« Security Hype 7.8-Bob Relyea AACS Part 2: Practical implications of key compromises. Voicemail line 1-866-527-6606
Security Hype 7.10-SecurityCartoon.com - Voicemail line 1-866-527-6606 »
15 09 2007

Security Hype 7.9-How Netscape tried to keep ahead of the hackers. Voicemail line 1-866-527-6606.

Posted by: bill in SSL, encryption, general security, podcast
 
icon for podpress  How Netscape tried to keep ahead of the hackers [10:37m]: Play Now | Play in Popup | Download (1975)

Bill and Bob invite Bob Relyea back to reminisce on Netscape’s early challenges to keep “strong crypto” out of the hands on “non US Domestic” persons, as declared by US Export Restrictions laws. The race was one! You’ll hear what Netscape crypto engineers did to try to stay ahead of the hackers, and the level of effort the hackers used to circumvent them.  This is the classic “cat and mouse” game. Check out the old Fortify effort, which has been frozen circa 2000 when Netscape released version 4.73 that included 128-bit crypto to everyone.

Paul Kocher did a great job at explaining the real challenge faced by security developers: Why companies want to make this a “Stalemate” problem instead of a “Checkmate” one. (PDF Link)

Send your show suggestions and feedback to comments@SecurityHype.com or call the studio line at 1-866-527-6606.

This entry was posted on Saturday, September 15th, 2007 at 9:42 pm and is filed under SSL, encryption, general security, podcast. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply

Bad Behavior has blocked 84 access attempts in the last 7 days.