Episode 19 - Federal Backdoor Inspectors


Manage episode 156050049 series 1175089
By Discovered by Player FM and our community — copyright is owned by the publisher, not Player FM, and audio streamed directly from their servers.
Discussed Articles 1) WWW Smackdown: FBI vs Apple We interview law student Wendy Knox Everette about what the implications could be for the much talked about FBI warrant requiring Apple to remove security capabilities on the iPhone of one of the San Bernardino shooters. * https://twitter.com/wendyck * https://www.apple.com/customer-letter/ * https://www.apple.com/customer-letter/answers/ * https://assets.documentcloud.org/documents/2714001/SB-Shooter-Order-Compelling-Apple-Asst-iPhone.pdf * https://www.documentcloud.org/documents/2716811-Statement-from-the-FBI-Feb-20-2016.html * http://www.theguardian.com/technology/2016/feb/20/san-bernadino-county-fbi-gunman-apple-account * http://www.reuters.com/article/us-apple-encryption-victims-exclusive-idUSKCN0VV00B * http://www.bloomberg.com/news/articles/2015-10-26/apple-fights-doj-bid-to-force-it-to-help-unlock-iphone * https://www.lawfareblog.com/trust-apple-and-first-amendment * https://www.youtube.com/watch?v=CviaSxIltSg 2) How to Safely Store Your Users' Passwords in 2016 A review of the current recommendations for how to safely hash user passwords in 2016, which includes code samples. More importantly, it makes the often overlooked recommendation to design your password hashing system to be able to support changing which algorithm you use as technology and cryptanalysis techniques improve. * https://paragonie.com/blog/2016/02/how-safely-store-password-in-2016 * https://en.wikipedia.org/wiki/Key_derivation_function * https://eprint.iacr.org/2016/104.pdf 3) Hack Brief: Hackers Are Holding an LA Hospital’s Computers Hostage Hackers compromise the network of an LA hospital using a CryptoLocker-style malware. After spending a week evaluating the scope of the damage, the hospital administrators decided to pay the ransom to get their data back for $17,000 in bitcoins. * http://www.wired.com/2016/02/hack-brief-hackers-are-holding-an-la-hospitals-computers-hostage/ 4) Honorable Mention: B-Sides Seattle 2016 Recap We unfortunately ran out of time to cover this, but here are some links to check out from Braxton's time at B-Sides Seattle 2016. * http://www.securitybsides.com/w/page/103147483/BsidesSeattle2015 * https://docs.google.com/spreadsheets/u/1/d/1kAmyddbdYOnAHMz6r5j-zi6rv-8xJkJi49QTsSEPEo8/pubhtml?gid=1604256727# * https://www.blackhat.com/eu-15/briefings.html#bypassing-local-windows-authentication-to-defeat-full-disk-encryption

32 episodes available. A new episode about every 21 days averaging 37 mins duration .