Dreaming out loud most of the time, cloud solutions architect the rest of the time.
Current interests:
- Confidential computing
- Cloud Security
My bank uses phone SMS as its standard "2-factor authentication" -- better than nothing at all but GROSSLY insecure compared to encrypted messaging that it refuses to supply.
I paid extra for an RSA dongle, but when I log in there's an option to use SMS, which makes the dongle completely pointless.
Crap security is standard in the banking industry -- because contrary to pious words, it doesn't give a damn about your financial privacy.
Great example of using Cloudflare to scale globally
Troy Hunt: Closer to the Edge: Hyperscaling Have I Been Pwned with Cloudflare Workers and Caching
I've spent more than a decade now writing about how to make Have I Been Pwned (HIBP) fast. Really fast. Fast to the extent that sometimes, it was even too fast: The response from each search was coming back so quickly that the user wasn’t sure if it was
Billie Jean King took tennis equity to the top of sport. She never got comfortable there - The Athletic
Elevating Security with Arm CCA –
Armv9-A has recently been enhanced with realm management extension (RME), which provides an architecture designed to protect code and data using the techniques of confidential computing on different form factors.
Communications of the ACM
https://cacm.acm.org/practice/elevating-security-with-arm-cca/
The number of outages caused by certificate pinning is increasing. We’ll explore why certificate pinning hasn’t kept up with modern standards and recommend alternatives to improve security while reducing management overhead.
Dan Gillmor
