Show Name: Cryptic Thoughts (changing cryptographic standards)
Contributors: Jay Young, Frederic Detienne, Wen Zhang, Pawel Cecot
Posting Date: July 28, 2016
Description: Recorded live at CiscoLive US 2016! The intent of this episode is to discuss the current state of cryptography and how some deadlines are approaching in regards to the SHA-1 hashing algorithm. We also discuss some of the newer generation cryptography algorithms and an overview of PKI deployments.
Listen Now (MP3 27.9 MB; 29:01 mins)
Subscribe to the Podcast in iTunes by clicking the image below:
Show Notes
Feb 14 2017 (Just in time to ruin your romantic date night)
http://social.technet.microsoft.com/wiki/contents/articles/32288.windows-enforcement-of-authenticode-code-signing-and-timestamping.aspx
Info on MD5 and collisions:
https://en.wikipedia.org/wiki/MD5
SHA-1 Freestart collision:
Not a full collision yet but one step away
https://sites.google.com/site/itstheshappening/
New Hope (Quantum Resistant Cryptography)
https://www.schneier.com/blog/archives/2016/07/googles_post-qu.html
Browser SHA-1 deprecation.
https://blog.cloudflare.com/sha-1-deprecation-no-browser-left-behind/
Cisco Next Generation Encryption Product Sheet
http://www.cisco.com/c/en/us/support/docs/security-vpn/ipsec-negotiation-ike-protocols/116055-technote-ios-crypto.html
Cisco Recommend Cryptography Algorithms
http://www.cisco.com/c/en/us/about/security-center/next-generation-cryptography.html