Go Time: Golang, Software Engineering

What's new in Go's cryptography libraries: Part 2

Dec 12, 2023

Filippo Valsorda, Roland Shoemaker, and Nicola Murino continue discussing what's new in Go's cryptography libraries. They cover topics such as NIST standards, post-quantum key exchange, open source language models, implementing a new feature in OpenSSH protocol, Windows 11 test breakage, and even casual conversation about cooking and kitchen setups in different countries.

01:11:38

Creator website

Episode guests

Roland Shoemaker

Nicola Murino

Filippo Valsorda

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Transition to post-quantum cryptography and the need for new algorithms resistant to quantum attacks.

Upcoming changes and improvements in the SSH protocol, including the introduction of the 'ping' extension.

Enhancements in Go's math.Rand function to switch to ChaCha8 for better cryptographic safety.

Deep dives

New Developments in Post-Quantum Cryptography

One of the main topics discussed in this podcast episode is the transition from pre-quantum to post-quantum cryptography. The hosts talk about the potential threats that quantum computers could pose to current cryptographic systems and the need to implement new algorithms that can resist attacks from quantum computers. They mention the recent NIST competition where different proposals were submitted and some key exchange and signature algorithms were selected. The selected algorithms, such as Kyber and Dilithium, are said to be slower and have larger keys compared to the current cryptographic algorithms. They also discuss the challenges of maintaining backward compatibility with older systems while introducing these new algorithms.

Introduction

2min

Cryptography, Latin, and NIST Standards

5min

Standardization of Algorithms and Post-Quantum Key Exchange

28min

Open source LLMs surpassing chat GPT & optimizing certificate parsing in Go's crypto libraries

5min

Implementing a New Feature in OpenSSH Protocol

19min

Windows 11 Test Breakage and Unpopular Opinions

8min

Casual conversation about cooking and kitchen setups in different countries

3min

Filippo Valsorda & Roland Shoemaker from the Go Team return & bring Nicola Murino with them to continue catching us up on what’s new in Go’s crypto libraries.

This is everything we didn’t cover + deep dives from Part 1!

Join the discussion

Changelog++ members save 3 minutes on this episode because they made the ads disappear. Join today!

Sponsors:

Changelog News – A podcast+newsletter combo that’s brief, entertaining & always on-point. Subscribe today.
Fastly – Our bandwidth partner. Fastly powers fast, secure, and scalable digital experiences. Move beyond your content delivery network to their powerful edge cloud platform. Learn more at fastly.com
Fly.io – The home of Changelog.com — Deploy your apps and databases close to your users. In minutes you can run your Ruby, Go, Node, Deno, Python, or Elixir app (and databases!) all over the world. No ops required. Learn more at fly.io/changelog and check out the speedrun in their docs.

Featuring:

Filippo Valsorda – Website, GitHub, Mastodon, X
Roland Shoemaker – Website, GitHub, X
Nicola Murino – GitHub
Natalie Pistunovich – GitHub, X

Show Notes:

What’s new in Go’s cryptography libraries: Part 1
NIST
FIPS
Diffie–Hellman key exchange
FIPS standard 140
github.com/quic-go/quic-go
tip.golang.org/src/crypto/tls/quic.go
pkg.go.dev/crypto/x509
MultiAlgorithmSigner
OpenSSH format keys
Kerberos edge case, use the correct token from the client
defer channel window adjustment
Improved test cases (removed t.Fatal calls from goroutines), added test against SSH CLI
Agent compatibility
github.com/drakkan/sftpgo

Something missing or broken? PRs welcome!

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Go Time: Golang, Software Engineering

What's new in Go's cryptography libraries: Part 2

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

New Developments in Post-Quantum Cryptography

Improvements in the SSH Protocol

Cryptographically Safe Math.Rand in Go 1.22

Quick: The Next Version of HTTP

Improved TLS Library for Better Performance

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Go Time: Golang, Software Engineering

What's new in Go's cryptography libraries: Part 2

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

New Developments in Post-Quantum Cryptography

Improvements in the SSH Protocol

Cryptographically Safe Math.Rand in Go 1.22

Quick: The Next Version of HTTP

Improved TLS Library for Better Performance

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights