Security Cryptography Whatever
@scwpod.bsky.social
@durumcrustulum.com, @sockpuppet.org, @dadrian.io
“Freewheelin’ dynamic”.
https://securitycryptographywhatever.com
https://podcasts.apple.com/us/podcast/feed/id1578405214
“Freewheelin’ dynamic”.
https://securitycryptographywhatever.com
https://podcasts.apple.com/us/podcast/feed/id1578405214
Pinned
Apple’s Memory Integrity Enforcement
YouTube video by Security Cryptography Whatever
youtu.be
NEW EPISODE!
Apple did a new security thing for their latest phones with memory integrity enforcement, we did a deep a dive as we could given that we couldn't get anyone from Apple to come on our podcast 😭
podcasts.apple.com/us/podcast/a...
open.spotify.com/episode/0DhC...
youtu.be/9FJwOI2PliU
Apple did a new security thing for their latest phones with memory integrity enforcement, we did a deep a dive as we could given that we couldn't get anyone from Apple to come on our podcast 😭
podcasts.apple.com/us/podcast/a...
open.spotify.com/episode/0DhC...
youtu.be/9FJwOI2PliU
NEW EPISODE!
Apple did a new security thing for their latest phones with memory integrity enforcement, we did a deep a dive as we could given that we couldn't get anyone from Apple to come on our podcast 😭
podcasts.apple.com/us/podcast/a...
open.spotify.com/episode/0DhC...
youtu.be/9FJwOI2PliU
Apple did a new security thing for their latest phones with memory integrity enforcement, we did a deep a dive as we could given that we couldn't get anyone from Apple to come on our podcast 😭
podcasts.apple.com/us/podcast/a...
open.spotify.com/episode/0DhC...
youtu.be/9FJwOI2PliU
Apple’s Memory Integrity Enforcement
YouTube video by Security Cryptography Whatever
youtu.be
October 31, 2025 at 5:28 AM
NEW EPISODE!
Apple did a new security thing for their latest phones with memory integrity enforcement, we did a deep a dive as we could given that we couldn't get anyone from Apple to come on our podcast 😭
podcasts.apple.com/us/podcast/a...
open.spotify.com/episode/0DhC...
youtu.be/9FJwOI2PliU
Apple did a new security thing for their latest phones with memory integrity enforcement, we did a deep a dive as we could given that we couldn't get anyone from Apple to come on our podcast 😭
podcasts.apple.com/us/podcast/a...
open.spotify.com/episode/0DhC...
youtu.be/9FJwOI2PliU
yw
I have just today discovered that podcasts can be chapterised, and that apparently @scwpod.bsky.social is painstakingly broken into chapters with often-joke names
August 23, 2025 at 1:41 PM
yw
Reposted by Security Cryptography Whatever
I have just today discovered that podcasts can be chapterised, and that apparently @scwpod.bsky.social is painstakingly broken into chapters with often-joke names
August 23, 2025 at 11:35 AM
I have just today discovered that podcasts can be chapterised, and that apparently @scwpod.bsky.social is painstakingly broken into chapters with often-joke names
Reposted by Security Cryptography Whatever
Come for the PGP dunks, stay for the broader discussion of why encrypted email doesn’t make sense
NEW EPISODE!
An OpenPGP.js bug gave us an excuse to tear encrypted email via PGP to shreds. William Woodruff joined us to explain the vuln & indulge our gnashing of teeth on why email was never meant to be encrypted:
securitycryptographywhatever.com/2025/08/22/s...
www.youtube.com/watch?v=IoL3...
An OpenPGP.js bug gave us an excuse to tear encrypted email via PGP to shreds. William Woodruff joined us to explain the vuln & indulge our gnashing of teeth on why email was never meant to be encrypted:
securitycryptographywhatever.com/2025/08/22/s...
www.youtube.com/watch?v=IoL3...
Stop Using Encrypted Email with William Woodruff
YouTube video by Security Cryptography Whatever
www.youtube.com
August 23, 2025 at 3:08 AM
Come for the PGP dunks, stay for the broader discussion of why encrypted email doesn’t make sense
NEW EPISODE!
An OpenPGP.js bug gave us an excuse to tear encrypted email via PGP to shreds. William Woodruff joined us to explain the vuln & indulge our gnashing of teeth on why email was never meant to be encrypted:
securitycryptographywhatever.com/2025/08/22/s...
www.youtube.com/watch?v=IoL3...
An OpenPGP.js bug gave us an excuse to tear encrypted email via PGP to shreds. William Woodruff joined us to explain the vuln & indulge our gnashing of teeth on why email was never meant to be encrypted:
securitycryptographywhatever.com/2025/08/22/s...
www.youtube.com/watch?v=IoL3...
Stop Using Encrypted Email with William Woodruff
YouTube video by Security Cryptography Whatever
www.youtube.com
August 23, 2025 at 3:01 AM
NEW EPISODE!
An OpenPGP.js bug gave us an excuse to tear encrypted email via PGP to shreds. William Woodruff joined us to explain the vuln & indulge our gnashing of teeth on why email was never meant to be encrypted:
securitycryptographywhatever.com/2025/08/22/s...
www.youtube.com/watch?v=IoL3...
An OpenPGP.js bug gave us an excuse to tear encrypted email via PGP to shreds. William Woodruff joined us to explain the vuln & indulge our gnashing of teeth on why email was never meant to be encrypted:
securitycryptographywhatever.com/2025/08/22/s...
www.youtube.com/watch?v=IoL3...
Reposted by Security Cryptography Whatever
The first part of this interview with my ex-colleague Alex is a great listen if you're a software engineer (or otherwise technical) and are interested in what we were working on as technologists at the Federal Trade Commission.
NEW EPISODE!
We chat with friend of the pod and special guest Alex Gaynor, former deputy chief technologist at the FTC and all around good Security Person™. Join for nerdery about WebAuthn, stay for accidentally melting down GitHub APIs around November 2020!
youtu.be/gBoGvyvsSi4
We chat with friend of the pod and special guest Alex Gaynor, former deputy chief technologist at the FTC and all around good Security Person™. Join for nerdery about WebAuthn, stay for accidentally melting down GitHub APIs around November 2020!
youtu.be/gBoGvyvsSi4
Alex Gaynor
YouTube video by Security Cryptography Whatever
youtu.be
August 17, 2025 at 4:03 PM
The first part of this interview with my ex-colleague Alex is a great listen if you're a software engineer (or otherwise technical) and are interested in what we were working on as technologists at the Federal Trade Commission.
NEW EPISODE!
We chat with friend of the pod and special guest Alex Gaynor, former deputy chief technologist at the FTC and all around good Security Person™. Join for nerdery about WebAuthn, stay for accidentally melting down GitHub APIs around November 2020!
youtu.be/gBoGvyvsSi4
We chat with friend of the pod and special guest Alex Gaynor, former deputy chief technologist at the FTC and all around good Security Person™. Join for nerdery about WebAuthn, stay for accidentally melting down GitHub APIs around November 2020!
youtu.be/gBoGvyvsSi4
Alex Gaynor
YouTube video by Security Cryptography Whatever
youtu.be
August 16, 2025 at 10:29 PM
NEW EPISODE!
We chat with friend of the pod and special guest Alex Gaynor, former deputy chief technologist at the FTC and all around good Security Person™. Join for nerdery about WebAuthn, stay for accidentally melting down GitHub APIs around November 2020!
youtu.be/gBoGvyvsSi4
We chat with friend of the pod and special guest Alex Gaynor, former deputy chief technologist at the FTC and all around good Security Person™. Join for nerdery about WebAuthn, stay for accidentally melting down GitHub APIs around November 2020!
youtu.be/gBoGvyvsSi4
First round of invites going out tonight!
July 31, 2025 at 2:41 AM
First round of invites going out tonight!
Reposted by Security Cryptography Whatever
Transcript: securitycryptographywhatever.com/2025/07/29/v...
Vegas, Baby!
We’re throwing a party in Vegas! Someone called it SCWPodCon last year, and the name stuck. It’s sponsored by Teleport, the infrastructure identity company. ...
securitycryptographywhatever.com
July 29, 2025 at 12:59 PM
Transcript: securitycryptographywhatever.com/2025/07/29/v...
Reposted by Security Cryptography Whatever
Come to SCWPodCon, sponsored by Teleport! securitycryptographywhatever.com/events/black...
SCWPodCon BlackHat 2025
"Security Cryptography Whatever" is hosting a party during BlackHat USA, brought to you by Teleport! Get tickets now!
securitycryptographywhatever.com
July 29, 2025 at 12:59 PM
Come to SCWPodCon, sponsored by Teleport! securitycryptographywhatever.com/events/black...
Reposted by Security Cryptography Whatever
New episode! Come to SCWPodCon, sponsored by Teleport! www.youtube.com/watch?v=tbnh...
Vegas, Baby!
YouTube video by Security Cryptography Whatever
www.youtube.com
July 29, 2025 at 12:59 PM
New episode! Come to SCWPodCon, sponsored by Teleport! www.youtube.com/watch?v=tbnh...
New episode! Come to SCWPodCon, sponsored by Teleport! www.youtube.com/watch?v=tbnh...
Vegas, Baby!
YouTube video by Security Cryptography Whatever
www.youtube.com
July 29, 2025 at 12:59 PM
New episode! Come to SCWPodCon, sponsored by Teleport! www.youtube.com/watch?v=tbnh...
Reposted by Security Cryptography Whatever
This Quantum Attack Is Live Now
YouTube video by Deirdre Connolly
www.youtube.com
July 16, 2025 at 5:57 PM
Signups are still open! Sponsored by Teleport!
We're throwing another SCWPodCon in Vegas! It's in the liminal space between BlackHat and DEF CON. Be there, or have FOMO.
We'll provide the drinks, you provide the conversation. Sign up here: securitycryptographywhatever.com/events/black...
We'll provide the drinks, you provide the conversation. Sign up here: securitycryptographywhatever.com/events/black...
SCWPodCon BlackHat 2025
"Security Cryptography Whatever" is hosting a party during BlackHat USA. Get tickets now!
securitycryptographywhatever.com
July 17, 2025 at 12:24 AM
Signups are still open! Sponsored by Teleport!
We're throwing another SCWPodCon in Vegas! It's in the liminal space between BlackHat and DEF CON. Be there, or have FOMO.
We'll provide the drinks, you provide the conversation. Sign up here: securitycryptographywhatever.com/events/black...
We'll provide the drinks, you provide the conversation. Sign up here: securitycryptographywhatever.com/events/black...
SCWPodCon BlackHat 2025
"Security Cryptography Whatever" is hosting a party during BlackHat USA. Get tickets now!
securitycryptographywhatever.com
July 10, 2025 at 8:00 PM
We're throwing another SCWPodCon in Vegas! It's in the liminal space between BlackHat and DEF CON. Be there, or have FOMO.
We'll provide the drinks, you provide the conversation. Sign up here: securitycryptographywhatever.com/events/black...
We'll provide the drinks, you provide the conversation. Sign up here: securitycryptographywhatever.com/events/black...
Should we throw another BlackHat party?
July 10, 2025 at 6:00 PM
Should we throw another BlackHat party?
Reposted by Security Cryptography Whatever
Wrote some words about memory safety and JITs. Basically, there are things we want out of hardware, but it's not MTE and it still involves migrating to memory safe languages
dadrian.io/blog/posts/m...
dadrian.io/blog/posts/m...
Sandboxes? In my process? It's more likely than you think.
Discussions around memory safety often focus on choice of language, and how the language can provide memory safety guarantees. Unfortunately, choosing a language is a decision made at the start of a p...
dadrian.io
July 6, 2025 at 3:58 PM
Wrote some words about memory safety and JITs. Basically, there are things we want out of hardware, but it's not MTE and it still involves migrating to memory safe languages
dadrian.io/blog/posts/m...
dadrian.io/blog/posts/m...
Still have one more slot for a sponsor for our annual Vegas event, poke @dadrian.io if you have money.
June 8, 2025 at 10:02 PM
Still have one more slot for a sponsor for our annual Vegas event, poke @dadrian.io if you have money.
NEW EPISODE!
It seems like everyone that deploys E2EE encrypted cloud storage seems to mess it up, often in new and creative ways. Our special guests Matilda Backendal, Jonas Hofmann, & Kien Tuong Trong give us a tour & discuss how to actually build one securely:
www.youtube.com/watch?v=sizL...
It seems like everyone that deploys E2EE encrypted cloud storage seems to mess it up, often in new and creative ways. Our special guests Matilda Backendal, Jonas Hofmann, & Kien Tuong Trong give us a tour & discuss how to actually build one securely:
www.youtube.com/watch?v=sizL...
www.youtube.com
May 19, 2025 at 10:54 PM
NEW EPISODE!
It seems like everyone that deploys E2EE encrypted cloud storage seems to mess it up, often in new and creative ways. Our special guests Matilda Backendal, Jonas Hofmann, & Kien Tuong Trong give us a tour & discuss how to actually build one securely:
www.youtube.com/watch?v=sizL...
It seems like everyone that deploys E2EE encrypted cloud storage seems to mess it up, often in new and creative ways. Our special guests Matilda Backendal, Jonas Hofmann, & Kien Tuong Trong give us a tour & discuss how to actually build one securely:
www.youtube.com/watch?v=sizL...
Reposted by Security Cryptography Whatever
This one was super fun. We talked with Jonas Hofmann, Kien Tuong Trong, and Matilda Backendal about a cross-section study of "E2EE" secure storage (not messaging, storage). Backendal is working to formalize that problem (it wasn't already!) Fun bugs!
securitycryptographywhatever.com/2025/05/19/e...
securitycryptographywhatever.com/2025/05/19/e...
E2EE Storage Done Right with Matilda Backendal Jonas Hofmann and Kien Tuong Trong
It seems like everyone that tries to deploy end-to-end encrypted cloud storage seems to mess it up, often in new and creative ways. Our special guests Matild...
securitycryptographywhatever.com
May 19, 2025 at 10:52 PM
This one was super fun. We talked with Jonas Hofmann, Kien Tuong Trong, and Matilda Backendal about a cross-section study of "E2EE" secure storage (not messaging, storage). Backendal is working to formalize that problem (it wasn't already!) Fun bugs!
securitycryptographywhatever.com/2025/05/19/e...
securitycryptographywhatever.com/2025/05/19/e...
Our guest Nicholas Carlini and his coauthors just won Best Paper at Eurocrypt 2025:
eprint.iacr.org/2024/1580.pdf
eprint.iacr.org/2024/1580.pdf
May 6, 2025 at 5:12 PM
Our guest Nicholas Carlini and his coauthors just won Best Paper at Eurocrypt 2025:
eprint.iacr.org/2024/1580.pdf
eprint.iacr.org/2024/1580.pdf
Migrating the US government to quantum-resistant cryptography is hard, luckily the gamer presidents are on it.
This episode is very not safe for work, nor does it reflect the political opinions of, well, anybody.
podcasts.apple.com/us/podcast/p...
securitycryptographywhatever.com/2025/03/23/p...
This episode is very not safe for work, nor does it reflect the political opinions of, well, anybody.
podcasts.apple.com/us/podcast/p...
securitycryptographywhatever.com/2025/03/23/p...
Picking Quantum Resistant Algorithms
Migrating the US government to quantum-resistant cryptography is hard, luckily the gamer presidents are on it. This episode is extremely not safe for work, n...
securitycryptographywhatever.com
March 24, 2025 at 5:35 AM
Migrating the US government to quantum-resistant cryptography is hard, luckily the gamer presidents are on it.
This episode is very not safe for work, nor does it reflect the political opinions of, well, anybody.
podcasts.apple.com/us/podcast/p...
securitycryptographywhatever.com/2025/03/23/p...
This episode is very not safe for work, nor does it reflect the political opinions of, well, anybody.
podcasts.apple.com/us/podcast/p...
securitycryptographywhatever.com/2025/03/23/p...
Reposted by Security Cryptography Whatever
I’ve been working on webauthn and passkeys on and off for > 1 year, and I can’t believe I missed this @scwpod.bsky.social with Adam Langley from Google, dating back to … 2022 🤯
If you’re interested in technical details about passkeys, it’s very good! securitycryptographywhatever.com/2022/08/11/p...
If you’re interested in technical details about passkeys, it’s very good! securitycryptographywhatever.com/2022/08/11/p...
Passkeys with Adam Langley
Adam Langley (Google) comes on the podcast to talk about the evolution of WebAuthN and Passkeys! David’s audio was a little finicky in this one. Believe us,...
securitycryptographywhatever.com
March 22, 2025 at 10:09 AM
I’ve been working on webauthn and passkeys on and off for > 1 year, and I can’t believe I missed this @scwpod.bsky.social with Adam Langley from Google, dating back to … 2022 🤯
If you’re interested in technical details about passkeys, it’s very good! securitycryptographywhatever.com/2022/08/11/p...
If you’re interested in technical details about passkeys, it’s very good! securitycryptographywhatever.com/2022/08/11/p...
Reposted by Security Cryptography Whatever
Reposted by Security Cryptography Whatever
Send us a voicemail. securitycryptographywhatever.com/voicemail/
Voicemail
Security Cryptography Whatever is a podcast about modern computer security and cryptography hosted by David Adrian, Deirdre Connolly, and Thomas Ptacek
securitycryptographywhatever.com
March 13, 2025 at 12:06 AM
Send us a voicemail. securitycryptographywhatever.com/voicemail/