Monkey-In-The-Middle (and Other Public-Key Quandaries)

March 30, 2001

100

Monkey-In-The-Middle (and Other Public-Key Quandaries)

In 2000, I released the first public cryptographic man-in-the-middle exploits against HTTPS and SSH, in my dsniff toolkit. This talk explored some of the human factors engineering issues involved, paying homage to Don Davis' concept of "compliance defects" as a security design issue.

http://archive.oreilly.com/pub/a/oreilly/networking/news/silverman_1200.html

CanSecWest 2001, Vancouver

Dug Song

March 30, 2001

Tweet

More Decks by Dug Song

See All by Dug Song

Midwest Mavericks - a2tech360

Michigan Innovation Summit 2023

MFF State of Innovation - Trista Van Tine

Midwest Mavericks - MGCS 2023

Tech Hubs Statutory Overview

CHIPS R&D and NSTC

Advancing Greater Detroit's Startup Ecosystem

Iron Chef Michigan

Leading While AAPI

Other Decks in Technology

See All in Technology

[PHPカンファレンス沖縄2023]【実践編】良いプロダクト作りのための組織育成健全なコードは健全な組織、健全なチームから

SRE成熟度評価におけるポストモーテムLv.3ガイドライン

土壌と植物で奏でるアート~農業における新たなパラダイム~

コドモンSREにおけるオブザーバビリティ改善の道のり

R Not Only in Production

リスキリングの特効薬！「技術コミュニティ」のススメ

Generative UX in LLM Application

【新卒研修資料】基礎統計学 / Basic of statistics

S3から始めるAWS 〜S3の簡単なユースケースの紹介〜

DroidKaigi 2023

KubernetesにおけるSBOMを利用した脆弱性管理/Vulnerability_Management_with_SBOM_in_Kubernetes

2023/09/14 Fin-JAWS #32 「SIEM on Amazon OpenSearch Serviceを1年運用してわかったこと」

Featured

See All Featured

A Philosophy of Restraint

Design and Strategy: How to Deal with People Who Don’t "Get" Design

Building Applications with DynamoDB

GraphQLの誤解/rethinking-graphql

RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub

GraphQLとの向き合い方2022年版

The Invisible Side of Design

What's in a price? How to price your products and services

Designing with Data

In The Pink: A Labor of Love

The Cost Of JavaScript in 2023

Transcript