| Tweetovi |
| Bailey Basile proslijedio/la je tweet | ||
|
Swift Language
@SwiftLang
|
3. velj |
|
Swift Crypto project is now live and open source.
Read more at: swift.org/blog/crypto/
Grab the code: github.com/apple/swift-cr…
|
||
|
|
||
| Bailey Basile proslijedio/la je tweet | ||
|
Kyle Brogle
@broglek
|
17. sij |
|
|
||
|
Bailey Basile
@BasileBailey
|
7. sij |
|
We're looking for a manager for my team at Apple. DMs open.
jobs.apple.com/en-us/details/…
|
||
|
|
||
| Bailey Basile proslijedio/la je tweet | ||
|
Ivan Krstić
@radian
|
20. pro |
|
Now live!
🔺The new Apple Security Bounty! developer.apple.com/security-bount…
🔺The new Apple Platform Security guide, featuring Mac for the first time!
support.apple.com/guide/security…
(PDF version: manuals.info.apple.com/MANUALS/1000/M…)
🔺My Black Hat 2019 talk: youtube.com/watch?v=3byNNU…
Happy holidays! 🎄
|
||
|
|
||
| Bailey Basile proslijedio/la je tweet | ||
|
Yannick Sierra
@cryptowarlock
|
14. pro |
|
Really excited to present our work on Find My at @RealWorldCrypto! Don’t miss our talk on Jan 9th: rwc.iacr.org/2020/program.h…
|
||
|
|
||
|
Bailey Basile
@BasileBailey
|
5. pro |
|
I have my reasons.
|
||
|
|
||
|
Bailey Basile
@BasileBailey
|
4. pro |
|
Wanna bet that no one checks revocation when you’ve already got errors? 😉
|
||
|
|
||
| Bailey Basile proslijedio/la je tweet | ||
|
Rosyna Keller
@rosyna
|
2. pro |
|
The security engineering team at Apple is looking for experienced infrastructure engineers to join them in Santa Clara Valley, helping to build new services at scale. They scan bajillions of iOS & macOS apps to help protect over one billion users. jobs.apple.com/en-us/details/…
|
||
|
|
||
| Bailey Basile proslijedio/la je tweet | ||
|
Ryan Sleevi
@sleevi_
|
26. stu |
|
Congrats @clintw_ ! Great hire by @Apple , and a lot of work ahead of you :) pic.twitter.com/e11pOkWJx4
|
||
|
|
||
|
Bailey Basile
@BasileBailey
|
19. kol |
|
I’m not sure that it makes sense for shard periods to go much shorter than 1yr right now. The time and logistics cost to adding new shards (even for existing operators, where one could shorten the monitoring period) is pretty significant.
|
||
|
|
||
|
Bailey Basile
@BasileBailey
|
17. kol |
|
The browser software is already calculating one day as 86400 seconds. We hope to have less confusion and fewer rejected certs by making that explicit in the BRs.
|
||
|
|
||
| Bailey Basile proslijedio/la je tweet | ||
|
Kate McInnes
@kate_mcinnes
|
20. srp |
|
My incredible #security team at #apple is growing! We’re looking for talented people who are passionate about working with #engineering teams to help shape the secure design and implementation of all features we ship! If this sounds like you, get in touch. All experiences welcome
|
||
|
|
||
|
Bailey Basile
@BasileBailey
|
6. srp |
|
Nah, I know where I left it. Considering doing experiments to determine the impact of camera bump position on coffee table to floor slide rate.
|
||
|
|
||
|
Bailey Basile
@BasileBailey
|
6. srp |
|
The answer to “where’s my phone” when I’m at home is universally “fell off a flat surface onto the floor”.
|
||
|
|
||
|
Bailey Basile
@BasileBailey
|
13. lip |
|
We’ve got a big role to fill in the PKI space at Apple! DMs open.
jobs.apple.com/en-us/details/…
|
||
|
|
||
|
Bailey Basile
@BasileBailey
|
12. lip |
|
The validity period requirement only applies to leaf TLS server certs. support.apple.com/en-us/HT210176
|
||
|
|
||
|
Bailey Basile
@BasileBailey
|
12. lip |
|
Yes. System-trusted certs have to abide by the CABF BR requirements. The validity period restriction for all others goes into effect for certs with a notBefore date of 1 July 2019 or later.
support.apple.com/en-us/HT210176
|
||
|
|
||
|
Bailey Basile
@BasileBailey
|
12. lip |
|
Yes. SHA1 ICAs issued off anchors (including system, user, admin, and app anchors) are not trusted for TLS server auth. This isn’t new for system anchors — we introduced that in the 2017 releases.
|
||
|
|
||
|
Bailey Basile
@BasileBailey
|
12. lip |
|
Appears the default format is PEM. Try that. Also try using any other tool, e.g. Quicklook or openssl.
|
||
|
|
||
|
Bailey Basile
@BasileBailey
|
12. lip |
|
No new restrictions for self-signed SHA-1 certs nor SHA-1 signed anchors.
|
||
|
|
||