Cloudbleed and SHA-1 Collision with Max Burkhardt

SE Daily
By
Podcast Saturday, March 4 2017

Podcast: Play in new window | Download

Subscribe: RSS

Thursday February 23rd was a big day in security news: details were published about the Cloudbleed bug, which leaked tons of plaintext requests from across the Internet into plain view. On the same day, the first collision attack against SHA-1 was demonstrated by researchers at Google, foretelling the demise of SHA-1 as a safe hashing function.

What does this mean for the average engineer? What are the implications for regular internet users? Haseeb Qureshi interviews Max Burkhardt, a security researcher at Airbnb, to get to the bottom of what exactly happened, what it means, and how it affects the security of web applications.

Transcript

Transcript provided by We Edit Podcasts. Software Engineering Daily listeners can go to weeditpodcasts.com/sed to get 20% off the first two months of audio editing and transcription services. Thanks to We Edit Podcasts for partnering with SE Daily. Please click here to view or download the transcript for this show.


POPULAR

Software Daily

Software Daily

 
Subscribe to Software Daily, a curated newsletter featuring the best and newest from the software engineering community.


Exclusive Articles

Weaving Generative AI into DevSecOps

Developing Dave the Diver with Jaeho Hwang and Minsuk Cha

Spring AI and Java in 2024

Cloud Engineering

Building Chess.com with Jay Severson

Mastodon with Eugen Rochko

AWS re:Invent Special: PartyRock Generative AI Apps with Mike Miller

Business and Philosophy

Startup Investing with George Mathew

KubeCon Special: Docker with Justin Cormack

Software Architecture with Josh Prismon

Greatest Hits

Hardening C++ with Bjarne Stroustrup

Surviving ChatGPT with Christian Hubicki

Special Episode with George Hotz

Popular

  1. Why We Switched from Python to Go
  2. Startup Investing with George Mathew
  3. Netflix Engineering with Jay Phelps
  4. Authlete and Making OAuth Accessible with Justin Richer
  5. Slack Data Platform with Josh Wills

Hackers

Making React 70% faster with Aiden Bai of Million.js

Cross-functional Incident Management with Ashley Sawatsky and Niall Murphy

SDKs for your API with Sagar Batchu

Data

Spring AI and Java in 2024

Iceberg at Netflix and Beyond with Ryan Blue

Building a Data Lake with Adam Ferrari