Security Insanity with Troy Hunt

Richard chats with Troy Hunt about some of the crazy things being said in the same of security these days. Troy's first story involves a UK cell phone company that decided that short passwords made their customer experience better - insanity! This event a number of others inspired Troy to start @infosecinsanity. Follow to see some amazing bad security statements by companies that really ought to know better. The conversation also digs into the state of affairs around SSL, why CPUs have the cycles to encrypt everything and the need to use a decent certificate in the first place.