Felix Gröbert

@fel1x

Information Security . Opinions own, unless compromised. Tweets deleted periodically.

Zurich, Switzerland
Beigetreten November 2008

Tweets

Du hast @fel1x blockiert

Bist du sicher, dass du diese Tweets sehen willst? Das Ansehen von Tweets wird @fel1x nicht entblocken.

  1. hat retweetet

    Did you know that is covered by our Vulnerablity Reward Program? Check out the details at . We're excited to hear from security researchers about vulnerabilities in this foundational networking data plane component.

    Rückgängig machen
  2. hat retweetet

    Centralized databases with millions of sensitive PIIs WILL be compromised.

    Rückgängig machen
  3. hat retweetet

    Crypto-twitter is mad that Zoom is duplicating stuff because of FIPS, but limited algorithm selection is, I find, a more minor cost of FIPS. The “integrity” check, and the eng time spent doing busy-work x times per year for y different platforms is much larger.

    Rückgängig machen
  4. hat retweetet

    Here is a write-up of a very interesting RCE bug I found on Google Cloud Deployment Manager for the :

    Rückgängig machen
  5. hat retweetet

    The most useful thing to me about Tink is that it was grown to solve the needs of shipping software vs. coming from purely a cryptographer’s point of view. I want something that I can give to software engineers and they can easily understand and use.

    Rückgängig machen
  6. hat retweetet

    Today I got a Google Cloud RCE report submitted, triaged, escalated to P0 S0, and with a "Nice catch!", all in under 5 minutes (Thx ). could it be considered the fastest RCE report ever? 😝

    Rückgängig machen
  7. hat retweetet

    Here's the repository of the upcoming Swiss contact tracing app and it would be super duper cool if you could look at the docs and the code before spreading your FUD all over Twitter.

    Rückgängig machen
  8. hat retweetet

    An interesting read if you want to get a quick overview of the current status of and what's wrong (and there's a lot wrong!): - "An Investigation Into PEPP-PT" by

    Rückgängig machen
  9. hat retweetet

    Going outside and think you can get away with it? Please take this test by Scarfolk Police.

    Rückgängig machen
  10. hat retweetet

    How exactly can privacy-preserving Bluetooth COVID-19 alerts work if identifiable personal data never leaves your device? It's actually not so complicated, and even less so now has made a fantastic, public domain, comic explaining it: 1/

    Diesen Thread anzeigen
    Rückgängig machen
  11. hat retweetet

    With the Easter weekend coming up, here is the latest advice.

    Rückgängig machen
  12. So… I wrote a thing or two in the . Read it online for free at if you want to see our approach for building secure software.

    Rückgängig machen
  13. hat retweetet

    The Google security scanning automation team is looking for a (Java) software engineer in Zürich (no remote work). Ideally the candidate has a background in software development and security. If you are interested, ping me. Please retweet!

    Rückgängig machen
  14. hat retweetet

    If you were wondering what kind of decentralized, privacy preserving proximity tracing reference design we were working on then we have a fun read for you folks:

    Rückgängig machen
  15. Solid design. Even considers TLS size/timing leaks :)

    Rückgängig machen
  16. Infosec peeps: if you want to help with tracing consider reviewing the designs and code of this and associated repos

    Rückgängig machen
  17. hat retweetet

    We are looking for passionate and talented Security Engineers to join the Google Security Team in Sydney. Come work with us to defend and protect Google's infrastructure:

    Rückgängig machen
  18. hat retweetet

    Brilliant. Singapore made an app that simply broadcasts and records anonymous Bluetooth addresses you go near. If one person gets COVID, they anonymously tell those potentially in contact. 🤯👏

    Rückgängig machen
  19. hat retweetet

    A minimal example for using Sandboxed API in your CMake projects: This is basically a betatest for new documentation.

    Diesen Thread anzeigen
    Rückgängig machen
  20. I would love to correlate the results with opinions about geofence warrants because the trade is similar (privacy/lives) but on a larger scale (geo/pii)

    Rückgängig machen

Das Laden scheint etwas zu dauern.

Twitter ist möglicherweise überlastet oder hat einen vorübergehenden Schluckauf. Probiere es erneut oder besuche Twitter Status für weitere Informationen.

    Vielleicht gefällt dir auch

    ·