-
Listen Now
EPISODE 429
Broadcast Date:
October 8, 20247 minutes
Podcast Oct 08, 2024Root Causes 429: ServiceNow Outage Due to Expired Root Certificate
A ServiceNow private CA root expired, creating outages across hundreds of enterprises. We explain what appears to have gone on.
-
Listen Now
EPISODE 427
Broadcast Date:
October 2, 202416 minutes
Podcast Oct 02, 2024Root Causes 427: Mapping CLM to NIST CSF 2.0
In this episode we map the contributions of Certificate Lifecycle Management into the new NIST Cybersecurity Framework 2.0.
-
Listen Now
EPISODE 426
Broadcast Date:
September 30, 20248 minutes
Podcast Sep 30, 2024Root Causes 426: Expired Certificate Takes Down Bank of England
A certificate expiration is now known to have created July's outage of Bank of England. Join us as we shake our heads in amazement yet again.
-
Listen Now
EPISODE 425
Broadcast Date:
September 27, 202411 minutes
Podcast Sep 27, 2024Root Causes 425: PQC Requirements for Voting Systems
In honor of the upcoming US elections, we describe the six main requirements for a post-quantum voting system.
-
Listen Now
EPISODE 424
Broadcast Date:
September 25, 202412 minutes
Podcast Sep 25, 2024Root Causes 424: Using LoRA IoT Protocol for Clandestine Communication
In this episode we describe the LoRA protocol, which allows IoT devices to communicate securely without using a cellular network.
-
Listen Now
EPISODE 423
Broadcast Date:
September 20, 202418 minutes
Podcast Sep 20, 2024Root Causes 423: Is a Certificate Software or a Service?
In this episode we discuss the dual nature of a public certificate as both a file and part of a holistic service that lasts until its expiration.
-
Listen Now
EPISODE 422
Broadcast Date:
September 19, 20245 minutes
Podcast Sep 19, 2024Root Causes 422: New Date for Entrust Distrust
With a few easy tweaks, you can get your track to listeners most likely to love it. Learn more about how to modify your track to make it eligible.
-
Listen Now
EPISODE 421
Broadcast Date:
September 16, 20248 minutes
Podcast Sep 16, 2024Root Causes 421: FIDO 2 Implementation Problems
White hat researchers have raised concerns about FIDO 2 (AKA WebAuthn). We explain.
-
Listen Now
EPISODE 420
Broadcast Date:
September 13, 202413 minutes
Podcast Sep 13, 2024Root Causes 420: New Side Channel Attack Against YubiKeys
EUCLEAK, a newly revealed side-channel vulnerability, can clone the contents of a YubiKey. We talk about the attack and its significance.
-
Listen Now
EPISODE 419
Broadcast Date:
September 10, 202416 minutes
Podcast Sep 10, 2024Root Causes 419 - What Happens to Vendors Who Don't Support ACME?
There are still products and operating systems that don't support ACME. We explore what happens to them when 90-day SSL certificates become required.
-
Listen Now
EPISODE 418
Broadcast Date:
September 6, 202418 minutes
Podcast Sep 06, 2024Root Causes 418: From Cryptographic Homogeneity to Heterogeneity
PQC will move us from cryptographic homogeneity to cryptographic heterogeneity, with multiple KEMs and DSAs eventually expected as ongoing standards.
-
Listen Now
EPISODE 417
Broadcast Date:
September 3, 20249 minutes
Podcast Sep 03, 2024Root Causes 417: Introducing pkimetal, the PKI Meta-linter
We introduce pkimetal, an open source project from Rob Stradling that allows CA to write to many popular linters with a single integration.
