Twitter | Pretraživanje | |
Robert Duncan
Web securitist, interested in SSL/TLS. Tweets are my own.
1.641
Tweetovi
756
Pratim
421
Osobe koje vas prate
Tweetovi
Robert Duncan proslijedio/la je tweet
Subodh Iyengar 1. stu
Our team has been working on improving certificate security with Delegated credentials is a new feature in TLS that helps separate keys in a more secure way
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Intent To Ship 12. ruj
Gecko: Intent to unship: TLS 1.0 and TLS 1.1
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
martin_casado 11. ruj
Youch ... Chrome OS built-in security key has a very serious vulnerability ... "attackers that have a single pair of signature and signed data can effectively compute the private key"
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Netcraft 29. kol
Uniqlo and The Guardian among thousands of sites loading malicious code from S3
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Filippo Valsorda 29. kol
I just killed 500 lines of crypto/tls code. 🎉💥🔥 In Go 1.14, no more SSLv3. No ifdef, no option. It's deleted.
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Adam Langley 21. kol
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Scott Helme 10. kol
It’s official, Chrome is moving the EV indicator in Chrome 77:
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Tom Ritter 9. srp
DarkMatter is getting distrusted from Firefox. Huge thanks to the team - especially - for running a process everyone could participate in and make their voices known.
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Ryan Hurst 9. srp
Clearlake Capital Group and TA Associates to Make a Strategic Growth Investment in -
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Ryan Sleevi 22. lip
This is really cool, and great work from Amazon. The biggest challenges with rolling your own PKI are key protection, availability, and compatibility. AWS seems to be knocking it out of the park for all three. Almost all the way to replacing on-prem ADCS.
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Bailey Basile 12. lip
Odgovor korisniku/ci @mdhardeman @GreatAmus
Yes. System-trusted certs have to abide by the CABF BR requirements. The validity period restriction for all others goes into effect for certs with a notBefore date of 1 July 2019 or later.
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Ryan Sleevi 12. lip
Odgovor korisniku/ci @Cryptoki @GreatAmus
Yeah! We’re going to be submitting a draft ballot for 1y shortly, for notBefore 2020/03 and later.
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Bailey Basile 4. lip
New certificate requirements in iOS 13 and macOS Catalina: removing trust in weak algorithms, requiring server auth EKUs, enforcing maximum lifespans, and requiring SubjectAltNames.
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Andrew R. Whalley 21. svi
Here's an update on what security's been up to recently (including some new things we've open sourced!)
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Scott Helme 21. svi
It seems that have had to push back the plans to switch to their ISRG root by 12 months due to root propagation concerns on Android devices:
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Scott Helme 20. svi
Seems like Microsoft added "gov[.]uk" with "include_subdomains" to the HSTS preload list?
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Ryan Hurst 17. svi
"In conclusion, I recommend the following: Remove the Certinomis - Root CA from the Mozilla root store in an upcoming NSS release."
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan 16. svi
"The TLS fingerprints that Akamai observed before Cipher Stunting was observed could be counted in the tens of thousands. Soon after the initial observation, that count ballooned to millions, and then recently jumped to billions.”
Reply Retweet Označi sa "sviđa mi se"
Robert Duncan proslijedio/la je tweet
Let's Encrypt 15. svi
We are happy to launch Oak, a CT Log today! Certificate Transparency greatly enhances Web security by providing the opportunity to monitor and study certificate issuance. Thanks to for providing funding to make this happen! Read more:
Reply Retweet Označi sa "sviđa mi se"