Loading…
BSidesLV 2015 has ended
View analytic
Tuesday, August 4 • 14:00 - 14:25
Check That Certificate

Sign up or log in to save this to your schedule and see who's attending!

Why are developers frequently disabling certification validation in their software? Is it because they are lazy or just plain imbecile? We decided to find out by writing examples to demonstrate certificate checking in as many languages as possible. We found that it was difficult to do properly in the best of libraries, and had catastrophic failure in anything less. There are even a few instances of the libraries built in functions getting it horribly wrong.

Speakers
JJ

Jacob Jernigan

Jacob Jernigan works for DigitalOcean on the support team where he ensures customers have the best support experience possible. Previously, he worked as a system administrator at a small information security consultancy. Outside of work, you will find him researching information security... Read More →
AS

Andrew Sorensen

Andrew lives in Seattle, WA and works as a Security Consultant at Leviathan Security Group. Andrew is the creator of WLNet and LocalCoast, under which he develops software. Andrew holds a Bachelor's of Science in Computer Science and is most interested in new methodologies for solving... Read More →


Tuesday August 4, 2015 14:00 - 14:25
Proving Ground Florentine E

Attendees (1)