Martin Ukrop
Martin Ukrop is a Principal Research Software Engineer with Red Hat Research, focusing on security research and facilitating the industry–academia cooperation in Europe. He received his PhD in Computer and Information Systems Security from Masaryk University, Czechia, focusing on human aspects in computer security. He remains an active teacher as well as a life-long learner.
His research looked into making security usable for IT professionals (developers, system administrators and such) that lack a specialized training in computer security. He focused on cryptographic interfaces (both programmable and command-line) of developer tools and software libraries. The emphasis of his work was placed on X.509-capable libraries, such as OpenSSL, GnuTLS and NSS, paying special attention to the process of certificate creation and validation.
Session
What do we know about the usage of OpenSSL in certified software and devices? Is its prevalence rising or falling? Who uses it? And what versions are used? What else can we learn without having to sign an NDA?
This talk will dive into the certification landscape of Common Criteria and FIPS140, focusing on the role of OpenSSL as a use case to see how much we can learn from publicly available data.