISODE 127
Broadcast Date:
November 5, 202014 minutes
Podcast Nov 05, 2020Root Causes 127: What a Chief Compliance Officer at a Public CA Does
Our hosts discuss what compliance means at a public Certificate Authority (CA) like Sectigo and what the Chief Compliance Officer does.
-
Listen Now
EPISODE 126
Broadcast Date:
October 28, 202018 minutes
Podcast Oct 28, 2020Root Causes 126: IoT Ransomware
New research shows how ransomware attacks could be launched against IoT devices. Understand these attacks and what can be done to defend against them.
