< Talk at DeepSec: Why IT Security Is Fucked Up And What We Can Do About It
18.11.2014
18.11.2014
Talk at DeepSec: Java's SSLSocket: How Bad APIs Compromise Security
Dr. Georg Lukas will give a talk about Java's SSL Socket at DeepSec 2014 in Vienna.
Internet security is hard. TLS is almost impossible. Implementing TLS correctly in Java is "Nightmare!". This talk will show how a badly designed security API introduced over 15 years ago, combined with misleading documentation and developers unaware of security challenges, causes modern smartphone applications to be left exposed to Man-in-the-Middle attacks.
Georg Lukas obtained his Ph.D. degree in 2012 in the context of wireless protocol design. Since then, he is working as an IT security consultant at rt-solutions.de GmbH, based in Cologne.
