banner USF Home College of Arts & Sciences OASIS myUSF USF A-Z Index

USF Home > College of Arts and Sciences > Department of Mathematics & Statistics

Mathematics & Statistics
  Colloquium Archive

Colloquia — Summer 2018

Friday, May 18, 2018



How cryptographic security fails in the real world
Nadia Heninger
University of Pennsylvania
CMC 118
Jean-François Biasse


Cryptography is a cornerstone of modern computer security. After several decades of academic and scientific development, we have a good understanding of how to design provably secure schemes. However, there is a significant gap between our theoretical understanding and the reality present in deployed systems today. In this talk, I will show how algorithmic insights and an Internet-scale view of cryptographic protocols have allowed us to discover several catastrophic security failures in practice. These include the discovery of malfunctioning random number generators, dangerous use of hard-coded parameters that had been widely believed to be harmless, and multiple compromises of deliberately weakened cryptography.