Reading List

• Pitfalls of rolling your own E2EE protocol

  pwn.recipes

   • 

  14 Aug 2021

  A short analysis of an e2ee chat app that used a non-cryptographically secure RNG, offered no way to verify keys and shows all user’s names in a searchable directory to all users.

• Do not do in code what can be done in infrastructure

  Roger Johansson

   • 

  @RogerAlsing

   • 

  20 May 2017

  Or subtitle: Maybe distributed programming is no longer a programming problem? (For the obvious impaired: This is meant to be more thought provoking than an actual truth)