notes.md

Topic Ideas

• Podcast introduction

  • Who we are, what we do, what we're striving for
  • Privacy
  • Security
  • Decentralization, self-reliance

• Role of open source in self-driving automobile tech

  • nvidia's role in this? Are they still dicks?

• Variations in how different cultures approach security

• Twitter: will it federate? what will it look like?

  • Role of ActivityPub? Brought about by AP? Will AP be involved?

• Ethics of using apps that not only track you but your friends as well

  • Second-hand privacy invasion

• Open-source microtransaction disrupting advertising industry

  • lbry.io
  • BAT
  • Lightning

• Password managers

• Security patterns for different threat models

  • Are password managers as good as a hand-written notebook?
    • "Last time we talked about password managers,"
  • Performing attacks on yourself to analyze your own threat models

• Physical security

  • How to implement it
  • When it really matters

• Software supply chain integrity

  • Modern package managers
  • This must be done AFTER the "Practically Secure Package Manager" infocast
    • Which also means we need to analyze hashing, signing, encrypting

• Running your own infrastructure

  • "De-Google" your life
  • History of #! and why your own service infrastructure is actually hard

• Toolchain security

  • Kernel/compiler memory access violations
  • Memory safe machine languages (Go, Rust, Zig, etc.)

• HSM design failures

  • PHYSICAL INPUT REQUIRED YOU NUMBNUTS

• Compare/contrast Defcon/CCC, why you should attend either|both

• Responsible disclosure

  • How far is too far?
  • How long is too long to wait?

• Ethics of spying on others

  • How easy it is to abuse

• Federation versus centralized communication platforms

  • Signal (closed-ecosystem, decent security) vs Telegram (open ecosystem, shit security)

• Hacking your friends and coworkers (responsibly!)