Chris Rohlf

@chrisrohlf

DoD, Matasano, LeafSR, Yahoo, now Security Staff Engineer . Review Board. Mostly cyber/natl security tweets. You know how to reach me

Somewhere in time
Vrijeme pridruživanja: veljača 2009.

Tweetovi

Blokirali ste korisnika/cu @chrisrohlf

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @chrisrohlf

  1. Prikvačeni tweet
    17. pro 2019.

    The history books of 2100 will include chapters on the algorithms that decided the outcome of some future conflict.

    Poništi
  2. 27. sij

    Can anyone shed some light on this? It looks like from a previous Fireeye report (from a possibly connected actor?) that they used “let’s encrypt”?

    Poništi
  3. 27. sij

    Highly underrated tweet. So subtle I almost missed it! A+

    Poništi
  4. proslijedio/la je Tweet
    23. sij

    I have to disagree with this. The security architecture on Android/iOS absolutely cuts down on end point security visibility, but that tradeoff results in a lot less malware and attacks in the first place. Mobile security was largely a success relative to the state of the desktop

    Poništi
  5. proslijedio/la je Tweet
    24. sij
    Odgovor korisniku/ci

    If 15 years ago, someone had predicted we’d see a billion computers with trusted boot, app signing, full disk encryption and Mandatory Access Control, I’d call them mad. And yet that’s what iOS has done. It’s been a runaway security success compared to desktop. Not even close.

    Poništi
  6. proslijedio/la je Tweet

    What we’re reading this week: 👉's AI in Support of Defense (EN & FR): 👉’s Global AI Index: 👉The Offense-Defense Balance of Scientific Knowledge from & Allan Dafoe:

    Poništi
  7. 24. sij

    Interesting paper on disclosure norms in AI research that builds upon comparisons to other fields including software vulnerability disclosure. “The Offense-Defense Balance of Scientific Knowledge: Does Publishing AI Research Reduce Misuse?”

    Poništi
  8. 23. sij

    I have to disagree with this. The security architecture on Android/iOS absolutely cuts down on end point security visibility, but that tradeoff results in a lot less malware and attacks in the first place. Mobile security was largely a success relative to the state of the desktop

    Poništi
  9. proslijedio/la je Tweet
    23. sij
    Poništi
  10. proslijedio/la je Tweet
    22. sij

    Careful adoption of cloud architecture is a great way to enhance an organization's efficiency & security posture. Check out our latest guidance on how to navigate the cloud securely to make sure an adversary doesn't rain on your parade:

    Poništi
  11. proslijedio/la je Tweet
    23. sij
    Poništi
  12. proslijedio/la je Tweet
    23. sij

    The first copies of my book The Hacker and the State are hot off the presses! My thanks to , David Petraeus, Lisa Monaco, , and Richard Harknett for their kind blurbs. The book is out in February and available for preorder now:

    Poništi
  13. 21. sij

    I’ll always jump in on these threads. Certain authoritarian states prefer ‘information security’ for a reason. USG uses ‘cyber’. If you want to effectively communicate with non-technical decision makers then you need to speak their language.

    Poništi
  14. 19. sij

    Theres a lot of FUD in EMV payments security. So this is just a reminder that wrote an entire book on it and published it for free.

    Poništi
  15. proslijedio/la je Tweet
    18. sij
    Odgovor korisniku/ci

    Did ya catch the associated talk?

    Poništi
  16. 18. sij

    I don't know who made but its pretty thorough!

    Poništi
  17. proslijedio/la je Tweet
    17. sij

    Google ISE 2004: While I met several wonderful people with whom I am still friends, two of the people who would have been my direct coworkers were so arrogant and off-putting that I turned down the offer. Such a rare occurrence that I got an email from Urs.

    Prikaži ovu nit
    Poništi
  18. 15. sij

    “What is the offense-defense balance and can we measure it?” Published in Spring 1998. Still a very thought provoking read when viewed through the lens of cyber security in 2020

    Poništi
  19. 15. sij

    Chrome has dense bugs but strong mitigations and a frequent release process. I prefer this over an alternative with no mitigations, infrequent releases, and sparse bugs (as measured by something like LOC).

    Prikaži ovu nit
    Poništi
  20. 15. sij

    This is a really good read by . When it comes to sparse vs dense bugs its too simplistic a measurement. It doesn’t take exploitability, mitigations or other factors into account.

    Prikaži ovu nit
    Poništi
  21. proslijedio/la je Tweet
    15. sij

    Today, we’re announcing the biggest change to Advanced Protection yet: enroll with just your phone. Simplifying Google’s strongest security:

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·