Episode 329 - Signing (What is it good for)
Open Source Security Podcast - En podcast af Josh Bressers & Kurt Seifried - Mandage
Kategorier:
Josh and Kurt talk about what the actual purpose of signing artifacts is. This is one of those spaces where the chain of custody for signing content is a lot more complicated than it sometimes seems to be. Is delivering software over https just as good as using a detached signature? How did we end up here, what do we think the future looks like? This episode will have something for everyone to complain about! Show Notes Twitter thread Kurt's security advisory page Bug 998