Some closer stories from my personal experience: at Amazon we hire a lot of people from college into a general-purpose SDE1 role. We've had many such people join one of our crypto-focused teams and absolutely succeed.
-
Show this thread
-
If you go through the commits of s2n, you'll find a bunch! And they are absolute *experts* now. It's amazing to watch them dissect things. This stuff is totally doable. It's not magic, forbidden knowledge only for the special few. It's for US!
1 reply 1 retweet 4 likesShow this thread -
My own story is littered with being garbage at math. I was a C student in high-school. Same when we did math at university. But getting into Cryptography really changed that. It unlocked a lot of the "why" of math for me, it gave it all a sudden purpose that was super motivating.
4 replies 2 retweets 19 likesShow this thread -
... I ended up *teaching* university level math, and I still teach a bit today. I still make mistakes, my numeracy isn't great, and I'm not going to be a mathematician any time soon, but it's gratifying to at least be competent. Thanks to Cryptography!
1 reply 1 retweet 10 likesShow this thread -
Final tweet: Don't be discouraged by the intimidating appearance, find a team and spend a few hours a week on it, and get stuck in. If you do it now, it's really really good timing, and you can make LOTS of money. Also: we're hiring.
2 replies 1 retweet 30 likesShow this thread -
This Tweet is unavailable.
-
Replying to @selrahc000
CloudHSM is the best HSM! if your design or regulatory requirements demand a HSM it’s much better than running your own! Lots of behind the scenes secops goes into it. Though I’d recommend KMS as a cheaper and more scalable alternative if you can use it.
0 replies 0 retweets 1 like -
This Tweet is unavailable.
-
Replying to @selrahc000
Multi-tweet answer! First: in general, the HSM trust model is that you trust the HSM manufacturer. There's attestation and an audit log, so every action is visible to you. If AWS were to access it, it'd be in the log.
1 reply 0 retweets 0 likes -
This Tweet is unavailable.
https://docs.aws.amazon.com/cloudhsm/latest/userguide/get-audit-logs-from-cloudwatch.html … , https://docs.aws.amazon.com/cloudhsm/latest/userguide/interpreting-audit-logs.html … , https://docs.aws.amazon.com/cloudhsm/latest/userguide/cloudhsm-audit-log-reference.html … It's pretty detailed logging.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.