The Go Cryptography State of the Union - 2024

This conference talk explores the significant advancements in Go cryptography and security during 2024. Discover how post-quantum algorithms have been implemented in crypto/tls to protect against quantum computing threats, and learn why their early adoption is crucial. Understand the security improvements made to math/rand and math/rand/v2, which now use cryptographically secure generators to prevent common security vulnerabilities while maintaining compatibility. Explore the successful effort to move math/big outside the security perimeter, along with performance optimizations that addressed slower RSA backend issues. Learn about the extensive refresh of the x/crypto/ssh package, including new privacy features and vulnerability fixes. Find out about the strategic reorganization of cryptography packages between x/crypto and the standard library, and get insights on the upcoming FIPS 140 validation. This 31-minute presentation by Filippo Valsorda offers both a comprehensive update on Go's cryptography ecosystem and behind-the-scenes insights into its security posture evolution.