2022-05-27 @Matthias Valvekens
Why point compression shouldn't scare you
The most widely used method to represent ECC public keys represents the key by directly encoding the coordinates of the public key point as-is. However, there’s an alternative method that not only uses less data, but also comes with a number of security benefits (almost) for free.
2022-05-25 @Matthias Valvekens
PyCon LT 2022
I was invited to speak at PyCon LT 2022. Right now, I’m getting on a plane for the first time in over two years. The last time I gave an in-person talk at a conference was back in late 2019. It’s been a while…
2022-04-17 @Matthias Valvekens
Using KeePassXC as a credential manager for sudoed Docker
As noted in the official documentation, having access to the Docker daemon amounts to having passwordless root access to all files on the system.
That’s why, even on my development machine, I don’t put my personal account in the docker group.
As such, I have to use sudo every time I need to interface with the Docker daemon.
2022-02-11 @Matthias Valvekens
FOSDEM 2022 talk: How (not) to make a mockery of trust
Last week, I gave a talk on testing & mocking PKI-based workflows from the relying party’s point of view at FOSDEM ’22, in the Testing & Automation devroom. The session was recorded, and is embedded below. Due to an unfortunate technical issue, the recording of the live Q&A session wasn’t usable.