RSA Conference: UK NCSC Head Urges Industry to Develop Vibe Coding Safeguards
The head of the UK’s NCSC is calling the cybersecurity industry to “seize the disruptive vibe coding opportunity” to make software more secure
RSA is a public-key cryptographic algorithm used for key exchange, digital signatures, and protecting communications through asymmetric encryption.
Search across headline titles and summaries.
Background for this topic.
RSA is an asymmetric (public-key) cryptosystem, rather than the security conference that also uses the name. It uses mathematically related public and private keys: the public key can encrypt data for the holder of the private key, while the private key can create signatures that the public key verifies. Systems commonly use RSA to protect a symmetric session key or sign certificates and software, not to encrypt large amounts of data. Its security relies on the difficulty of factoring large numbers.
Safe deployment requires standardized schemes such as RSA-OAEP for encryption and RSA-PSS for signatures, suitable key sizes, protected private keys, and maintained cryptographic libraries. Textbook RSA and obsolete or incorrectly implemented padding can enable attacks even when the underlying mathematics is sound. A stolen private key can expose protected keys or invalidate trust, so key access, rotation, certificate revocation, and recovery procedures matter. RSA is also not expected to withstand a sufficiently capable quantum computer; organizations protecting long-lived secrets or trust anchors should account for migration planning.
Weekly headline count for the current query.
The head of the UK’s NCSC is calling the cybersecurity industry to “seize the disruptive vibe coding opportunity” to make software more secure
Group-IB also revealed the ransomware uses Chacha20 and RSA-OAEP for encryption
Experts at the RSA Conference urged cyber professionals to lead the way in securing AI systems today and pave the way for AI to solve huge societal challenges
Experts at the RSA Conference discussed what CISOs can do to protect themselves against legal pressure
Experts at the RSA Conference discussed how governments, the open-source community and end users can work together to drastically improve the security of open-source software
US government officials discussed plans on how to incentivize security by design principles in the software manufacturing process during RSA
Recorded Future’s Alexander Leslie highlights the increasingly blurred lines between hacktivism, financial cybercrime and nation-state activities during the RSA Conference 2024
AI tooling was one of the most dominant topics of conversation at RSA 2023 but there is still a long way to go in terms of development
Speaking during RSA, a Ukrainian official called for cyber-attacks against civilian infrastructure to be classed as war crimes
At RSA, cybersecurity experts discussed the unique nature of software supply chain attacks and approaches to tackling this growing threat
Google adds its security large language model to a number of its solutions at the RSA Conference 2023
At an RSA Conference session, experts discussed how blockchain isn't a good fit for privacy compliance frameworks
Understanding behavior and interactions critical during incident response, according to RSA session speakers
NSA's director of cybersecurity describes recent threat activity during the RSA Conference 2022
Advice and insights into supply chain risk management were provided by security leaders from PayPal and OneTrust during the RSA Conference
Current cyber activities and future trends from criminal and nation-state actors was set out during a session at RSA 2022
A panel discussion at RSA gave organizations a chance to prioritize upcoming attack vectors
The government and private sector must pool expertise to protect against cyber-threats, says panel at RSA
Leaders of cryptography took to the RSA Conference keynote stage to debate AI and blockchain
The cybersecurity industry must capitalize, argued Bryan Palmer during his keynote talk at the RSA Conference