New Duo Labs White Paper! Chain of Fools: An Exploration of Certificate Chain Validation Mishaps
When software needs to leverage cryptography, developers usually use libraries or APIs that abstract the details away from them. However, sometimes the proper way to accomplish a cryptographic task is unclear, and developers may make mistakes.
At this year’s Black Hat Europe conference in London, Duo Labs researchers present Chain of Fools: An Exploration of Certificate Chain Validation Mishaps.
They will investigate what can go wrong in the implementation of certificate chain validation, the circumstances that lead to these incorrect implementations, the impact of these issues, and the patterns of bad advice on the internet that sustain the problem.
If you’re not able to attend Black Hat Europe 2020, you can read the Chain of Fools whitepaper here.