RB2: AusCERT podcast: Peter Gutmann's keynote address
Peter Gutmann gives good con...
Start the discussion
0 Comments
May 20, 2009 --
The computer security industry has sometimes been compared unfavourably to the fashion industry, putting up flamboyant defences where it doesn't make any difference while paying no attention to the open barn door behind the curtain.
Why do we allow three retries for passwords instead of two, or four, or thirty-eight? How effective are SSH fingerprints? And how's the ol' PKI thing doing?
This talk will look at some widespread examples of defending where the enemy isn't, including the underlying threat models (or lack thereof), the effectiveness of the defences, and the real-world pressures and externalities that affect them, along with various modest proposals for alternative approaches.
Recent Posts
-
Day two keynote from AusCERT 2013...23 hours 48 min ago
-
North Korean TV has less sex, more potato farming...23 hours 50 min ago
-
How to turn an executives phone into your own personal gateway…23 hours 54 min ago
-
Not new research, but a great talk...23 hours 57 min ago
-
Lots of money going into "cyber"...23 hours 59 min ago
Hosted by:
Recent comments
1 day 22 hours ago
11 weeks 2 days ago
12 weeks 4 days ago
15 weeks 16 hours ago
21 weeks 3 days ago
21 weeks 6 days ago
22 weeks 4 days ago
25 weeks 3 days ago
28 weeks 1 day ago
30 weeks 2 days ago