Podcast: Play in new window | Download (Duration: 33:20 — 38.2MB)Subscribe: Android | Email | Google Podcasts | RSSIn this Spotlight Podcast, sponsored by Trusted Computing Group*, Dennis Mattoon of Microsoft Research gives us the low-down on DICE: the Device Identifier Composition Engine Architectures, which provides a means of solving a range of security and identity problems on low cost, low power IoT endpoints. Among them: establishing strong device identity, doing device attestation and safe deployment at scale and verifying software updates.
The Electronic Frontier Foundation and other civil liberties groups are protesting the U.S. State Department’s proposal to collect social media profiles from Visa holders.
Podcast: Play in new window | Download (Duration: 43:26 — 49.7MB)Subscribe: Android | Email | Google Podcasts | RSSIn this episode, #97: we talk with Robert Xiao, the Carnegie Mellon researcher who investigated Location Smart, a free web application that allowed anyone track the location of a mobile phone using just the phone’s number. Also: we welcome University of Washington Researcher Kate Starbird back into the SL studio to talk about her latest research: examining the web of bloggers, news web sites, conspiracy theorists and government actors targeting human rights workers in Syria.
Podcast: Play in new window | Download (Duration: 25:57 — 29.7MB)Subscribe: Android | Email | Google Podcasts | RSSThere’s an epidemic of insecure Internet of Things devices. But why? And what is the shortest path to ending that epidemic? In this Spotlight Edition* of The Security Ledger Podcast, we speak with Deepika Chauhan, the Executive Vice President of Emerging Markets at DigiCert. Her job: forging new paths for the use of public key encryption to secure Internet of Things ecosystems.
Russia this week blocked hundreds of thousands of Amazon Web Services (AWS) sites in an apparent attempt to eliminate the secure Telegram messaging service from its borders. In the process, however, the government also disabled a number of legitimate websites operating in the country as well. Telegram is a service akin to WhatsApp that’s rapidly replacing the latter because messages sent over it are encrypted and not linked to Facebook data sharing. Russian, however, doesn’t want its citizens using Telegram, presumably because government can’t spy on them then–although the official reasoning is it’s an anti-terrorism method because Telegram officials is skirting new laws requiring the decryption of messages. Earlier this month, a Russian court officially blocked Telegram from being used in the country. On Monday, Russia’s federal censor directed the country’s ISPs to block hundreds of thousands of AWS IP addresses that were being used to bypass the Telegram ban, […]