36 min listen
Episode 23: Psychic Signatures in Java!
FromCryptography FM
ratings:
Length:
53 minutes
Released:
Jan 25, 2023
Format:
Podcast episode
Description
On April 19th 2022, Neil Madden disclosed a vulnerability in many popular Java runtimes and development kits. The vulnerability, dubbed "Psychic Signatures", lies in the cryptography for ECDSA signatures and allows an attacker to bypass signature checks entirely for these signatures. How are popular cryptographic protocol implementations in Java affected? What's the state of Java cryptography as a whole? Join Neil, Nadim and Lucas as they discuss.
Music composed by Yasunori Mitsuda. Special Guest: Neil Madden.
Music composed by Yasunori Mitsuda. Special Guest: Neil Madden.
Released:
Jan 25, 2023
Format:
Podcast episode
Titles in the series (24)
Episode 1: Post-Quantum TLS With KEMs Instead of Signatures!: KEMTLS is a modified version of TLS 1.3 that uses Key Encapsulation Mechanisms, or KEMs, instead of signatures for server authentication, thereby providing a sort of “post-quantum TLS”. But what even are KEMs? Are quantum computers even a thing that we should be worried about? On the first ever episode of Cryptography FM, we’ll be hosting Dr. Douglas Stebila and PhD Candidate Thom Wiggers to discuss these questions and more. by Cryptography FM