How to Implement Crypto Poorly presented at GrrCon 2016

by Sean Cassidy,

Summary : Security experts often warn against rolling your own crypto, but do we listen? Of course not! This fun talk examines many public implementations of homegrown crypto, including single-sign on, hash functions, and even completely custom encryption functions. A large study was conducted of publicly available custom single-sign on implementations and bugs were found in every single one. How to avoid the same mistakes will be included between the horrors.