Episode 107 – The year of the Linux Desktop and other hardware stories

Josh and Kurt talk about modern hardware, how security relates to devices and actions. Everything from secure devices, to the cables we use, to thermal cameras and coat hangers. We end the conversation discussing the words we use and how they affect the way people see us and themselves. Show Notes Linux on Chromebooks Touchscreen and secretsContinue reading “Episode 107 – The year of the Linux Desktop and other hardware stories”

Episode 106 – Data isn’t oil, it’s nuclear waste

Josh and Kurt talk about Cory Doctorow’s piece on Facebook data privacy. It’s common to call data the new oil but it’s more like nuclear waste. How we fix the data problem in the future is going to require solutions we can’t yet imagine as well as new ways of thinking about the problems. Show Notes MarkContinue reading “Episode 106 – Data isn’t oil, it’s nuclear waste”

Episode 105 – More backdoors in open source

Josh and Kurt talk about some recent backdoor problems in open source packages. We touch on is open source secure, how that security works, and what it should look like in the future. This problem is never going to go away or get better, and that’s probably OK. Show Notes eslint-scope issue Arch Linux Acrobat Reader issueContinue reading “Episode 105 – More backdoors in open source”

The father of modern security: B. F. Skinner

A lot of what we call security is voodoo. Most of it actually. What I mean with that statement is our security process is often based on ideas that don’t really work. As an industry we have built up a lot of ideas and processes that aren’t actually grounded in facts and science. We don’tContinue reading “The father of modern security: B. F. Skinner”

Episode 104 – The Gentoo security incident

Josh and Kurt talk about the Gentoo security incident. Gentoo did a really good job being open and dealing with the incident quickly. The basic takeaway from all this is make sure your organization is forcing users to use 2 factor authentication. The long term solution is going to be all identity providers forcing everyone to useContinue reading “Episode 104 – The Gentoo security incident”

Episode 103 – The Seven Properties of Highly Secure Devices

Josh and Kurt talk about a Microsoft Research paper titled “The Seven Properties of Highly Secure Devices”. We take a real world view into how to secure our devices. What works, what doesn’t work, and why this list is actually really good. Show Notes 7 Properties of Highly Secure Devices Pwn2Own Kurt’s dryer vent tweet Mars roverContinue reading “Episode 103 – The Seven Properties of Highly Secure Devices”