The Horror of a Hash Complexity Attack

Michael Bush (10.Oct.2018 at 19:45, 10 min)
Talk at PHPSW: Coding Horror Stories, October 2018 (English - UK)

Rating: 4 of 5

Find out about The Horror of a Hash Complexity Attack

Who are you?

Claim talk

Talk claims have been moved to the new Joind.in site.

Please login to the new site to claim your talk

Want to comment on this talk? Log in or create a new account or comment anonymously

Write a comment

 
Please note: you are not logged in and will be posting anonymously!
= one plus six

Comments

Rating: 4 of 5

10.Oct.2018 at 19:57 by Lucia Velasco (32 comments) via Web2 LIVE

I don't know if the text was big enough for people at the back.
Interesting subject, one I haven't really considered before! I liked your use of tone, body language and pace as you spoke, and that you engaged the audience with eye contact and questions.
Live demo at a lightning talk?! Very daring!

Rating: 5 of 5

10.Oct.2018 at 19:57 by Christopher Gee (6 comments) via Web2 LIVE

Beautiful slide. Interesting topic. Love stuff on security and how to protect ourselves. Hard to hear as very softly spoken. Happy for this stuff to be shouted so we can all learn.

An actual demo of data as well. Brilliant.

Rating: 3 of 5

10.Oct.2018 at 19:58 by Mike Oram (28 comments) via Web2 LIVE

Really interesting attack vector, not one iv seen before so great to know about. Would have liked a more in depth explanation about how the attack works as felt it was a bit quick. Also needed large font sizes on the code examples and longer to read them, but otherwise well delivered and a great topic.

Rating: 4 of 5

10.Oct.2018 at 20:00 by Doug Fitzmaurice (15 comments) via Web2 LIVE

A good talk on a concept I didn’t know about! Glad we only accept JSON from authenticated clients!

I’d suggest putting the code samples and results on the slides, and skip the live demo - it makes it much easier to read and doesn’t take away from the lesson.

Rating: 4 of 5

10.Oct.2018 at 20:00 by Peter Stone (6 comments) via Web2 LIVE

Interesting talk, could have perhaps explained what hash collisions were and how they applied to this attack. Confidentiality given

Rating: 4 of 5

10.Oct.2018 at 20:19 by Martin Bampton (19 comments) via Web2 LIVE

Informative, hadn't heard of that type of attack before so definitely needs looking into as a laravel user! Main improvement would be in checking the demo is visible to everyone in the room (text was a bit small!)

Rating: 4 of 5

10.Oct.2018 at 20:36 by Mark Finney (5 comments) via Web2 LIVE

Interesting, i will look into this but needed more time to understand it (probably me not your explanation)

Rating: 4 of 5

17.Oct.2018 at 16:01 by Rafael Esteller (3 comments) via Web2 LIVE

Very interesting topic, and more than one Laravel dev went home scared after it.. Good talk! To be improved: bigger text size and microphone.

© Joind.in 2018