See full post

Josh Aas

joshaas.bsky.social

Followers · Following

Head of ISRG (Let’s Encrypt, Divvi Up, Prossimo).

Joined October 2024

Posts Replies Media Original posts Likes

Josh Aas joshaas.bsky.social · May 14, 2025
We created a safer AV1 decoder, rav1d, by forking the dav1d decoder and rewriting the C code in Rust. It works great except our Rust is 5% slower than the C. We're not sure why so we're offering a $20k bounty to figure it out and make the Rust code faster. www.memorysafety.org/blog/rav1d-p...
$20,000 rav1d AV1 Decoder Performance Bounty

In March of 2023 we announced that we were starting work on a safer high performance AV1 decoder called rav1d, written in Rust. We partnered with Immunant to do the engineering work. By September of 2...

memorysafety.org

View on Bluesky Show all post labels

Josh Aas joshaas.bsky.social · May 14, 2025
Such great work from the Rustls devs.
- Dirkjan Ochtman djc.ochtman.nl · May 13, 2025
  I wrote a blog post about rustls performance on the server for the Prossimo blog; rustls comes out comparing well to the alternatives, and we’re still improving it! www.memorysafety.org/blog/rustls-...
  Rustls Server-Side Performance
  
  In past years, the Rustls project has been happy to receive substantial investments from the ISRG. One of our goals has been to improve performance without compromising on safety. We last posted about...
  
  memorysafety.org
View on Bluesky Show all post labels

Reposted by Josh Aas
Matthew Riley matt.dev · Jan 25, 2025
Yesterday Chromium deleted our copy of `libavif` -- the last step of a year-long project replacing it with a new Rust library! :) chromium-review.googlesource.com/c/chromium/s...
https://chromium-review.googlesource.com/c/chromium/src/+/6195494

Gerrit Code Review

chromium-review.googlesource.com

View on Bluesky Show all post labels

Josh Aas joshaas.bsky.social · Dec 5, 2024
Just announced the timeline for Let's Encrypt ending support for OCSP: letsencrypt.org/2024/12/05/e...
Ending OCSP Support in 2025

Earlier this year we announced our intent to provide certificate revocation information exclusively via Certificate Revocation Lists (CRLs), ending support for providing certificate revocation informa...

letsencrypt.org

View on Bluesky Show all post labels

Josh Aas joshaas.bsky.social · Nov 29, 2024
Rustls multithreaded performance is fantastic. This is on an 80 core ARM machine.

View on Bluesky Download image Show all post labels
Josh Aas joshaas.bsky.social · Nov 29, 2024
More details here: rustls.dev/perf/2024-11...
rustls: Measuring and Improving rustls's Multithreaded Performance

rustls.dev

View on Bluesky Show all post labels
Josh Aas joshaas.bsky.social · Nov 29, 2024
A reminder that Rustls can be used from C programs - it has a C API.

View on Bluesky Show all post labels

Josh Aas joshaas.bsky.social · Nov 27, 2024
Ivan Ristić's TLS certificate monitoring service Hardenize is now Red Sift Certificates. Today they announced a free offering for monitoring up to 250 certificates, looks nice. blog.redsift.com/certificates...
Never miss an expiring certificate with Red Sift Certificates Lite

With Certificates Lite, you can monitor up to 250 certificates and receive email alerts 7 days before expiration. It’s simple, effective, and free.

blog.redsift.com

View on Bluesky Show all post labels

Reposted by Josh Aas
Sean McArthur seanmonstar.com · Nov 19, 2024
hyper in curl needs a champion. A backing vendor or distro that wants it.❤️ Why? Report after report: Memory un-safety. Is. BAD. A #rustlang HTTP backend in #curl has potential to make the internet safer. 🦀 But it needs a champion to back it, or it will go away. 🚀 seanmonstar.com/blog/hyper-i...
hyper in curl Needs a Champion

tl;dr - hyper in curl is nearly complete, but it needs a champion. Without a partner actively engaged that wants to enable and ship, it’s now on the path for...

seanmonstar.com

View on Bluesky Show all post labels

Reposted by Josh Aas
Joseph Lorenzo Hall, PhD josephhall.org · Nov 13, 2024
Who’s going to @cendemtech.bsky.social’s #TechProm tomorrow? Be sure to connect with Sarah Gran from Let's Encrypt/ISRG. They work to keep hundreds of millions of websites safe, focus on private measurement and memory safety.

View on Bluesky Show all post labels

Reposted by Josh Aas
Kelsey Hightower kelseyhightower.com · Oct 26, 2024
Let's Encrypt is one of my favorite tech organizations of all time. letsencrypt.org/about
About Let's Encrypt

Let’s Encrypt is a free, automated, and open certificate authority (CA), run for the public’s benefit. It is a service provided by the Internet Security Research Group (ISRG). We give peop...

letsencrypt.org
- Richard Barnes ipv.sx · Oct 26, 2024
  [Not loaded yet]
View on Bluesky Show all post labels

Josh Aas joshaas.bsky.social · Oct 22, 2024
Memory safe Rustls is now outperforming both OpenSSL and BoringSSL. So proud of what this team is doing. www.memorysafety.org/blog/rustls-...
Rustls Outperforms OpenSSL and BoringSSL

ISRG has been investing heavily in the Rustls TLS library over the past few years. Our goal is to create a library that is both memory safe and a leader in performance. Back in January of this year we...

memorysafety.org

View on Bluesky Show all post labels

An unhandled error has occurred. Reload 🗙