Lightnews — Scholar-powered news

Stop Using Encrypted Email with William Woodruff

1 8 14

Security Cryptography Whatever @scwpod.bsky.social · Aug 23

NEW EPISODE!

An OpenPGP.js bug gave us an excuse to tear encrypted email via PGP to shreds. William Woodruff joined us to explain the vuln & indulge our gnashing of teeth on why email was never meant to be encrypted:

securitycryptographywhatever.com/2025/08/22/s...
www.youtube.com/watch?v=IoL3...

2 12 22

Reposted by Security Cryptography Whatever

Simon Fondrie-Teitler @simon.overgrown.garden · Aug 17

The first part of this interview with my ex-colleague Alex is a great listen if you're a software engineer (or otherwise technical) and are interested in what we were working on as technologists at the Federal Trade Commission.

Security Cryptography Whatever @scwpod.bsky.social · Aug 16

NEW EPISODE!

We chat with friend of the pod and special guest Alex Gaynor, former deputy chief technologist at the FTC and all around good Security Person™. Join for nerdery about WebAuthn, stay for accidentally melting down GitHub APIs around November 2020!

youtu.be/gBoGvyvsSi4

Alex Gaynor

youtu.be

2 3

Security Cryptography Whatever @scwpod.bsky.social · Aug 16

NEW EPISODE!

We chat with friend of the pod and special guest Alex Gaynor, former deputy chief technologist at the FTC and all around good Security Person™. Join for nerdery about WebAuthn, stay for accidentally melting down GitHub APIs around November 2020!

youtu.be/gBoGvyvsSi4

Alex Gaynor

youtu.be

1 4

Security Cryptography Whatever @scwpod.bsky.social · Jul 31

First round of invites going out tonight!

Reposted by Security Cryptography Whatever

Security Cryptography Whatever @scwpod.bsky.social · Jul 29

Transcript: securitycryptographywhatever.com/2025/07/29/v...

We’re throwing a party in Vegas! Someone called it SCWPodCon last year, and the name stuck. It’s sponsored by Teleport, the infrastructure identity company. ...

2 2

Reposted by Security Cryptography Whatever

Security Cryptography Whatever @scwpod.bsky.social · Jul 29

Come to SCWPodCon, sponsored by Teleport! securitycryptographywhatever.com/events/black...

"Security Cryptography Whatever" is hosting a party during BlackHat USA, brought to you by Teleport! Get tickets now!

1 2 1

Reposted by Security Cryptography Whatever

Security Cryptography Whatever @scwpod.bsky.social · Jul 29

New episode! Come to SCWPodCon, sponsored by Teleport! www.youtube.com/watch?v=tbnh...

1 3

Security Cryptography Whatever @scwpod.bsky.social · Jul 29

Transcript: securitycryptographywhatever.com/2025/07/29/v...

We’re throwing a party in Vegas! Someone called it SCWPodCon last year, and the name stuck. It’s sponsored by Teleport, the infrastructure identity company. ...

2 2

Security Cryptography Whatever @scwpod.bsky.social · Jul 29

Come to SCWPodCon, sponsored by Teleport! securitycryptographywhatever.com/events/black...

"Security Cryptography Whatever" is hosting a party during BlackHat USA, brought to you by Teleport! Get tickets now!

1 2 1

Security Cryptography Whatever @scwpod.bsky.social · Jul 29

New episode! Come to SCWPodCon, sponsored by Teleport! www.youtube.com/watch?v=tbnh...

This Quantum Attack Is Live Now

1 3

Reposted by Security Cryptography Whatever

Deirdre Connolly¹ ² @durumcrustulum.com · Jul 16

pew pew pew

www.youtube.com/watch?v=vtt8...

YouTube video by Deirdre Connolly

4 8

Security Cryptography Whatever @scwpod.bsky.social · Jul 17

Signups are still open! Sponsored by Teleport!

Security Cryptography Whatever @scwpod.bsky.social · Jul 10

We're throwing another SCWPodCon in Vegas! It's in the liminal space between BlackHat and DEF CON. Be there, or have FOMO.

We'll provide the drinks, you provide the conversation. Sign up here: securitycryptographywhatever.com/events/black...

"Security Cryptography Whatever" is hosting a party during BlackHat USA. Get tickets now!

Teleport: Easiest, Most Secure Infrastructure Access

2

Security Cryptography Whatever @scwpod.bsky.social · Jul 10

Thank you to Teleport for sponsoring the event! goteleport.com

Teleport delivers least privileged access on a foundation of cryptographic identity and zero trust, making infrastructure resilient to identity-based attacks, improving engineer productivity, and stre...

goteleport.com

Security Cryptography Whatever @scwpod.bsky.social · Jul 10

We're throwing another SCWPodCon in Vegas! It's in the liminal space between BlackHat and DEF CON. Be there, or have FOMO.

We'll provide the drinks, you provide the conversation. Sign up here: securitycryptographywhatever.com/events/black...

"Security Cryptography Whatever" is hosting a party during BlackHat USA. Get tickets now!

1 2

Security Cryptography Whatever @scwpod.bsky.social · Jul 10

The people demand SCWPodCon securitycryptographywhatever.com/events/black...

"Security Cryptography Whatever" is hosting a party during BlackHat USA. Get tickets now!

Sandboxes? In my process? It's more likely than you think.

Security Cryptography Whatever @scwpod.bsky.social · Jul 10

Should we throw another BlackHat party?

1 1

Reposted by Security Cryptography Whatever

David Adrian @dadrian.io · Jul 6

Wrote some words about memory safety and JITs. Basically, there are things we want out of hardware, but it's not MTE and it still involves migrating to memory safe languages

dadrian.io/blog/posts/m...

Discussions around memory safety often focus on choice of language, and how the language can provide memory safety guarantees. Unfortunately, choosing a language is a decision made at the start of a p...

dadrian.io

3 4

Security Cryptography Whatever @scwpod.bsky.social · Jun 8

Still have one more slot for a sponsor for our annual Vegas event, poke @dadrian.io if you have money.

2 1

Security Cryptography Whatever @scwpod.bsky.social · May 19

NEW EPISODE!

It seems like everyone that deploys E2EE encrypted cloud storage seems to mess it up, often in new and creative ways. Our special guests Matilda Backendal, Jonas Hofmann, & Kien Tuong Trong give us a tour & discuss how to actually build one securely:

www.youtube.com/watch?v=sizL...

E2EE Storage Done Right with Matilda Backendal Jonas Hofmann and Kien Tuong Trong

1 5

Reposted by Security Cryptography Whatever

Thomas Ptacek @sockpuppet.org · May 19

This one was super fun. We talked with Jonas Hofmann, Kien Tuong Trong, and Matilda Backendal about a cross-section study of "E2EE" secure storage (not messaging, storage). Backendal is working to formalize that problem (it wasn't already!) Fun bugs!

securitycryptographywhatever.com/2025/05/19/e...

It seems like everyone that tries to deploy end-to-end encrypted cloud storage seems to mess it up, often in new and creative ways. Our special guests Matild...

Picking Quantum Resistant Algorithms

1 1 8

Security Cryptography Whatever @scwpod.bsky.social · May 6

Our guest Nicholas Carlini and his coauthors just won Best Paper at Eurocrypt 2025:

eprint.iacr.org/2024/1580.pdf

1 3 12

Security Cryptography Whatever @scwpod.bsky.social · Mar 24

Migrating the US government to quantum-resistant cryptography is hard, luckily the gamer presidents are on it.

This episode is very not safe for work, nor does it reflect the political opinions of, well, anybody.

podcasts.apple.com/us/podcast/p...

securitycryptographywhatever.com/2025/03/23/p...

Migrating the US government to quantum-resistant cryptography is hard, luckily the gamer presidents are on it. This episode is extremely not safe for work, n...