<![CDATA[This week on #OpenSourceSecurity I had a chat with Paul Kehrer and Alex Gaynor about the statement they published discussing the challenges posed by modern OpenSSL for the python cryptography module]]>This week on I had a chat with Paul Kehrer and Alex Gaynor about the statement they published discussing the challenges posed by modern OpenSSL for the python cryptography module

It was a super fun discussion, I learned a ton, and it highlights the open source question about what happens when one of your dependencies isn't a great fit anymore

Link Preview Image
The State of OpenSSL for pyca/cryptography with Alex Gaynor and Paul Kehrer

Josh talks to Paul Kehrer and Alex Gaynor, from the Python Cryptographic Authority. Alex and Paul recently published a statement discuss the challenges posed by modern OpenSSL. We discuss the statement and their relationship with OpenSSL. We chat about some of the current features in cryptography, as well as some of what’s coming in the future. It’s a fun conversation that hits on a lot of great points. Episode Links Alex Paul pyca/cryptography The State of OpenSSL for pyca/cryptography x509-limbo Community Cryptography Specification Project This episode is also available as a podcast, search for “Open Source Security” on your favorite podcast player.

favicon

Open Source Security (opensourcesecurity.io)

]]>https://board.circlewithadot.net/topic/9e4423c4-01cd-4123-90c3-3398b0e7074a/this-week-on-opensourcesecurity-i-had-a-chat-with-paul-kehrer-and-alex-gaynor-about-the-statement-they-published-discussing-the-challenges-posed-by-modern-openssl-for-the-python-cryptography-moduleRSS for NodeMon, 06 Apr 2026 22:26:55 GMTMon, 09 Mar 2026 15:12:02 GMT60<![CDATA[Reply to This week on #OpenSourceSecurity I had a chat with Paul Kehrer and Alex Gaynor about the statement they published discussing the challenges posed by modern OpenSSL for the python cryptography module on Mon, 09 Mar 2026 21:17:54 GMT]]>@joshbressers related information for listeners of this episode: Details about the OpenSSL fork situation from the curl wiki: https://github.com/curl/curl/wiki/OpenSSL-forks

]]>https://board.circlewithadot.net/post/https://mastodon.social/users/bagder/statuses/116201296628423079https://board.circlewithadot.net/post/https://mastodon.social/users/bagder/statuses/116201296628423079Mon, 09 Mar 2026 21:17:54 GMT<![CDATA[Reply to This week on #OpenSourceSecurity I had a chat with Paul Kehrer and Alex Gaynor about the statement they published discussing the challenges posed by modern OpenSSL for the python cryptography module on Mon, 09 Mar 2026 18:38:09 GMT]]>@joshbressers I even sent the link to the statement in openSSL by cryptography to a few friends, to read if they are "nerd" enough.

]]>https://board.circlewithadot.net/post/https://infosec.exchange/users/plexsheep/statuses/116200668495985349https://board.circlewithadot.net/post/https://infosec.exchange/users/plexsheep/statuses/116200668495985349Mon, 09 Mar 2026 18:38:09 GMT<![CDATA[Reply to This week on #OpenSourceSecurity I had a chat with Paul Kehrer and Alex Gaynor about the statement they published discussing the challenges posed by modern OpenSSL for the python cryptography module on Mon, 09 Mar 2026 18:36:48 GMT]]>@plexsheep Thanks!

]]>https://board.circlewithadot.net/post/https://infosec.exchange/users/joshbressers/statuses/116200663207253320https://board.circlewithadot.net/post/https://infosec.exchange/users/joshbressers/statuses/116200663207253320Mon, 09 Mar 2026 18:36:48 GMT<![CDATA[Reply to This week on #OpenSourceSecurity I had a chat with Paul Kehrer and Alex Gaynor about the statement they published discussing the challenges posed by modern OpenSSL for the python cryptography module on Mon, 09 Mar 2026 18:23:57 GMT]]>@joshbressers This was an amazing show!

]]>https://board.circlewithadot.net/post/https://infosec.exchange/users/plexsheep/statuses/116200612661374631https://board.circlewithadot.net/post/https://infosec.exchange/users/plexsheep/statuses/116200612661374631Mon, 09 Mar 2026 18:23:57 GMT