AES-NI: Hardware Encryption in your Processor
Not long ago, I had to sit through an Intel marketing presentation. Now, I like Intel. I’ve got at least 4 running Intel processors in my apartment. However, I dislike marketing presentations. And this...
View ArticleThe BEAST That Slayed SSL?
We’re screwed. Well, maybe. As you’ve probably seen all over the Twitters and coverage from The Register, security researchers Juliano Rizzo and Thai Duong may have found a way to exploit a previously...
View ArticleSSL: Who Do You Trust?
Note: This is a post that appeared on the site lbdigest.com about a year or so ago, but given that SSL is back in the news lately, I figured it’s worth updating and re-posting. Also, it features the...
View ArticleSSL’s No Good, Very Bad Couple of Months
The world of SSL/TLS security has had, well, a bad couple of months. ‘Tis but a limited exploit! First, we’ve had a rash of very serious certificate authority security breaches. An Iranian hacker was...
View ArticleTLS 1.2: The New Hotness for Load Balancers
Aright implementors of services that utilize TLS/SSL, shit just got real. TLS 1.0/SSL 3.0? Old and busted. TLS 1.2? New hotness. We config together, we die together. Bad admins for life. There’s an...
View ArticleIt May Already Be Too Late!
I’m very enthusiastic about anything that makes corporate IT suck less (such as BYOD, Bring Your Own Device), and despite not working for any company other than myself, I’m still quite sensitive to...
View ArticleBYOD And Juniper’s Big Brother
Twitter fight! I’ve been involved in a few twitter fights discussions recently, which are typically passionate conversations with people that hold passionate beliefs. However, the problem with arguing...
View ArticleGigamon Side Story
The modern data center is a lot like modern air transportation. Not nearly as sexy as it used to be, the food isn’t nearly as good as it used to be, and more choke points than we used to deal with....
View ArticleCreating Your Own SSL Certificate Authority (and Dumping Self Signed Certs)
SSL (or TLS if you want to be super totally correct) gives us many things (despite many of the recent shortcomings). Privacy (stop looking at my password) Integrity (data has not been altered in...
View ArticleBYOD: A Tale of Two Bringings of Devices
BYOD is certainly a hot topic lately. A bit ago I raised some concerns over Juniper’s Junos Pulse product, which allows a company to not only protect employees BYOD devices, but to also view their...
View Article
More Pages to Explore .....