Open Source Security

Josh and Kurt are at the same place at the same time! We discuss our RSA sessions and how things went. Talk of CVE IDs, open source libraries, Wordpress, and early morning sessions.

Josh and Kurt discuss random numbers, a lot. Also slot machines, gambling, and dice.

Josh and Kurt discuss door locks, Ikea, chair testing sounds, electrical safety, autonomous cars, and XML vs JSON.

Josh and Kurt discuss security automation. Machine learning, AI, and a bunch of moral and philosophical boundaries that new future will bring. You've been warned.

Josh and Kurt discuss the security of the movie Rogue One! Spoiler: Security in the Star Wars universe is worse than security in our universe.

Josh and Kurt discuss their involvement in the upcoming 2017 RSA conference: Open Source, CVEs, and Open Source CVE. Of course IoT and encryption manage to come up as topics.

Josh and Kurt discuss NTP, authentication issues, network security, airplane security, AI, and Minecraft.

Josh and Kurt end up discussing video game speed running, which is really just hacking. We also end up discussing the pitfalls of the modern world, you don't own your software or services. Stallman was right!

Josh and Kurt end up discussing CES, IoT, WiFi everywhere, and the future.

Josh and Kurt discuss 2016 predictions in 2017, what they got right, what they got wrong, and a bunch of other random things.

Josh and Kurt talk about scareware, malware, and how hard this stuff is to stop, and how the answer isn't fixing people.

Josh and Kurt talk about planned obsolescence and IoT devices. Should manufacturers brick devices? We also have a crazy discussion about the ethics of hacking back.

Josh and Kurt talk about CVE 10K. CVE IDs have finally crossed the line, we need 5 digits to display them. This has never happened before now.

Josh and Kurt talk about the death of PGP, and how it's not actually dead at all. It's still really hard to use though.

Josh and Kurt talk about the bricking devices (on purpose).

Josh and Kurt talk about the security concerns and logistics of Santa, elves, and the North Pole.

Josh and Kurt talk to Michael Goetzman about Cyphercon

Josh and Kurt talk about cybercrime and regulation.

Josh and Kurt talk about Cyber Monday security tips.

Josh and Kurt have a guest! David A. Wheeler talks about open source security and the CII Badges project.

Josh and Kurt talk about CVE, DWF, and the future of flaw reporting.

Josh and special guest host Dave Sirrine talk about feedback, OpenSSL, OAuth2, Let's Encrypt, disclosure, and locks.

Josh and special guest host Dave Sirrine talk about Halloween, passwords, hardware timing attacks, chip and pin, security economics, SSL/TLS, and Mozilla enabling TLS 1.3 by default.

Kurt and Josh discuss Dirty COW, the big IoT DDoS, and Josh can't pronounce Mirai or Dyn.

Kurt and Josh discuss responsible disclosure, irresponsible disclosure, bug bounties, measuring security, usability AND security, as well as quality of life.

Kurt and Josh discuss prime numbers (probably getting a lot of it wrong), Samsung, passwords, National Cyber Security Awareness Month, and bathroom scales.

Kurt and Josh discuss the ORWL computer, crashing systemd with one line, NIST, and a security journal.

Kurt and Josh discuss interesting news stories

Kurt and Josh discuss the recent OpenSSL update(s)

Josh and Kurt discuss news of the day, shipping, and container security

Josh and Kurt discuss news of the day, banks, 3D printing, and lockpicking.

Episode 2 of the Open Source Security Podcast

Episode 1 of the Open Source Security Podcast