$20,000 rav1d AV1 Decoder Performance Bounty In March of 2023 we announced that we were starting work on a safer high performance AV1 decoder called rav1d, written in Rust. We partnered with Immunant to do the engineering work. By September of 2...

We created a safer AV1 decoder, rav1d, by forking the dav1d decoder and rewriting the C code in Rust. It works great except our Rust is 5% slower than the C. We're not sure why so we're offering a $20k bounty to figure it out and make the Rust code faster. www.memorysafety.org/blog/rav1d-p...

Such great work from the Rustls devs.

Yesterday Chromium deleted our copy of `libavif` -- the last step of a year-long project replacing it with a new Rust library! :)

chromium-review.googlesource.com/c/chromium/s...

Ending OCSP Support in 2025 Earlier this year we announced our intent to provide certificate revocation information exclusively via Certificate Revocation Lists (CRLs), ending support for providing certificate revocation informa...

Just announced the timeline for Let's Encrypt ending support for OCSP: letsencrypt.org/2024/12/05/e...

A reminder that Rustls can be used from C programs - it has a C API.

More details here: rustls.dev/perf/2024-11...

Graph of Rustls handshakes per second per thread over many threads.

Rustls multithreaded performance is fantastic. This is on an 80 core ARM machine.

Never miss an expiring certificate with Red Sift Certificates Lite With Certificates Lite, you can monitor up to 250 certificates and receive email alerts 7 days before expiration. It’s simple, effective, and free.

Ivan Ristić's TLS certificate monitoring service Hardenize is now Red Sift Certificates. Today they announced a free offering for monitoring up to 250 certificates, looks nice. blog.redsift.com/certificates...

hyper in curl Needs a Champion tl;dr - hyper in curl is nearly complete, but it needs a champion. Without a partner actively engaged that wants to enable and ship, it’s now on the path for...

hyper in curl needs a champion.

A backing vendor or distro that wants it.❤️

Why? Report after report: Memory un-safety. Is. BAD.

A #rustlang HTTP backend in #curl has potential to make the internet safer. 🦀

But it needs a champion to back it, or it will go away. 🚀

seanmonstar.com/blog/hyper-i...

Who’s going to @cendemtech.bsky.social’s #TechProm tomorrow? Be sure to connect with Sarah Gran from Let's Encrypt/ISRG. They work to keep hundreds of millions of websites safe, focus on private measurement and memory safety.

Let's Encrypt is one of my favorite tech organizations of all time. letsencrypt.org/about

Rustls Outperforms OpenSSL and BoringSSL ISRG has been investing heavily in the Rustls TLS library over the past few years. Our goal is to create a library that is both memory safe and a leader in performance. Back in January of this year we...

Memory safe Rustls is now outperforming both OpenSSL and BoringSSL. So proud of what this team is doing. www.memorysafety.org/blog/rustls-...

After almost 6 years, I revived my blog to publish an overview of all the open source stuff I worked on last month. Updates from rustls, Hickory DNS, rustup, pyrtls, KumoMTA, Quinn, Askama, tokio, and instant-acme.

dirkjan.ochtman.nl/writing/2024...