BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:Pins\, Tacks\, and Slinks: Proposals for patching PKI on the web -
  Joseph Bonneau\, Google
DTSTART:20130508T151500Z
DTEND:20130508T161500Z
UID:TALK44802@talks.cam.ac.uk
CONTACT:Laurent Simon
DESCRIPTION:*Abstract:* \nThe Certificate Authority (CA) system\, added as
  an afterthought in the mid-1990s during initial development  of SSL\, has
  become a critical component for security on the web. Its faults have been
  become painfully clear over the past 2 years\, with at least four known C
 A compromises which have enabled eavesdropping of real user's web traffic 
 with grave consequences. This talk will survey the growing menagerie of pr
 oposals patching the CA system to mitigate such failures\, including HPKP\
 , Certificate Transparency\, DANE\, TACK\, Perspectives\, and s-links. It 
 will lay out the challenges inherent in any attempt to efficiently and sec
 urely distribute security policy on a global scale and compare several pot
 ential combinations of protocols which could be paths forward.\n\n*Bio:* J
 oseph Bonneau is an engineer at Google New York. He completed his PhD in 2
 012 at the Security Group in Cambridge under Ross Anderson on human authen
 tication.
LOCATION:Lecture Theatre 2\, Computer Laboratory\, William Gates Building
END:VEVENT
END:VCALENDAR