« Blue Box #54: new VoIP security tools list, teleworker FUD, Phil Zimmermann, ETel feedback, SPIT, IETF, listener comments and more... | Main | Blue Box SE #17: Interview with Saverio Niccolini from NEC about efforts to combat SPIT »

March 16, 2007

Security Round Table podcast on OpenID and Security

As I've mentioned on recent Blue Box episodes, I recently got together with two other members of the Security Round Table, Michael Santarcangelo and Martin McKeay, to explore the issues around OpenID and security.

We have shared the resulting conversation as a SRT podcast, and have also published as the show notes the large body of links that we accumulated during our preparation for the show.  I'd encourage you to check out the SRT site purely for the links alone, as I think we pulled together one of the more comprehensive lists of links I've seen related to OpenID.  If you are not familiar with OpenID, the links in the SRT show notes will help you understand more about it.  I've also written more about it over on my DisruptiveTelephony blog.

In the end, the three of us came aware quite impressed with the possibilities of OpenID with regard to the specific piece of the identity puzzle that it is aiming to solve.  We hope this podcast helps people understand both the potential benefits as well as a few potential challenges with regard to security and OpenID.  Comments and feedback are very definitely welcome.

Technorati tags: , , , ,

Posted by on March 16, 2007 at 04:29 PM in Podcasts |

| |

Comments

The comments to this entry are closed.

The Obligatory Photo

Contact Information

License

Full Disclosure

  • Dan York, CISSP, is the Chair of the VOIP Security Alliance (VOIPSA) and Senior Content Strategist for the Internet Society.

    Jonathan Zar is affiliated with Pingalo and is the Secretary of VOIPSA and member of the Board of Directors.

    This is a personal project and neither the Internet Society, Pingalo nor VOIPSA have any formal connection to this podcast. In the interest of transparency we just thought you should know our affiliations.

Why "Blue Box"?

  • We chose the name "Blue Box" primarily as a nod to the era of phone phreaking in part to illustrate that threats to telephony are not new - they just continue to change and evolve. That and admittedly the name just sounded cool.

Archives

Categories

Search

Promote Blue Box!

  • Add this graphic to your site!

Recent Posts

Recent Comments

Subscribe to this blog's feed