Threat modeling nihilists v. vegans

•Download as PPTX, PDF•

2 likes•1,538 views

evacide

Slides from the threat modeling talk Parker Higgins and I did at Re:Publica in May 2015.

Technology

<location, date>
What the Hell is Threat Modeling
Anyway?
Eva Galperin/Parker Higgins
eva@eff.org/parker@eff.org
@evacide/@xor
Electronic Frontier Foundation

<location, date>
What the hell is a threat model?

<location, date>
1. What do you want to protect?

<location, date>
1. What do you want to protect?
2. Who do you want to protect it from?

<location, date>
1. What do you want to protect?
2. Who do you want to protect it from?
3. How likely is it you will need to protect it?

<location, date>
1. What do you want to protect?
2. Who do you want to protect it from?
3. How likely is it you will need to protect it?
4. How bad are the consequences if you fail?

<location, date>
ASSETS
This is what you want to protect.
Passwords
Money
Files
Conversations
Meta-data

<location, date>
ADVERSARY
This is what you want to protect your assets
from.
NSA
Your classmates
Your parents
The police
Advertisers

<location, date>
THREAT
Hackers hijack your Twitter account
Your brother reads your diary
Your boss sees your browser history
Criminals steal your credit card numbers
Adversary reads your communications
Adversary deletes or alters your
communications

<location, date>
CAPABILITY
Attacker could file a subpoena
Attacker could break into your house
Attacker could spy on your wifi network
Attacker could put a tracking device on your car
Attacker could force you to give up your
passwords
Attacker could torture your friends/family for info
Attacker could shoulder-surf your phone
password

<location, date>
People have different appetites
for risk

<location, date>
Security is a process, not a
product
• Tools are not enough to protect your privacy
• Build a threat model, then figure out what
tools/processes are appropriate
• Your threat model may change over time

<location, date>
You don’t have to a nihilist or a
vegan

<location, date>
Thanks!
Laura Poitras
Bruce Schneier
Jonathan Stray

Similar to Threat modeling nihilists v. vegans

hamad.pwrpoint.pdf

hmooodes115

LESSON 2.1.pptx

ssuserb4c82d

Lesson 2 rules of netiquette

EmmanuelaSernicul

EMPOWERMENT TECHNOLOGIES LESSON 2

JayMarkBandoy1

Watch Out For That Bus! (Personal Disaster Recovery Planning) - BSidesLV 2018

David Minch

Rules of Nitiquette organize everything education computer.pptx

HeideYlanan1

Users guide

Darren Thomas

Personal internet security

Mostafa Siraj

Rules of Netiquette

Rochelle Nato

Online Security and How to Make Money Online

Nader Alkeinay

Unmasking You

Joshua Abraham

Watch Out For That Bus! (Personal Disaster Recovery Planning) - BSidesDC 2018

David Minch

Jake on cybersafety

Pentucket Regional High School

Gunning for granny

Chris Roberts

An Introduction To IT Security And Privacy for Librarians and Libraries

Blake Carver

N3275466 - Final Presentation Advance network (1)

Christopher Lisasi

Anatomy of a Cyber-Attack

- Mark - Fullbright

DIgital Citizenship for Parents of Middle School Students

Leon Letkeman

nanma cyber.ppt

PremNath693524

Keeping Your Child Safe On The Internet

Eanes isd

Similar to Threat modeling nihilists v. vegans (20)

hamad.pwrpoint.pdf

LESSON 2.1.pptx

Lesson 2 rules of netiquette

EMPOWERMENT TECHNOLOGIES LESSON 2

Watch Out For That Bus! (Personal Disaster Recovery Planning) - BSidesLV 2018

Rules of Nitiquette organize everything education computer.pptx

Users guide

Personal internet security

Rules of Netiquette

Online Security and How to Make Money Online

Unmasking You

Watch Out For That Bus! (Personal Disaster Recovery Planning) - BSidesDC 2018

Jake on cybersafety

Gunning for granny

An Introduction To IT Security And Privacy for Librarians and Libraries

N3275466 - Final Presentation Advance network (1)

Anatomy of a Cyber-Attack

DIgital Citizenship for Parents of Middle School Students

nanma cyber.ppt

Keeping Your Child Safe On The Internet

Recently uploaded

WSO2 Micro Integrator for Enterprise Integration in a Decentralized, Microser...

WSO2

Following the popularity of “Cloud Revolution: Exploring the New Wave of Serverless Spatial Data,” we’re thrilled to announce this much-anticipated encore webinar. In this sequel, we’ll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you’re building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

In today's digital world, trust is key to customer relationships, but keeping it is a huge challenge. Customers are well-informed and empowered, quick to change brands if their trust is broken, even if it costs them more. This puts a lot of pressure on organizations to handle trust and safety issues with great care and transparency. The challenge, however, is real. Fragmented solutions have left privacy, legal, and security teams in a perpetual cycle of catch-up, struggling to update privacy notices, manage customer data rights, and answer lengthy security questionnaires—all while trying to prove ROI to the business. It's a thankless job, filled with repetition, tedious tasks, and constant interdepartmental coordination. Combine this with fast regulatory changes and the quick evolution of AI, and it becomes overwhelming. Join this webinar to learn more about TrustArc's new innovative solution Trust Center, the only unified, no-code online hub for trust and safety information built for privacy, security, compliance, and legal teams. Trust Center streamlines your path to compliance, shortens the pre-sales cycle, and reduces both legal and regulatory risks, saving time, effort, and cost. This webinar will review: - Why companies are building unified Trust Centers for a robust privacy program. - How unified Trust Centers streamline sales cycles, ensure regulatory compliance, and reduce operational bottlenecks. - How compliance, legal, security, GRC, and privacy teams benefit from a unified Trust Center in terms of needs, pains, and outcomes. - How TrustArc Trust Center saves time and work while reducing legal, reputational, and compliance risk by effectively managing policies, notices, terms, and disclosures, and providing real-time updates on subprocessors.

TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...

TrustArc

In this session, we will discuss the journey of API governance from its initial, ungoverned state to the development of sophisticated models that tackle contemporary challenges. We'll explore how APIs have become essential in the intersection of business and technology, adapting to advancements and evolving needs. We'll focus on how organizations have moved from launching to monetizing APIs, using models like pay-per-use and subscriptions, and finding the right balance between technical implementation and business strategy. We'll also highlight the impact of governance on monetization strategies, especially how data security, compliance, and service quality influence pricing. Real-world examples will demonstrate the effective integration of governance with monetization, including AI's role in dynamic pricing. Looking ahead, we'll share insights into future trends in API governance and monetization, emphasizing the importance of adaptability, continuous learning, and innovation.

API Governance and Monetization - The evolution of API governance

WSO2

Stronger Together: Developing an Organizational Strategy for Accessible Desig...

caitlingebhard1

Tracing the root cause of a performance issue requires a lot of patience, experience, and focus. It’s so hard that we sometimes attempt to guess by trying out tentative fixes, but that usually results in frustration, messy code, and a considerable waste of time and money. This talk explains how to correctly zoom in on a performance bottleneck using three levels of profiling: distributed tracing, metrics, and method profiling. After we learn to read the JVM profiler output as a flame graph, we explore a series of bottlenecks typical for backend systems, like connection/thread pool starvation, invisible aspects, blocking code, hot CPU methods, lock contention, and Virtual Thread pinning, and we learn to trace them even if they occur in library code you are not familiar with. Attend this talk and prepare for the performance issues that will eventually hit any successful system. About authorWith two decades of experience, Victor is a Java Champion working as a trainer for top companies in Europe. Five thousands developers in 120 companies attended his workshops, so he gets to debate every week the challenges that various projects struggle with. In return, Victor summarizes key points from these workshops in conference talks and online meetups for the European Software Crafters, the world’s largest developer community around architecture, refactoring, and testing. Discover how Victor can help you on victorrentea.ro : company training catalog, consultancy and YouTube playlists.

Finding Java's Hidden Performance Traps @ DevoxxUK 2024

Victor Rentea

CNIC Information System with Pakdata Cf In Pakistan

danishmna97

Elevate Developer Efficiency & build GenAI Application with Amazon Q

Bhuvaneswari Subramani

DBX First Quarter 2024 Investor Presentation

Dropbox

Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows. We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases. This video focuses on the deployment of external web forms using Jotform for Bonterra Impact Management. This solution can be customized to your organization’s needs and deployed to support the common use cases below: - Intake and consent - Assessments - Surveys - Applications - Program registration Interested in deploying web form automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.

Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...

Jeffrey Haguewood

In this keynote, Asanka Abeysinghe, CTO,WSO2 will explore the shift towards platformless technology ecosystems and their importance in driving digital adaptability and innovation. We will discuss strategies for leveraging decentralized architectures and integrating diverse technologies, with a focus on building resilient, flexible, and future-ready IT infrastructures. We will also highlight WSO2's roadmap, emphasizing our commitment to supporting this transformative journey with our evolving product suite.

Platformless Horizons for Digital Adaptability

WSO2

Dubai, known for its towering skyscrapers, luxurious lifestyle, and relentless pursuit of innovation, often finds itself in the global spotlight. However, amidst the glitz and glamour, the emirate faces its own set of challenges, including the occasional threat of flooding. In recent years, Dubai has experienced sporadic but significant floods, disrupting normalcy and posing unique challenges to its infrastructure. Among the critical nodes in this bustling metropolis is the Dubai International Airport, a vital hub connecting the world. This article delves into the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Orbitshub

AI+A11Y 11MAY2024 HYDERBAD GAAD 2024 - HelloA11Y (11 May 2024)

Samir Dash

Six Myths about Ontologies: The Basics of Formal Ontology

johnbeverley2021

💥 You’re lucky! We’ve found two different (lead) developers that are willing to share their valuable lessons learned about using UiPath Document Understanding! Based on recent implementations in appealing use cases at Partou and SPIE. Don’t expect fancy videos or slide decks, but real and practical experiences that will help you with your own implementations. 📕 Topics that will be addressed: • Training the ML-model by humans: do or don't? • Rule-based versus AI extractors • Tips for finding use cases • How to start 👨‍🏫👨‍💻 Speakers: o Dion Morskieft, RPA Product Owner @Partou o Jack Klein-Schiphorst, Automation Developer @Tacstone Technology

DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam

UiPathCommunity

Key topics covered: - Understanding the basics of IAM and its significance in the modern enterprise. IAM in a platformless environment - Tackling real-world issues like prioritizing frictionless yet secure user access, securing high-value APIs, integrating to business, compliance, and adapting to cloud native environments with scalable solutions - Practical demonstrations of how WSO2 products can be instrumental in deploying efficient IAM solutions - Preparing for upcoming trends and innovations in identity management

Navigating Identity and Access Management in the Modern Enterprise

WSO2

Design and Development of a Provenance Capture Platform for Data Science

Paolo Missier

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

Introduction to use of FHIR Documents in ABDM

Kumar Satyam

In the ever-evolving landscape of data management, Zero-ETL is an approach that is reshaping how businesses handle and integrate their data. This webinar explores Zero-ETL, a paradigm shift from the traditional Extract, Transform, Load (ETL) process, offering a more streamlined, efficient, and real-time data integration method. We will begin with an introduction to the concept of Zero-ETL, including how it allows direct access to data in its native environment and real-time data transformation, providing up-to-date information with significantly reduced data redundancy. Next, we'll take you through several demonstrations showing how Zero-ETL can deliver real-time data and enable the free movement of data between systems. We will also discuss the various tools that support all aspects of Zero-ETL, providing attendees with an understanding of how they can adopt this innovative approach in their organizations. Lastly, the session will conclude with an interactive Q&A segment, allowing participants to gain deeper insights into how Zero-ETL can be tailored to their specific business needs and how they can get started today. Join us to discover how Zero-ETL can elevate your organization's data strategy.

The Zero-ETL Approach: Enhancing Data Agility and Insight

Safe Software

Recently uploaded (20)

WSO2 Micro Integrator for Enterprise Integration in a Decentralized, Microser...

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

TrustArc Webinar - Unified Trust Center for Privacy, Security, Compliance, an...

API Governance and Monetization - The evolution of API governance

Stronger Together: Developing an Organizational Strategy for Accessible Desig...

Finding Java's Hidden Performance Traps @ DevoxxUK 2024

CNIC Information System with Pakdata Cf In Pakistan

Elevate Developer Efficiency & build GenAI Application with Amazon Q

DBX First Quarter 2024 Investor Presentation

Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...

Platformless Horizons for Digital Adaptability

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

AI+A11Y 11MAY2024 HYDERBAD GAAD 2024 - HelloA11Y (11 May 2024)

Six Myths about Ontologies: The Basics of Formal Ontology

DEV meet-up UiPath Document Understanding May 7 2024 Amsterdam

Navigating Identity and Access Management in the Modern Enterprise

Design and Development of a Provenance Capture Platform for Data Science

Why Teams call analytics are critical to your entire business

Introduction to use of FHIR Documents in ABDM

The Zero-ETL Approach: Enhancing Data Agility and Insight

Threat modeling nihilists v. vegans

1. <location, date> What the Hell is Threat Modeling Anyway? Eva Galperin/Parker Higgins eva@eff.org/parker@eff.org @evacide/@xor Electronic Frontier Foundation

2. <location, date> What the hell is a threat model?

3. <location, date> 1. What do you want to protect?

4. <location, date> 1. What do you want to protect? 2. Who do you want to protect it from?

5. <location, date> 1. What do you want to protect? 2. Who do you want to protect it from? 3. How likely is it you will need to protect it?

6. <location, date> 1. What do you want to protect? 2. Who do you want to protect it from? 3. How likely is it you will need to protect it? 4. How bad are the consequences if you fail?

7. <location, date> 1. What do you want to protect? 2. Who do you want to protect it from? 3. How likely is it you will need to protect it? 4. How bad are the consequences if you fail? 5. How much trouble are you willing to go through to prevent those consequences?

8. <location, date> ASSETS This is what you want to protect. Passwords Money Files Conversations Meta-data

9. <location, date> ADVERSARY This is what you want to protect your assets from. NSA Your classmates Your parents The police Advertisers

10. <location, date> THREAT Hackers hijack your Twitter account Your brother reads your diary Your boss sees your browser history Criminals steal your credit card numbers Adversary reads your communications Adversary deletes or alters your communications

11. <location, date> CAPABILITY Attacker could file a subpoena Attacker could break into your house Attacker could spy on your wifi network Attacker could put a tracking device on your car Attacker could force you to give up your passwords Attacker could torture your friends/family for info Attacker could shoulder-surf your phone password

12. <location, date>

13. <location, date>

14. <location, date>

15. <location, date> Then there’s this guy

16. <location, date> RISK

17. <location, date> People have different appetites for risk

18. <location, date> Privacy Nihilists

19. <location, date> Privacy Vegans

20. <location, date> Security is a process, not a product • Tools are not enough to protect your privacy • Build a threat model, then figure out what tools/processes are appropriate • Your threat model may change over time

21. <location, date>

22. <location, date> You don’t have to a nihilist or a vegan

27. <location, date> Thanks! Laura Poitras Bruce Schneier Jonathan Stray

Editor's Notes

So you’ve just heard a bunch of scary stuff and I bet you’re wondering how to make sense of it. Should you be using Tor for all your browsing? Should you be using a VPN? Should you be sending all over your email using PGP? Should you throw your phone off a cliff? Trying to protect everything from everyone all the time is exhausting. But you probably don’t have to do that. And if you want to figure out what tools and procedures you should be using to give yourself meaning privacy for the things that are important to you, you need to learn to threat model.
What’s meta-data?
As you can see, this is not all about bad guys hacking into your computer. Legal attacks. Social attacks. Physical attacks.
Assessing capability is HARD: you have to make a guess about what resources your attacker has and how far they’re willing to go to attack your assets. When you’re thinking about your physical assets, that may seem simple. You lock your doors. You put your important papers in a safe. You can see if you’re being physically followed. But the Internet doesn’t work the way it appears to most people. The same goes for courts. So in order to understand legal attacks, you talk to a lawyer. In order to understand, attacks over the Internet, you talk to hackers.
Snowden leaks taught us a lot about NSA and 5-Eyes capabilities up to until very recently. But remember that capabilities are constantly changing. New laws get passed. New technologies are invented. New bugs are discovered and exploited. This work is never done.
How likely is a particular threat against a particular asset? Related to capability: sure, your telco has access to all of your call data, but the risk that they will publish this publicly in order to harm your reputation is low. Threat is important to distinguish from risk. A threat is a bad thing that can happen. The risk is how likely it is that it will occur. There’s a threat that your house will collapse. But this is more likely to happen in San Francisco, where earthquakes are common, than Stockholm, where they are not.
Conductive a risk analysis is a very subjective process. Not everyone has the same priorities or views threats the same way. Many people find certain threats (like the government spying on their internet traffic) unacceptable no matter what the risk. Other people disregard high risks because they don’t view the threat as a problem. For example, if I might not care so much if someone steals my credit card numbers because the credit card company will just reverse the charges.
Want advice about threats/capabilities/tools? Check out SSD. Available in Arabic, English, French, Thai, Vietnamese, Spanish, and Urdu.

Threat modeling nihilists v. vegans

Recommended

Recommended

More Related Content

Similar to Threat modeling nihilists v. vegans

Similar to Threat modeling nihilists v. vegans (20)

Recently uploaded

Recently uploaded (20)

Threat modeling nihilists v. vegans

Editor's Notes