concepts in crypto
play

Concepts in Crypto Parker Higgins parker@eff.org @xor PGP: 4FF3 - PowerPoint PPT Presentation

Nov 18, 2022 •290 likes •549 views

Concepts in Crypto Parker Higgins parker@eff.org @xor PGP: 4FF3 AA1B D29E 1638 32DE C765 9433 5F88 9A36 7709 Micah Lee micah@eff.org @micahflee PGP: 5C17 6163 61BD 9F92 422A C08B B4D2 5A1E 9999 9697 ELECTRONIC FRONTIER FOUNDATION

  1. Concepts in Crypto Parker Higgins parker@eff.org @xor PGP: 4FF3 AA1B D29E 1638 32DE C765 9433 5F88 9A36 7709 Micah Lee micah@eff.org @micahflee PGP: 5C17 6163 61BD 9F92 422A C08B B4D2 5A1E 9999 9697 ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  2. Who We Are ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  3. Fighting for Crypto Rights ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  4. Crypto Terminology ● Plaintext ● Key ● Ciphertext ● Public Key Crypto ● Symmetric Crypto ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  5. Open Source Crypto ● How your crypto works should not be a secret ● The only secret should be the key ● Through these covert partnerships [with tech companies], the agencies [like NSA] have inserted secret vulnerabilities – known as backdoors or trapdoors into commercial encryption software. - The Guardian ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  6. Threat Modeling ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  7. Types of Encryption ● Transport encryption – HTTPS, when connecting to websites ● End to end encryption – PGP, Off-the-Record ● Disk encryption – TrueCrypt – FileVault – LUKS ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  8. Diffie-Hellman Key Exchange How is it possible for two people to come up with a shared crypto key when everything is being spied on? ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  9. PGP: Pretty Good Privacy ● Originally written by Phil Zimmermann in 1991 for anti-nuclear weapons activists ● Keys are split into two halves: – Public key (share it widely) – Secret key (keep it secret, keep it safe) ● With a public key you can: – Encrypt messages that can only be decrypted with the associated secret key – Verify signatures that that were signed with the associated secret key ● With a secret key you can: – Decrypt messages that were encrypted with the associated public key – Digitally sign messages ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  10. PGP in Practice ● GnuPG: open source implementation of OpenPGP (you shouldn't use the proprietary program called PGP) ● Thunderbird: a desktop email client, you can use it to check your email ● Enigmail: Thunderbird addon that adds OpenPGP functionality ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  11. HTTPS ● You already use it every day! ● End-to-end encryption between your browser and the website's server ● Install HTTPS Everywhere! https://www.eff.org/https-everywhere ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  12. Man in the Middle Attacks (Woman in the Way?) ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  13. Certificate Authorities (CAs) ● When you load an HTTPS website it gives you its certificate, which includes its public key ● Your web browser uses this public key to initiate a secure session ● What if there's a MITM attack and you get a malicious public key instead?! ● CAs are companies whose job is to verify that the public key you get is valid ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  14. Certificate Authorities (CAs) ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  15. Mix Networks ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  16. Anonymous Remailers ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  17. Tor: The Onion Router ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  18. Tor: The Onion Router ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  19. Tor: The Onion Router ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  20. Tor is Easy to Use Download the Tor Browser from: https://www.torproject.org/ ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  21. Use Crypto Today Off-the-Record IM Encryption ● End-to-end encryption chat over any existing service (Google Talk, Facebook, Jabber, AOL, etc.) ● Windows & Linux: Pidgin and OTR plugin https://pidgin.im/ https://otr.cypherpunks.ca/ ● Mac: Adium https://adium.im/ ● iOS, Android: ChatSecure ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  22. Use Crypto Today Full Disk Encryption ● If you leave your laptop on the bus, your can still remain safe! ● Windows: TrueCrypt, BitLocker http://www.truecrypt.org/ ● Mac: FileVault (built-in) ● Linux: LUKS (built-in) ● Newer versions of Android (built-in) ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  23. Learn More ● EFF's Surveillance Self-Defense Guide: https://ssd.eff.org/ ● Security in a Box: https://securityinabox.org/ ● Encryption Works: https://pressfreedomfoundation.org/encrypt ion-works ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

  24. Thank You! Parker Higgins parker@eff.org @xor PGP: 4FF3 AA1B D29E 1638 32DE C765 9433 5F88 9A36 7709 Micah Lee micah@eff.org @micahflee PGP: 5C17 6163 61BD 9F92 422A C08B B4D2 5A1E 9999 9697 ELECTRONIC FRONTIER FOUNDATION https://www.efg fg.org

Recommend

CRYPTO HERE, CRYPTO THERE, CRYPTO, CRYPTO EVERYWHERE WORLD AQUATIC HEALTH CONFERENCE

CRYPTO HERE, CRYPTO THERE, CRYPTO, CRYPTO EVERYWHERE WORLD AQUATIC HEALTH CONFERENCE

CRYPTO HERE, CRYPTO THERE, CRYPTO, CRYPTO EVERYWHERE WORLD AQUATIC HEALTH CONFERENCE WILLIAMSBURG, VA THURSDAY, OCTOBER 17 TH , 2019 JOHN KELLY, PE IOWA DEPARTMENT OF PUBLIC HEALTH DISCLAIMER THIS PRESENTATION: IS INTENDED FOR

843 views • 40 slides
Outline Crypto intro Computer Security: Secret Key Crypto Symmetric crypto Bart Jacobs

Outline Crypto intro Computer Security: Secret Key Crypto Symmetric crypto Bart Jacobs

Crypto intro Crypto intro Symmetric crypto Symmetric crypto Achieving security goals with symmetric crypto Radboud University Nijmegen Achieving security goals with symmetric crypto Radboud University Nijmegen e-Passport example

269 views • 7 slides
- The First Crypto Merchant - Crypto Payment Crypto Payment for online shops for retail shops

- The First Crypto Merchant - Crypto Payment Crypto Payment for online shops for retail shops

- The First Crypto Merchant - Crypto Payment Crypto Payment for online shops for retail shops Did you know? Our payment system has ZERO FEES for processing payments How it works? It takes only a few minutes to complete Merchant Initiate

269 views • 11 slides
Javascript Crypto & The Case Against Crypto Reductionism Ben Adida Mozilla Workshop on

Javascript Crypto & The Case Against Crypto Reductionism Ben Adida Mozilla Workshop on

Javascript Crypto & The Case Against Crypto Reductionism Ben Adida Mozilla Workshop on Real-World Crypto January 2013 promote openness, innovation & opportunity on the Web. previously easy to deploy easy to use privacy

610 views • 22 slides
Outline Crypto intro Computer Security: Secret Key Crypto Symmetric crypto Achieving security

Outline Crypto intro Computer Security: Secret Key Crypto Symmetric crypto Achieving security

Crypto intro Crypto intro Symmetric crypto Symmetric crypto Achieving security goals with symmetric crypto Achieving security goals with symmetric crypto Radboud University Nijmegen Radboud University Nijmegen e-Passport example

1.11k views • 12 slides
Computer Security: Secret Key Crypto B. Jacobs Institute for Computing and Information Sciences

Computer Security: Secret Key Crypto B. Jacobs Institute for Computing and Information Sciences

Crypto intro Symmetric crypto Achieving security goals with symmetric crypto Radboud University Nijmegen e-Passport example Encryption: modes of operation Computer Security: Secret Key Crypto B. Jacobs Institute for Computing and Information

856 views • 73 slides
Outline Public key crypto RSA Essentials Computer Security: Public Key Crypto Public Key Crypto

Outline Public key crypto RSA Essentials Computer Security: Public Key Crypto Public Key Crypto

Public key crypto Public key crypto RSA Essentials RSA Essentials Public Key Crypto in Java Public Key Crypto in Java Radboud University Nijmegen Radboud University Nijmegen Public key protocols Public key protocols Diffie-Hellman and El

448 views • 16 slides
w w w . a d i t u s . n e t Crypto-currencies have created a new class of a ffl uent individuals

w w w . a d i t u s . n e t Crypto-currencies have created a new class of a ffl uent individuals

Aditus Luxury Access Platform for Crypto A ffl uents Presentation 21 Nov 2017 w w w . a d i t u s . n e t Crypto-currencies have created a new class of a ffl uent individuals Crypto-currency values have been the best performing asset class

206 views • 19 slides
Algorithms, cryptography and protocols DONT EVER ROLL YOUR OWN PROTOCOL, CRYPTO ALGO, CRYPTO

Algorithms, cryptography and protocols DONT EVER ROLL YOUR OWN PROTOCOL, CRYPTO ALGO, CRYPTO

Algorithms, cryptography and protocols DONT EVER ROLL YOUR OWN PROTOCOL, CRYPTO ALGO, CRYPTO Use this space to add an image. IMPLEMENTATION, OR CRYPTO RNG Insert an image and change the scale to cover this box. ALSO, KEY MANAGEMENT IS

1.01k views • 81 slides
19 big enough? What marketing says Generate public keys 56-bit crypto: Broken. on a

19 big enough? What marketing says Generate public keys 56-bit crypto: Broken. on a

Is 2 255 19 big enough? What marketing says Generate public keys 56-bit crypto: Broken. on a strong elliptic curve 128-bit crypto: Okay. over the field Z (2 255 19). 256-bit crypto: High security! Is that safe? 512-bit

121 views • 11 slides
Ethereum and the crypto landscape Different Crypto Value Propositions Name Payment Platform

Ethereum and the crypto landscape Different Crypto Value Propositions Name Payment Platform

Ethereum and the crypto landscape Different Crypto Value Propositions Name Payment Platform Stable Coin Dapps Sum $ Bitcoin 154.00 $ Ethereum 29.00 $ XRP 18.70 $ BCH 7.70 $ EOS 7.20 $ LiteCoin 7.00 $ BNB 4.70 $ Tether

160 views • 12 slides
Getting Post-Quantum Crypto Algorithms Ready for Deployment End of ECRYPT II Event: Crypto for

Getting Post-Quantum Crypto Algorithms Ready for Deployment End of ECRYPT II Event: Crypto for

Getting Post-Quantum Crypto Algorithms Ready for Deployment End of ECRYPT II Event: Crypto for 2020 Tim Gneysu Hardware Security Group Horst Grtz Institute for IT-Security, Bochum 1/24/2013 Outline Introduction Alternative Public-Key

735 views • 55 slides
Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020, Tenerife, January 2013 Outline 1 1. Past results 2. Future challenges 1. Block ciphers 2 TEA, NOEKEON, AES, SERPENT, ICEBERG, HIGHT,

844 views • 68 slides
Outline Cryptographic Algorithm Engineering and Provable Security Crypto refresher

Outline Cryptographic Algorithm Engineering and Provable Security Crypto refresher

Bart Preneel September 2007 Cryptographic Algorithm Engineering and Provable Security Outline Cryptographic Algorithm Engineering and Provable Security Crypto refresher Basic concepts Foundations of Security Analysis and

958 views • 31 slides
CONCEPTS AND CONCEPTS AND CONCEPTS AND CONCEPTS AND PR PR PRINC PRINC NCIPLES OF NCIPLES

CONCEPTS AND CONCEPTS AND CONCEPTS AND CONCEPTS AND PR PR PRINC PRINC NCIPLES OF NCIPLES

CONCEPTS AND CONCEPTS AND CONCEPTS AND CONCEPTS AND PR PR PRINC PRINC NCIPLES OF NCIPLES OF PLES OF PLES OF IWRM IWRM IWRM IWRM Statistical, Economic and Social Research and Training Centre for Islamic Countries Higher Council for

556 views • 17 slides
Computer Security: Public Key Crypto B. Jacobs Institute for Computing and Information Sciences

Computer Security: Public Key Crypto B. Jacobs Institute for Computing and Information Sciences

Public key crypto RSA Essentials Public Key Crypto in Java Radboud University Nijmegen Public key protocols Diffie-Hellman and El Gamal Computer Security: Public Key Crypto B. Jacobs Institute for Computing and Information Sciences

1.23k views • 100 slides
Crypto Meets Web Security [Finish Asymmetric Crypto; Web Certificates] Fall 2017 Franziska

Crypto Meets Web Security [Finish Asymmetric Crypto; Web Certificates] Fall 2017 Franziska

CSE 484 / CSE M 584: Computer Security and Privacy Crypto Meets Web Security [Finish Asymmetric Crypto; Web Certificates] Fall 2017 Franziska (Franzi) Roesner franzi@cs.washington.edu Thanks to Dan Boneh, Dieter Gollmann, Dan Halperin, Yoshi

849 views • 25 slides
Outline More crypto protocols CSci 5271 Introduction to Computer Security Announcements

Outline More crypto protocols CSci 5271 Introduction to Computer Security Announcements

Outline More crypto protocols CSci 5271 Introduction to Computer Security Announcements intermission More crypto protocols and failures Stephen McCamant More causes of crypto failure University of Minnesota, Computer Science &

329 views • 5 slides
Outline More crypto protocols CSci 5271 Introduction to Computer Security Announcements

Outline More crypto protocols CSci 5271 Introduction to Computer Security Announcements

Outline More crypto protocols CSci 5271 Introduction to Computer Security Announcements intermission More crypto protocols and failures Stephen McCamant More causes of crypto failure University of Minnesota, Computer Science &

430 views • 4 slides
Miscellany! Lecture 20 The Last Lecture! Public-Key Crypto Maths Initially public-key crypto was

Miscellany! Lecture 20 The Last Lecture! Public-Key Crypto Maths Initially public-key crypto was

Miscellany! Lecture 20 The Last Lecture! Public-Key Crypto Maths Initially public-key crypto was based on hardness of problems in modular arithmetic and number theory (RSA/factoring, modular discrete log) Problems from several other areas, since

400 views • 17 slides
Concepts and principles of IT Aim Identify the IT concepts and principles for Assignment

Concepts and principles of IT Aim Identify the IT concepts and principles for Assignment

INF3280 31 January 2014 Concepts and principles of IT Aim Identify the IT concepts and principles for Assignment 2 Literature: Chapter 4. IT concepts 1 Which concepts and principles? Suitable for users to understand

321 views • 8 slides
Blockchain and Crypto By David and Lukas Blockchain and Crypto By David and Lukas Topics

Blockchain and Crypto By David and Lukas Blockchain and Crypto By David and Lukas Topics

Blockchain and Crypto By David and Lukas Blockchain and Crypto By David and Lukas Topics Overview What is Bitcoin? What is a Blockchain? Blockchain and Bitcoin In-Depth Transactions New Blocks Forks Nakamotos Forerunners Smart

708 views • 48 slides
MAINTAINING THE GO CRYPTO LIBRARIES Filippo Valsorda Google @FiloSottile WHO AM I { Go

MAINTAINING THE GO CRYPTO LIBRARIES Filippo Valsorda Google @FiloSottile WHO AM I { Go

QCon NYC 25 JUNE 2019 MAINTAINING THE GO CRYPTO LIBRARIES Filippo Valsorda Google @FiloSottile WHO AM I { Go security coordinator Go crypto/ packages owner and maintainer 00. INTRO SECTION 1 Cryptography is H ard

806 views • 46 slides
Why you shouldn't write cryptographic algorithms yourself Experience why writing your own crypto

Why you shouldn't write cryptographic algorithms yourself Experience why writing your own crypto

Why you shouldn't write cryptographic algorithms yourself Experience why writing your own crypto is harder than it seems at frst. Simo Sorce Sr. Principal Sw. Engineer RHEL Crypto Team 2019-01-26 Everyone tells you that you shouldnt

348 views • 30 slides

More recommend