Go's Cryptography Packages Were Audited: The Results
Programming Tech Brief By HackerNoon
Audio is streamed directly from the publisher (media.transistor.fm) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
This story was originally published on HackerNoon at: https://hackernoon.com/gos-cryptography-packages-were-audited-the-results.
The audit produced a single low-severity finding, in the legacy and unsupported Go+BoringCrypto integration, and a handful of informational findings.
Check more stories related to programming at: https://hackernoon.com/c/programming.
You can also check exclusive content about #go, #golang, #go-cryptography-security, #go-security-audit, #go-cryptography-packages, #go-audit, #timing-side-channels, #hackernoon-top-story, and more.
This story was written by: @Go. Learn more about this writer by checking @Go's about page,
and for more stories, please visit hackernoon.com.
Go ships with a full suite of cryptography packages in the standard library to help developers build secure applications. Google recently contracted the independent security firm [Trail of Bits] to complete an audit of the core set of packages. The audit produced a single low-severity finding, in the legacy and unsupported [Go+BoringCrypto integration], and a handful of informational findings.