Joanna Rutkowska

Joanna Rutkowska @rootkovska

@hyperfekt Thanks! There does not seem to be much info about the actual implementation and how to interact with the… https://t.co/PjclB6g5Xb — PolitiTweet.org

Joanna Rutkowska @rootkovska

Oh, how very prudent and proactive of you, @IntelSecurity! Now, we can all sleep well... https://t.co/8FIpC67JrV — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @ErrataRob: Kids, stop with this "potentially at risk" phrasing. You are "at risk" not "at risk of being at risk" https://t.co/IQsEscsTU0 — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @tehjh: https://t.co/oxmLyadV2T is really vague. is "local access" physical or ring 0? are the privescs ME->ME or CPU->ME? https://t.co/… — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @laparisa: This is the same hardware & OS @timberners_lee used to write https://t.co/COzkykZ3ZH (first browser) back in 1990! Pretty in… — PolitiTweet.org

Joanna Rutkowska @rootkovska

@hyperfekt Challenge-response is what I consider essential, while the actual protocol is more of a technicality. Any links to these rings? — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @mattblaze: I just read @sarahjeong's piece on Morgan Marquis-Boire. Devastatingly painful, but essential reading. https://t.co/TzOakwar… — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @rop_g: On elections, political violence and WikiLeaks https://t.co/hbYfTqRai7 — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @lucacarettoni: Full video: https://t.co/Cnrpa0SUrT This is REALLY scary stuff https://t.co/VxYn82W49X — PolitiTweet.org

Joanna Rutkowska @rootkovska

Roger Penrose on consciousness in "The Emperor's New Mind" (note the remark on beauty!): https://t.co/UJEyyoTNSH — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @x0rz: Chrome OS exploit abusing WebAsm. Full privesc w/ PageState, awk injection and crash reporter (multiple vulnerabilities leading t… — PolitiTweet.org

Joanna Rutkowska @rootkovska

@mricon Goal is to use it primarily to unlock the screen. To be able to wear it all the time (hence not-bulky-being… https://t.co/CwgFzo8hCx — PolitiTweet.org

Joanna Rutkowska @rootkovska

@n2vi We already have a working beta version of this, done as part of work for a customer :) Email me, and we will… https://t.co/rKOfKcirRG — PolitiTweet.org

Joanna Rutkowska @rootkovska

Could be some non-standard NFC protocol, only that: 1) come with USB reader which exposes it as a standard U2F devi… https://t.co/BGuMWuhV7Q — PolitiTweet.org

Joanna Rutkowska @rootkovska

Anyone could recommend a U2F-compatible NFC ring (as in: jewellery)? (Additional requirements: not bulky, women si… https://t.co/ce3os5Zo2J — PolitiTweet.org

Joanna Rutkowska @rootkovska

@lucacarettoni Thanks :) — PolitiTweet.org

Joanna Rutkowska @rootkovska

If the UI layer is compromised, everything can be proxied anyway (including HSM/U2F)... (This is because the user'… https://t.co/SgMUd5VvR8 — PolitiTweet.org

Joanna Rutkowska @rootkovska

I'll talk about "Security through Distrusting", contrasting this with "Security by Trusting/Correctness" approaches… https://t.co/SNDoEvzpMp — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @BlackHatEvents: KEYNOTES ANNOUNCED: @C_Painter & @rootkovska will Keynote #BHEU on Wednesday, Dec 6 and Thursday, Dec 7 - Details here:… — PolitiTweet.org

Joanna Rutkowska @rootkovska

"But he's a talented kid...!" Please! Do we really want a society comprised of talented assholes? I'm opting out o… https://t.co/uwI1P5kxSm — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @deviantollam: @MalwareTechBlog women are so frequently a target of that kind of nonsense... the hilarious degree to which some sad, ang… — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @MalwareTechBlog: I know some of the people behind the MalwareUnicorn parody account and no joke, this all started because one of them w… — PolitiTweet.org

Joanna Rutkowska @rootkovska

This :) https://t.co/uFqIgOpiFl — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @anders_fogh: I don't even know where to start... https://t.co/lxAE3jl2Nf — PolitiTweet.org

Joanna Rutkowska @rootkovska

In opposition to the conservative attitude embraced by our recent government, Polish celebrities shot a number of… https://t.co/06TMLYca8q — PolitiTweet.org

Joanna Rutkowska @rootkovska

Note how app sandboxing is very different from domain compartmentalization. Not only we avoid lots of maintenance/s… https://t.co/CIlhJGOtIZ — PolitiTweet.org

Joanna Rutkowska @rootkovska

Agree! I've been long pointing out that app-specific SANDBOXING is a maintenance nightmare, and doesn't scale to ma… https://t.co/Wx5LmYlN56 — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @nixcraft: LOL. If programming languages were guns https://t.co/dlsoVF4E61 — PolitiTweet.org

Joanna Rutkowska @rootkovska

Nobody! The whole point of @QubesOS is that we don't need to trust the USB drivers :) #SecurityThroughDistrusting https://t.co/xOJP6vK0ZP — PolitiTweet.org

Joanna Rutkowska @rootkovska

RT @ttaskett: Another reason to run @QubesOS: Linux vulnerable to USB devices. #badusb #infosec https://t.co/u56UAAbAzw — PolitiTweet.org