On April 19th 2022, Neil Madden disclosed a vulnerability in many popular Java runtimes and development kits. The vulnerability, dubbed "Psychic Signatures", lies in the cryptography for ECDSA signatures and allows an attacker to bypass signature checks entirely for these signatures. How are popular cryptographic protocol implementations in Java affected? What's the state of Java cryptography as a whole? Join Neil, Nadim and Lucas as they discuss.

Music composed by Yasunori Mitsuda.

Special Guest: Neil Madden.

Rss Apple Podcaster
Podden och tillhörande omslagsbild på den här sidan tillhör Symbolic Software. Innehållet i podden är skapat av Symbolic Software och inte av, eller tillsammans med, Poddtoppen.