You can’t build a secure website without having a certificate, and getting a certificate is one of the hardest parts of setting up a secure website. Mozilla helped start up Let’s Encrypt to make getting a certificate easier and promote the security of the Web. In 16 months, Let’s Encrypt went from an idea to the 3rd largest Certificate Authority on the Web. In this talk, we will discuss the challenges, decisions, and trade-offs that occurred along the way.
The Web is arguably the single largest platform for applications in the world. Securing a Web browser requires security expertise from across the field, including low-level program internals, network security, language design, and access controls. In this talk, we will discuss some of the critical Web security problems that we are working on at Mozilla, and some of the ways that academics can collaborate with us to help solve these problems.
He is a security engineer at Mozilla, and spent about a year and a half building out a scalable infrastructure for, and launching, Let's Encrypt. Prior to Mozilla he co-founded a PKI-based startup in America’s Desert Southwest, where he lives. You can reach him on Twitter as @JamesPugJones.
He is Firefox Security Lead at Mozilla. In that role, he is responsible for ensuring that Firefox protects the security and privacy of its users, and for working with partners across the industry to make the Internet more secure and trustworthy. Before joining Mozilla, he was a Principal Investigator with BBN Technologies, doing research improving the security of the fundamental technologies that drive the Internet.
This talk is part of the "Cyber Security Lecture Series" organizing leading edge talks by international ICT security experts in Austria. and organized by Automation Systems Group at the Institute of Computer Aided Automation, SBA Research, and AIT Safety and Security Department.