Shows
Root Causes: A PKI and Security PodcastRoot Causes 587: AI Orchestration for AttackersJason describes a recent intrusion almost entirely operated by off-the-shelf AI tools. This is an important milestone in security. We describe its potential consequences.
2026-03-0210 min
Root Causes: A PKI and Security PodcastRoot Causes 585: The Cryptographic Inventory ManifestoWe all love a good manifesto! Jason spells out the ten principles of the Cryptographic Inventory Manifesto, and we discuss.
2026-02-2508 min
Root Causes: A PKI and Security PodcastRoot Causes 585: The Cryptographic Inventory ManifestoWe all love a good manifesto! Jason spells out the ten principles of the Cryptographic Inventory Manifesto, and we discuss.
2026-02-2508 min
Root Causes: A PKI and Security PodcastRoot Causes 585: The Cryptographic Inventory ManifestoWe all love a good manifesto! Jason spells out the ten principles of the Cryptographic Inventory Manifesto, and we discuss.
2026-02-2408 min
Root Causes: A PKI and Security PodcastRoot Causes 585: The Cryptographic Inventory ManifestoWe all love a good manifesto! Jason spells out the ten principles of the Cryptographic Inventory Manifesto, and we discuss.
2026-02-2408 minRoot Causes: A PKI and Security PodcastRoot Causes 579: Make Cryptography Boring AgainIn this episode Jason declares that we must make cryptography boring again. We get into what that means and why it matters.
2026-02-1017 min
Root Causes: A PKI and Security PodcastRoot Causes 579: Make Cryptography Boring AgainIn this episode Jason declares that we must make cryptography boring again. We get into what that means and why it matters.
2026-02-1017 min
Root Causes: A PKI and Security PodcastRoot Causes 562 : What Is a Side Oracle Attack?You may have heard of side channel attacks. Now Jason explains what a side oracle attack is and how a side oracle attack in conjunction with AI could be effective against the HQC or Falcon PQC algorithms.
2025-12-3007 min
Root Causes: A PKI and Security PodcastRoot Causes 562 : What Is a Side Oracle Attack?You may have heard of side channel attacks. Now Jason explains what a side oracle attack is and how a side oracle attack in conjunction with AI could be effective against the HQC or Falcon PQC algorithms.
2025-12-3007 min
Root Causes: A PKI and Security PodcastRoot Causes 551: PKI in a Swarm at 50 mphJason explores the role cryptography and trust systems play in the command and control of groups of autonomous drone systems.
2025-11-2409 minRoot Causes: A PKI and Security PodcastRoot Causes 551: PKI in a Swarm at 50 mphJason explores the role cryptography and trust systems play in the command and control of groups of autonomous drone systems.
2025-11-2409 min
Root Causes: A PKI and Security PodcastRoot Causes 545: What Is MOSH?The MOSH tool aids the use of SSH-secured sessions, especially across different systems. Jason unpacks the security of this system and how it uses encryption and shared secrets.
2025-11-1008 minRoot Causes: A PKI and Security PodcastRoot Causes 545: What Is MOSH?The MOSH tool aids the use of SSH-secured sessions, especially across different systems. Jason unpacks the security of this system and how it uses encryption and shared secrets.
2025-11-1008 minRoot Causes: A PKI and Security PodcastRoot Causes 54: What Is Chain of Lure?Chain of lure is an attack method used to circumvent restrictions and boundaries places on AIs. Jason explains this attack and its implications.
2025-11-0710 min
Root Causes: A PKI and Security PodcastRoot Causes 544: What Is Chain of Lure?Chain of lure is an attack method used to circumvent restrictions and boundaries placed on AIs. Jason explains this attack and its implications.
2025-11-0510 min
Root Causes: A PKI and Security PodcastRoot Causes 534: Signing the Machines That ThinkImagine what happens if you use the wrong LLM, including a malicious model placed there to create mischief or crime. How do you know? Jason proposes that, the same way we sign our code, we should be signing our AI models as well.
2025-10-1008 minRoot Causes: A PKI and Security PodcastRoot Causes 534: Signing the Machines That ThinkImagine what happens if you use the wrong LLM, including a malicious model placed there to create mischief or crime. How do you know? Jason proposes that, the same way we sign our code, we should be signing our AI models as well.
2025-10-1008 min
Root Causes: A PKI and Security PodcastRoot Causes 533: Flexibility Through Multi-CA Trust ModelsWe discuss how a static PKI structure can hurt corporate flexibility and resilience. Events like reorgs and M&A activity can cause intractable problems with the wrong PKI setup. Plus, Jason coins the term PKI archeology.
2025-10-0709 minRoot Causes: A PKI and Security PodcastRoot Causes 533: Flexibility Through Multi-CA Trust ModelsWe discuss how a static PKI structure can hurt corporate flexibility and resilience. Events like reorgs and M&A activity can cause intractable problems with the wrong PKI setup. Plus, Jason coins the term PKI archeology.
2025-10-0709 min
Root Causes: A PKI and Security PodcastRoot Causes 532: Introducing Offline PKIIn this episode, Jason describes how we might use the principles of PKI in a purely offline scenario.
2025-10-0211 minRoot Causes: A PKI and Security PodcastRoot Causes 532: Introducing Offline PKIIn this episode, Jason describes how we might use the principles of PKI in a purely offline scenario.
2025-10-0211 minRoot Causes: A PKI and Security PodcastRoot Causes 519: AI Is the RoomAI is not the elephant in the room. It is the room itself. Jason explains what he means by that.
2025-08-1818 min
Root Causes: A PKI and Security PodcastRoot Causes 519: AI Is the RoomAI is not the elephant in the room. It is the room itself. Jason explains what he means by that.
2025-08-1818 minRoot Causes: A PKI and Security PodcastRoot Causes 517: The Cost of Quantum FactoringJason walks us through an important recent paper from Google tracking the cost of quantum factoring.
2025-07-2505 min
Root Causes: A PKI and Security PodcastRoot Causes 517: The Cost of Quantum FactoringJason walks us through an important recent paper from Google tracking the cost of quantum factoring.
2025-07-2505 min
Root Causes: A PKI and Security PodcastRoot Causes 515: What Is Entropy-aware Governance?Jason coins the term "entropy-aware governance" to describe the idea of using the degree of entropy it contains to measure the strength of any given secret. This could be an objective, consistent metric that could be applied to standard practices and requirements.
2025-07-1814 minRoot Causes: A PKI and Security PodcastRoot Causes 515: What Is Entropy-aware Governance?Jason coins the term "entropy-aware governance" to describe the idea of using the degree of entropy it contains to measure the strength of any given secret. This could be an objective, consistent metric that could be applied to standard practices and requirements.
2025-07-1814 min
Root Causes: A PKI and Security PodcastRoot Causes 511: The GoML Root StoreWe follow up on our discussion of the Get off My Lawn (GoTM) browser with Jason's adventure in creating his own custom root store.
2025-07-0515 minRoot Causes: A PKI and Security PodcastRoot Causes 511: The GoML Root StoreWe follow up on our discussion of the Get off My Lawn (GoTM) browser with Jason's adventure in creating his own custom root store.
2025-07-0515 min
Root Causes: A PKI and Security PodcastRoot Causes 510: Introducing the GoML BrowserWe discuss Jason's code vibing journey to create the Get Off My Lawn! (GoTM) browser. We discuss SSL certificate information, EV indicators, and cookie handling.
2025-06-2610 minRoot Causes: A PKI and Security PodcastRoot Causes 510: Introducing the GoML BrowserWe discuss Jason's code vibing journey to create the Get Off My Lawn! (GoTM) browser. We discuss SSL certificate information, EV indicators, and cookie handling.
2025-06-2610 min
Root Causes: A PKI and Security PodcastRoot Causes 508: What Is Code Vibing?"Code vibing" is using generative AI to create or improve working code. We share Jason's adventure using code vibing to create his own web browser.
2025-06-2317 minRoot Causes: A PKI and Security PodcastRoot Causes 508: What Is Code Vibing?"Code vibing" is using generative AI to create or improve working code. We share Jason's adventure using code vibing to create his own web browser.
2025-06-2317 min
Root Causes: A PKI and Security PodcastRoot Causes 506: Recap of CABF Face-to-face #65For the first time ever, Jason and I record an episode from the floor of the CA/Browser Forum face-to-face meeting. We recap the themes of this meeting, and Jason gives his first impressions of a CABF Face-to-face.
2025-06-1708 minRoot Causes: A PKI and Security PodcastRoot Causes 506: Recap of CABF Face-to-face #65For the first time ever, Jason and I record an episode from the floor of the CA/Browser Forum face-to-face meeting. We recap the themes of this meeting, and Jason gives his first impressions of a CABF Face-to-face.
2025-06-1708 min
Root Causes: A PKI and Security PodcastRoot Causes 504: Jason Programs a Quantum ComputerJason describes his recent experience using Amazon Braket.
2025-06-1017 minRoot Causes: A PKI and Security PodcastRoot Causes 504: Jason Programs a Quantum ComputerJason describes his recent experience using Amazon Braket.
2025-06-1017 min
Root Causes: A PKI and Security PodcastRoot Causes 502: The PQC Game of ChickenIn this episode Jason explains the fallacy of "playing chicken" with the Quantum Apocalypse. We discuss stack ranking and "eyes open" PQC risk decisions.
2025-06-0410 minRoot Causes: A PKI and Security PodcastRoot Causes 502: The PQC Game of ChickenIn this episode Jason explains the fallacy of "playing chicken" with the Quantum Apocalypse. We discuss stack ranking and "eyes open" PQC risk decisions.
2025-06-0411 min
Root Causes: A PKI and Security PodcastRoot Causes 500: OMG! 500 Episodes of Root Causes!Wow. It's episode 500 of Root Causes. Jason and Tim talk about how the podcast has evolved in the past six years, how it remains consistent, and the updates we're making to keep being a valuable resource for our listeners.
2025-05-2920 minRoot Causes: A PKI and Security PodcastRoot Causes 500: OMG! 500 Episodes of Root Causes!Wow. It's episode 500 of Root Causes. Jason and Tim talk about how the podcast has evolved in the past six years, how it remains consistent, and the updates we're making to keep being a valuable resource for our listeners.
2025-05-2920 min
Root Causes: A PKI and Security PodcastRoot Causes 487: Security 2030Jason and I take a peek forward at what we imagine IT security looks like in 2030. Topics include PQC, ZTNA, "green zones," deep fakes, IoT, connected cars, agentic AI, blockchain, and CLM.
2025-04-1646 minRoot Causes: A PKI and Security PodcastRoot Causes 487: Security 2030Jason and I take a peek forward at what we imagine IT security looks like in 2030. Topics include PQC, ZTNA, "green zones," deep fakes, IoT, connected cars, agentic AI, blockchain, and CLM.
2025-04-1646 min
Root Causes: A PKI and Security PodcastRoot Causes 476: The Need for Security KPIsJason recounts a 2024 Black Hat talk about the need for objective measurements of our IT defenses and whether the good guys or bad guys are winning. Jason breaks down how to define and measure the impact of security measures.
2025-03-1016 minRoot Causes: A PKI and Security PodcastRoot Causes 476: The Need for Security KPIsJason recounts a 2024 Black Hat talk about the need for objective measurements of our IT defenses and whether the good guys or bad guys are winning. Jason breaks down how to define and measure the impact of security measures.
2025-03-1016 min
Root Causes: A PKI and Security PodcastRoot Causes 474: Explaining Shor's AlgorithmWe talk a lot about Shor's Algorithm in our discussion of post quantum cryptography (PQC). In this episode Jason explains Shor's algorithm for non-quantum physicists.
2025-03-0221 minRoot Causes: A PKI and Security PodcastRoot Causes 474: Explaining Shor's AlgorithmWe talk a lot about Shor's Algorithm in our discussion of post quantum cryptography (PQC). In this episode Jason explains Shor's algorithm for non-quantum physicists.
2025-03-0221 min
Root Causes: A PKI and Security PodcastRoot Causes 473: Does Security Software Lack Creativity?Jason reports on a 2024 Black Hat keynote about how modern software development practices inhibit innovation and invention.
2025-02-2810 minRoot Causes: A PKI and Security PodcastRoot Causes 473: Does Security Software Lack Creativity?Jason reports on a 2024 Black Hat keynote about how modern software development practices inhibit innovation and invention.
2025-02-2810 min
Corrective CultureJason Pickard - The Abundance ArchetypeThis week, Jake & Callan are joined by Jason Pickard, a former Wall Street trader who transitioned from managing billion-dollar portfolios to becoming a holistic coach focused on integrating wealth with well-being. Jason shares his remarkable journey of transformation, offering insights on how to combine financial success with a meaningful, spiritually aligned life. They discuss the power of following your passions, the balance between money and health, and Jason’s Abundance Archetype framework—a unique approach that blends his financial expertise with his deep spiritual practice. Tune in to discover how you can achieve both prosperity and inner fulfi...
2024-09-221h 04
Root Causes: A PKI and Security PodcastRoot Causes 389: 2024 RSA Conference Wrap UpJason and I do our annual RSA wrap-up. Trending segments include AI, Trust Centers, MFA, PQC, and more.
2024-05-2827 min
Root Causes: A PKI and Security PodcastRoot Causes 389: 2024 RSA Conference Wrap UpJason and I do our annual RSA wrap-up. Trending segments include AI, Trust Centers, MFA, PQC, and more.
2024-05-2827 minRoot Causes: A PKI and Security PodcastRoot Causes 384: So What Is a Senior Fellow Anyway?Jason has a new title, Senior Fellow. In this episode Jason explains what his new focus will be and how this will be good for Root Causes.
2024-05-0707 min
Root Causes: A PKI and Security PodcastRoot Causes 384: So What Is a Senior Fellow Anyway?Jason has a new title, Senior Fellow. In this episode Jason explains what his new focus will be and how this will be good for Root Causes.
2024-05-0707 min
The Filmmaker’s Playbook#2 Stephen Shields: ScreenwriterWelcome to the The Filmmaker's Playbook, hosted by writer-director Jason Branagan.
This episode features an interview with Stephen Shields. Stephen is an acclaimed screenwriter. After winning RTÉ's Storyland in 2010 with his webseries 'Zombie Bashers' Stephen went on to write on RTÉ's flagship comedy show 'The Republic of Telly', where he was the longest-serving writer. He was nominated for two Irish Writers' Guild awards for his work on the show. Stephen also wrote for many other Irish comedy shows including the highly rated 'Callan's Kicks', 'Des Bishop's: This Is Ireland' and created and wrote 32 episodes of RTÉ...
2024-02-1447 min
The Insurance Growth LabJason Molnar - Co-Founder and Chief Strategy Officer of Infinity Labs: Internal Motivation, Sales by Saturation, and Fostering InnovationJason Molnar is the Co-Founder and Chief Strategy Officer of Infinity Labs. Infinity Labs is a technology company that delivers innovative solutions in various domains. Jason is a decorated U.S. Army combat veteran. He serves on the board of directors of Operation Socrates, a non-profit organization that supports veterans and their families, and on the board of directors for the Ohio Veterans Collaborative, whose mission is to help Ohio Veterans find success outside of the uniform.In this episode, you’ll learn:How to deploy “sales by satur...
2024-01-2542 minRoot Causes: A PKI and Security PodcastRoot Causes 351: 2024 PredictionsWe look forward to 2024 and predict trends for PKI, certificates, and digital identity. We discuss shortening certificate lifespans, Multi-perspective Domain Validation (MPDV), eIDAS 2.0, OCSP, post-quantum cryptography (PQC), Certificate Lifecycle Management (CLM), passwords, root stores, and government versus encryption. Plus, will Jason be sent to the gulag for not being Canadian enough?
2023-12-2718 min
Root Causes: A PKI and Security PodcastRoot Causes 351: 2024 PredictionsWe look forward to 2024 and predict trends for PKI, certificates, and digital identity. We discuss shortening certificate lifespans, Multi-perspective Domain Validation (MPDV), eIDAS 2.0, OCSP, post-quantum cryptography (PQC), Certificate Lifecycle Management (CLM), passwords, root stores, and government versus encryption. Plus, will Jason be sent to the gulag for not being Canadian enough?
2023-12-2718 minRoot Causes: A PKI and Security PodcastRoot Causes 294: Root Causes Honored by Webby AwardsThe Root Causes podcast has received a Webby Honoree award. Jason and Tim briefly celebrate and discuss the challenge of operating a niche, homemade podcast while being directly compared to professionally produced podcasts on mainstream topics from media companies. Plus, Tim's new Root Causes t-shirt.
2023-04-1309 min
Root Causes: A PKI and Security PodcastRoot Causes 294: Root Causes Honored by Webby AwardsThe Root Causes podcast has received a Webby Honoree award. Jason and Tim briefly celebrate and discuss the challenge of operating a niche, homemade podcast while being directly compared to professionally produced podcasts on mainstream topics from media companies. Plus, Tim's new Root Causes t-shirt.
2023-04-1309 minThe Insurance Growth LabBuilding a repeatable process, communication, and becoming an industry expert with Jason Walker (President at Agency Revolution)In this episode, Callan’s guest is Jason Walker, President of Agency Revolution. Before Agency Revolution, Jason was the Founder & CEO of Agency Insurtech and Co-Founder and Managing Partner of Smart Harbor. Join them as they discuss how to build a repeatable process within an organization, the power of strong written and verbal communication skills, and how to become an expert in an industry. Links: Find Jason on LinkedInConnect with Callan on LinkedIn
2023-04-0635 min
The Australian MMA PodcastBONUS: Hex Fight Series 25 feat. Demolition FS Breakdown w/ Callan 'The Rockstar' PotterHex FS 25 & Demolition FS Breakdown w/ Mitchell Tinley & Callan Potter
Callan Potter joins Mitchell Tinley to chat Hex Fight Series (Feb 24th 2023) & Demolition Fight Series (Feb 25th 2023) that occurred in Melbourne, Victoria. Callan gives his expect analysis on the fights and his thoughts on where to next for each fighter.
Skip to your favourite part:
Timecodes:
2:07 - Hex & Demolition Summary with Callan Potter
4:37 - Jess Medina vs Rodolfo Marques
6:33 - Harry Webb vs Akram Naman
7:38 - Colby Thicknesse vs Michael Barber
9:18 - Nikos...
2023-03-0129 minRoot Causes: A PKI and Security PodcastRoot Causes 250: 250 Episodes of Root Causes!It's Root Causes episode 250! In this episode Tim and Jason indulge themselves in podcasting about podcasting. Hear about setting up a podcast, choosing topics, why we don't rehearse, why we have so few guests, and how we reacted the first time someone asked us for a media kit.
2022-10-2626 min
Root Causes: A PKI and Security PodcastRoot Causes 250: 250 Episodes of Root Causes!It's Root Causes episode 250! In this episode Tim and Jason indulge themselves in podcasting about podcasting. Hear about setting up a podcast, choosing topics, why we don't rehearse, why we have so few guests, and how we reacted the first time someone asked us for a media kit.
2022-10-2626 min
Root Causes: A PKI and Security PodcastRoot Causes 205: Anatomy of an Encrypted Peer-to-Peer Mesh NetworkSecure online collaboration poses logistical and technical challenges under the best of circumstances. Now imagine you have no designated IT staff, no designated hardware, a small budget, and remote participants who are not deeply technical. In this episode Jason Soroko explains how he was able to quickly and easily create an encrypted communications mesh for use by him and his collaboration team.
2022-02-0912 minRoot Causes: A PKI and Security PodcastRoot Causes 205: Anatomy of an Encrypted Peer-to-Peer Mesh NetworkSecure online collaboration poses logistical and technical challenges under the best of circumstances. Now imagine you have no designated IT staff, no designated hardware, a small budget, and remote participants who are not deeply technical. In this episode Jason Soroko explains how he was able to quickly and easily create an encrypted communications mesh for use by him and his collaboration team.
2022-02-0912 min
Horror D'œuvresMinisode #8 Friday the 13th part X-2009It's over... Callan and Eric have reached the shores alive having survived the Friday the 13th series with Jason X, Freddy vs Jason, and the 2009 reboot/remake. Will they learn their lesson? Probably not.Buy the box set on Amazon in Canada and US and tell us what you thought about parts 10 to 12 by sending us an e-mail at hdpod666@gmail.com. You can also follow us on Twitter and Instagram @hdpod666.
2022-02-012h 22
Empowering People More Podcast with Eddy PerezSeason 2, Episode 16: Guest: Jason Callan: Where We Were and Where We Are NowJason Callan is the Chief Production Officer at EPM and has been with the company for 11 years.Jason is a mentee to some and a mentor to MANY. He works extremely hard at Equity Prime Mortgage to get his tasks and promises to the finish line.Jason and Eddy have been together in this industry for a long time and there is not an end in sight.Listen to their stories of how it started and how it's going-- it is sure to be empowering.
2021-10-2216 min
Root Causes: A PKI and Security PodcastRoot Causes 127: What Does a Chief Compliance Officer at a Public CA Do?Our co-host Tim Callan has changed his title to Chief Compliance Officer. Join him and co-host Jason Soroko as they discuss what compliance means at a public Certificate Authority (CA) like Sectigo and what the Chief Compliance Officer does.
2020-11-0514 min
Root Causes: A PKI and Security PodcastRoot Causes 127: What Does a Chief Compliance Officer Do at a Public CA Do?Our co-host Tim Callan has changed his title to Chief Compliance Officer. Join him and co-host Jason Soroko as they discuss what compliance means at a public Certificate Authority (CA) like Sectigo and what the Chief Compliance Officer does.
2020-11-0414 min
Root Causes: A PKI and Security PodcastRoot Causes 118: Quantum Apocalypse - What Is a Hybrid Certificate?As part of its quantum safe initiative, Sectigo is now offering its Quantum Safe Kit, which enables the creation of hybrid TLS certificates. In this episode our hosts are joined by guest Alan Grau to explain what hybrid certificates are, how they are essential to transitioning to quantum-safe crypto, and the ways enterprises can begin using them today.
2020-09-0723 min
Root Causes: A PKI and Security PodcastRoot Causes 117: Why Default Deny Matters to the CA/Browser ForumThis year the CA/Browser Forum has put considerable discussion into the concept of "default deny." It's a philosophy for how to interpret potential ambiguities in existing guidelines for public certificates, and how you land on the default-deny question can have a significant impact on how you interpret the rules. Join our hosts as they describe this debate and its potential impact on public certificates.
2020-09-0419 min
Root Causes: A PKI and Security PodcastRoot Causes 116: Ripple20 Exposes TCP/IP Vulnerabilities for IoTRipple20 is a recently announced set of documented vulnerabilities in the early Treck TCP/IP stack, a popular choice for early IoT devices. Our hosts are joined by guest Alan Grau, who explains the significance of these vulnerabilities, the difficulties in dealing with them, and how we can improve to avoid these problems in the future.
2020-08-3014 min
Root Causes: A PKI and Security PodcastRoot Causes 115: Signed HTTP Exchange (SXG) CertificatesAccelerated Mobile Pages, or AMP, is a Google standard for packaging web content for consistent and usable display on mobile devices. SXG certificates enable the display of the original publisher's authenticated URL in the mobile reader. Join us as we explain the potential benefits of SXG to readers and content publishers.
2020-08-2711 min
Root Causes: A PKI and Security PodcastRoot Causes 114: Is Quantum Computing a Threat to SHA-2?Quantum computers' threat to standardized encryption algorithms RSA and ECC has been much discussed. But what about our hashing algorithms? Do quantum computers pose a similar threat to SHA-2? Join our hosts as they discuss the difference between Shor's Algorithms and Grover's Algorithm, which applies to each part of cryptography, and how significant quantum computing will be for each.
2020-08-2111 min
Root Causes: A PKI and Security PodcastRoot Causes 113: What Is Certificate Pinning?Certificate pinning is the practice of coding software to demand the presence of a specific certificate brand or root in order to function correctly. Though once considered a legitimate security option, certificate pinning is widely discredited because it carries unacceptable certificate agility costs. Join our hosts as they explain what certificate pinning is, how it came about, and why nearly all developers should avoid certificate pinning today.
2020-08-1817 min
Root Causes: A PKI and Security PodcastRoot Causes 112: Introducing Sectigo Quantum LabsFor more than a year Sectigo has been providing the market with information to understand what we all must do to change our cryptography to prepare for quantum computers. Now Sectigo has announced Sectigo Quantum Labs, a destination for education on quantum-safe certificates (QSC) and our Quantum-Safe Kit, which allows enterprises to create their own hybrid quantum-safe certs. Join us as we articulate what Sectigo Quantum Labs has to offer you.
2020-08-1313 min
Root Causes: A PKI and Security PodcastRoot Causes 111: Secure Data InterconnectsDistributed data centers are extremely common in today's computing environments. Unencrypted replication of data across these centers leaves data open to theft. Nonetheless, existing systems and software leave that possibility open, and sometimes data replication occurs in the clear. Our hosts explain how this situation can come about and what to do about it.
2020-08-1012 min
Root Causes: A PKI and Security PodcastRoot Causes 110: Single-domain, Multi-domain, and Wildcard SSL CertificatesWhen you obtain an SSL certificate, you can choose between single-domain, multi-domain, and wildcard certificates. Join our hosts as they explain the different domain spaces available with TLS certificates and the pros and cons of each approach.
2020-08-0623 min
Root Causes: A PKI and Security PodcastRoot Causes 109: Examining MFA Through Phone-based SMSSMS-based one time password (OTP) is a very commonly used form of multi-factor authentication (MFA). That's because it's fast and inexpensive to roll out to users. Unfortunately it is deeply vulnerable to a set of well-defined attacks. In this episode our hosts explain why SMS MFA became so popular and how this outdated MFA scheme fails to provide the security expected by those who use it.
2020-07-2915 min
Root Causes: A PKI and Security PodcastRoot Causes 108: Why Do Certificates Expire?Root expirations occasionally make headlines by breaking systems, but it's a fact that certificates are expiring every day, each a potential outage waiting to happen. So why do certificates expire in the first place? Join our hosts as they discuss the reasons for expiration, its advantages over other mechanisms like revocation, and the right amount of time for a certificate to last.
2020-07-2419 min
Root Causes: A PKI and Security PodcastRoot Causes 107: IoT Security Baseline Requirements from ETSIETSI has published its new Baseline Requirements for consumer IoT device security, which includes a number of provisions directly related to encryption, strong identity, and device software integrity. Join our hosts as they describe the PKI-related portions of the new ETSI requirements and why they are valuable for security.
2020-07-2020 min
Root Causes: A PKI and Security PodcastRoot Causes 106: Massive Intermediate Certificate Distrust Is on the WayA recently identified and widespread configuration error has created a situation where, with the wrong attack on certain public roots, certificates could become essentially unrevokable. As a consequence, 14 public CAs will have to revoke their OCSP certificates, many of which are also intermediates, and permanently discontinue use of their keys. That leaves millions of active TLS, S/MIME, code signing, and document signing certificates in need of immediate replacement or they will be distrusted. Join our hosts as they explain what the problem is and what messy cleanup will be required to address these problems.
2020-07-1426 min
Root Causes: A PKI and Security PodcastRoot Causes 105: TOR, How and WhyMany people know that TOR is a browser used for anonymous online activity, but most of us don't know much more than that. In this episode our hosts explain how the TOR network operates, what its potential value is, and how TOR compares to a VPN.
2020-07-0820 min
Root Causes: A PKI and Security PodcastRoot Causes 104: 21 PKI Pitfalls to AvoidOur hosts often discuss the idea of errors in PKI implementations and the potential negative consequences for organizations. In this episode they categorize twenty-one PKI pitfalls to avoid according to five main categories of error: certificate problems, deployment problems, systemic security problems, governance problems, and visibility problems. Join us for a crisp description of these twenty-one pitfalls so you can be on the lookout for them.
2020-07-0628 min
Root Causes: A PKI and Security PodcastRoot Causes 103: Work-from-Home IT Impact StudyThe need to suddenly enable nearly 100% of information workers for secure, productive work-from-home was a curve ball for IT departments to deal with around the world. Sectigo recently released the results of a commissioned survey of 500 IT professionals about the impact of widespread WFH requirements on IT departments, roadmaps, security, and employee productivity. In this episode our hosts go over the biggest findings from this study.
2020-06-2916 min
Root Causes: A PKI and Security PodcastRoot Causes 102: Lawful Access to Encrypted Data ActA newly proposed US Senate bill called the Lawful Access to Encrypted Data Act would require service providers and device manufacturers to provide access to encrypted data based on a valid warrant. In this episode our hosts explain the bill's contents and some of the opportunities and pitfalls it presents.
2020-06-2615 min
Root Causes: A PKI and Security PodcastRoot Causes 101: Google RCS Chat with End-to-End EncryptionGoogle has just announced the coming availability of end-to-end encryption for its chat service. In this episode our hosts describe the spectrum of potential protection within the capabilities we call end-to-end encryption, including forward secrecy and durability of keys.
2020-06-2114 min
Root Causes: A PKI and Security PodcastRoot Causes 100: OpenSSH Deprecates SHA-1Once widely used, SHA-1 is considered insecure today and has been deprecated from the most common PKI use cases. OpenSSH recently provided a roadmap to its eventual deprecation of SHA-1. Join our hosts as they discuss the long, complex process of sunsetting a widely used cryptographic practice, the factors that contribute to these practices continuing beyond their secure lifespans, and the importance of crypto agility.
2020-06-1511 min
Root Causes: A PKI and Security PodcastRoot Causes 99: AddTrust Root Expiration ExplainedThe recent expiration of Sectigo's AddTrust legacy root caused some systems to stop working and forced some admins to keep working over the weekend until all was fixed. In this episode we explain roots, root expirations, why they are a non event for most users, and why sometimes an expiration can be more impactful.
2020-06-1228 min
Root Causes: A PKI and Security PodcastRoot Causes 98: DMARC and Verified Mark Certificates for EmailA new kind of identity certificate is coming that will enable businesses to include their logos in official email they send in order to improve customer confidence and protect against phishing. It is called a Verified Mark Certificate (VMC) and is built upon the DMARC standard, which controls which senders are allowed to send email using any given From address. In this episode our hosts explain VMCs and DMARC and how they will be used and then discuss where they fit in with S/MIME email certificates.
2020-06-0812 min
Root Causes: A PKI and Security PodcastRoot Causes 97: Firefox to Deprecate Support for FTPMozilla has announced its intention to remove support for FTP from the Firefox browser, citing concerns about security and the degree of effort required to keep this functionality current. Join our hosts as they discuss this announcement and its potential effects as well as the considerations that go into choosing when to drop support for outdated, unpopular, or sub-optimal capabilities in technology products.
2020-06-0411 min
Root Causes: A PKI and Security PodcastRoot Causes 96: Signal May Leave the USA to Protect Its End-to-End EncryptionCongress's proposed EARN IT act has many industry observers worried about its potential effect on the integrity of encrypted communication. In recent news, secure communication app Signal has floated the idea of relocating outside the United States if that's what's required to retain its ability to offer end-to-end encryption without spying eyes interfering.
In this week's episode, we discuss this announcement and related issues surrounding the keeping of digital secrets and encryption.
2020-06-0117 min
Root Causes: A PKI and Security PodcastRoot Causes 35: Quantum Apocalypse - Mosca's Inequality, Mad Max, and MohawksQuantum computers have the potential to defeat the RSA and ECC encryption underlying our digital world. We must swap out these algorithms before quantum computers reach that stage of maturity. But how long to we have? Join our hosts Tim Callan and Jason Soroko as they explain how to calculate the ominously named "Z date," the possible consequences of missing that deadline, and potential hairstyles for a post-apocalyptic world.
2019-08-2919 min
Root Causes: A PKI and Security PodcastRoot Causes 35: Quantum Apocalypse - Mosca's Inequality, Mad Max, and MohawksQuantum computers have the potential to defeat the RSA and ECC encryption underlying our digital world. We must swap out these algorithms before quantum computers reach that stage of maturity. But how long to we have? Join our hosts Tim Callan and Jason Soroko as they explain how to calculate the ominously named "Z date," the possible consequences of missing that deadline, and potential hairstyles for a post-apocalyptic world.
2019-08-2919 min
Douglasville ImpactMillage Rate Information With Finance Director Karin CallanCity of Douglasville Finance Director, MS Karin Callan, joins Host Jason Post, on this Special Edition of Douglasville Impact. As fall approaches it's time once again to examine how the City's property taxes are calculated. Karin has all the details on millage rates and how this will effect property taxes. Please share this episode with anyone who owns property within the city limits of Douglasville.
Show Notes:
City of Douglasville Website: douglasvillega.gov
City of Douglasville on Comcast: channel 22 throughout Douglas County
City of Douglasville on YouTube: mycititv.com
D...
2019-08-1413 minRoot Causes: A PKI and Security PodcastRoot Causes 17: Sectigo Acquires Icon LabsSectigo's recent acquisition of Icon Labs expands the company's capabilities in embedded OEM and device identity. Jason and Tim are joined by Icon Labs co-founder Alan Grau as our podcasters explore the needs and potential vulnerabilities for connected devices and the suite of technologies that can address these security requirements.
2019-05-1619 min
Root Causes: A PKI and Security PodcastRoot Causes 17: Sectigo Acquires Icon LabsSectigo's recent acquisition of Icon Labs expands the company's capabilities in embedded OEM and device identity. Jason and Tim are joined by Icon Labs co-founder Alan Grau as our podcasters explore the needs and potential vulnerabilities for connected devices and the suite of technologies that can address these security requirements.
2019-05-1619 min
Method To The MadnessJason MarshHost Ali Nazar interviews Jason Marsh, Editor in Chief of the Greater Good Science Center, on the campus organizations work on quantifying what makes people happy.Transcript:Ali Nazar:You're listening to KALX Berkeley 90.7 FM, University of California and listener supported radio. And this is Method to the Madness coming at you from the Public Affairs Department here at CalX, exploring the innovative spirit of the Bay Area. I'm your host, Ali Nazar. Thanks for joining us today. And with me in studio I have Jason Marsh, the founding editor-in-chief...
2018-09-1427 min
Sensei and DaveEPISODE 3 - The Wisdom of SolomonSensei and Dave are joined by their first ever human guest - one of Sensei's first ever students and qualified psychotherapist Sol 'The Sol man' Petrovski. Together they discuss the upcoming Wisdom for Life seminars and the connections between Bujinkan and his practice. Sensei channels Jason Vorhees for Weird Weapon Wednesday, Sensei explains the origin of the word 'ninja' and the pair discuss perhaps the most famous ninjas of the modern era - the teenage mutant turtle ones.
2016-09-2200 min