Pretty good privacy

•Download as PPTX, PDF•

1 like•8,928 views

Jernej Virag

Description of basic workings of PGP

Technology

pretty good privacy securing e-mail communication 5.5.2010

THE PROBLEM e-mail „security“ 5.5.2010 Pretty good privacy 2

SMTP protocol 5.5.2010 3 S: 220 smtp.example.com ESMTP Postfix C: HELO relay.example.org S: 250 Hello relay.example.org, I am glad to meet you C: MAIL FROM:<bob@example.org> S: 250 Ok C: RCPT TO:<alice@example.com> S: 250 Ok C: RCPT TO:<theboss@example.com> S: 250 Ok C: DATA S: 354 End data with <CR><LF>.<CR><LF> C: Hello Alice. C: Your friend, Bob C: . S: 250 Ok: queued as 12345 C: QUIT S: 221 Bye Pretty good privacy

SMTP protocol 4 PLAIN TEXT everyone on the way can read it Pretty good privacy 5.5.2010

SMTP protocol Pretty good privacy 5 NO AUTHENTICATION everyone can pose as everyone 5.5.2010

SMTP protocol Pretty good privacy 6 SIZE LIMIT e-mails are limited in size 5.5.2010

THE SOLUTION PGP - open solution to our problems 5.5.2010 Pretty good privacy 7

PGP features Authentication Confidentiality Compression Segmentation 8 5.5.2010 Pretty good privacy

Predicates Asymetric encryption Digest algorithm 9 Private/public key pair Private key is secret and uncompromised Private key encrypted data can only be decrypted by corresponding public key Reverse holds true as well Same input always generates same output Small change of input causes huge change on output Chance of collision has to be minimal 5.5.2010 Pretty good privacy

Authentication 10 confirming the sender‘s identity MATCH? SHA-1digest SHA-1digest Sender‘s public key RSAencryption RSAdecryption Sender‘s private key 5.5.2010 Pretty good privacy

Encryption 11 confirming the sender‘s identitymaking sure noone else can read the message IDEAencryption Session key IDEAencryption Recipient‘s public key 5.5.2010 Pretty good privacy

Decryption 12 confirming the sender‘s identitymaking sure noone else can read the message IDEAdecryption IDEAdecryption Session key Recipient‘s private key 5.5.2010 Pretty good privacy

Decryption 13 saving bandwidthincreasing cryptoanalysis resistance Sender Recipient 5.5.2010 Pretty good privacy

Compatibility & segmentation 14 traveling across platformsavoiding maximum size limit Compatibility +33% size radix-64 binary data Segmentation automatic segmentation and reassembly of long messages 5.5.2010 Pretty good privacy

THE CONCLUSION Jernej Virag 15 5.5.2010 Pretty good privacy

Recently uploaded

In the thrilling conclusion to 2023, ransomware groups had a banner year, really outdoing themselves in the "make everyone's life miserable" department. LockBit 3.0 took gold in the hacking olympics, followed by the plucky upstarts Clop and ALPHV/BlackCat. Apparently, 48% of organizations were feeling left out and decided to get in on the cyber attack action. Business services won the "most likely to get digitally mugged" award, with education and retail nipping at their heels. Hackers expanded their repertoire beyond boring old encryption to the much more exciting world of extortion. The US, UK and Canada took top honors in the "countries most likely to pay up" category. Bitcoins were the currency of choice for discerning hackers, because who doesn't love untraceable money?

Ransomware_Q4_2023. The report. [EN].pdf

Overkill Security

ICT role in 21st century education and its challenges

rafiqahmad00786416

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

The value of a flexible API Management solution for Open Banking Steve Melan, Manager for IT Innovation and Architecture - State's and Saving's Bank of Luxembourg Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The value of a flexible API Management solution for O...

apidays

[BuildWithAI] Introduction to Gemini.pdf

Sandro Moreira

CNIC Information System with Pakdata Cf In Pakistan

danishmna97

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

Abhishek Deb(1), Mr Abdul Kalam(2) M. Des (UX) , School of Design, DIT University , Dehradun. This paper explores the future potential of AI-enabled smartphone processors, aiming to investigate the advancements, capabilities, and implications of integrating artificial intelligence (AI) into smartphone technology. The research study goals consist of evaluating the development of AI in mobile phone processors, analyzing the existing state as well as abilities of AI-enabled cpus determining future patterns as well as chances together with reviewing obstacles as well as factors to consider for more growth.

Exploring the Future Potential of AI-Enabled Smartphone Processors

debabhi2

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows. We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases. This video focuses on the deployment of external web forms using Jotform for Bonterra Impact Management. This solution can be customized to your organization’s needs and deployed to support the common use cases below: - Intake and consent - Assessments - Surveys - Applications - Program registration Interested in deploying web form automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.

Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...

Jeffrey Haguewood

MS Copilot expands with MS Graph connectors

Nanddeep Nachan

DBX First Quarter 2024 Investor Presentation

Dropbox

The Good, the Bad and the Governed - Why is governance a dirty word? David O'Neill, Chief Operating Officer - APIContext Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

apidays

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Zilliz

Manulife - Insurer Transformation Award 2024

The Digital Insurer

The microservices honeymoon is over. When starting a new project or revamping a legacy monolith, teams started looking for alternatives to microservices. The Modular Monolith, or 'Modulith', is an architecture that reaps the benefits of (vertical) functional decoupling without the high costs associated with separate deployments. This talk will delve into the advantages and challenges of this progressive architecture, beginning with exploring the concept of a 'module', its internal structure, public API, and inter-module communication patterns. Supported by spring-modulith, the talk provides practical guidance on addressing the main challenges of a Modultith Architecture: finding and guarding module boundaries, data decoupling, and integration module-testing. You should not miss this talk if you are a software architect or tech lead seeking practical, scalable solutions. About the author With two decades of experience, Victor is a Java Champion working as a trainer for top companies in Europe. Five thousands developers in 120 companies attended his workshops, so he gets to debate every week the challenges that various projects struggle with. In return, Victor summarizes key points from these workshops in conference talks and online meetups for the European Software Crafters, the world’s largest developer community around architecture, refactoring, and testing. Discover how Victor can help you on victorrentea.ro : company training catalog, consultancy and YouTube playlists.

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024

Victor Rentea

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

AXA XL - Insurer Innovation Award Americas 2024

The Digital Insurer

The action of the next cyber saga takes place in the mystical lands of the Asia-Pacific region, where the main characters began their digital activities in the middle of 2021 and qualitatively strengthened it in 2022. Corporate espionage, document theft, audio recordings, and data leaks from messaging platforms were all a matter of one day for Dark Pink. Their geographical focus may have started in the Asia-Pacific region, but their ambitions knew no bounds, targeting a European government ministry in a bold move to expand their portfolio. Their victim profile was as diverse as a UN meeting, targeting military organizations, government agencies, and even a religious organization. Because discrimination is not a fashionable agenda. In the world of cybercrime, they serve as a reminder that sometimes the most serious threats come in the most unassuming packages with a pink bow.

Cyberprint. Dark Pink Apt Group [EN].pdf

Overkill Security

Architecting Cloud Native Applications

WSO2

Recently uploaded (20)

Ransomware_Q4_2023. The report. [EN].pdf

ICT role in 21st century education and its challenges

Axa Assurance Maroc - Insurer Innovation Award 2024

Apidays New York 2024 - The value of a flexible API Management solution for O...

[BuildWithAI] Introduction to Gemini.pdf

CNIC Information System with Pakdata Cf In Pakistan

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

Exploring the Future Potential of AI-Enabled Smartphone Processors

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...

MS Copilot expands with MS Graph connectors

DBX First Quarter 2024 Investor Presentation

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Manulife - Insurer Transformation Award 2024

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

AXA XL - Insurer Innovation Award Americas 2024

Cyberprint. Dark Pink Apt Group [EN].pdf

Architecting Cloud Native Applications

Pretty good privacy

1. pretty good privacy securing e-mail communication 5.5.2010

2. THE PROBLEM e-mail „security“ 5.5.2010 Pretty good privacy 2

3. SMTP protocol 5.5.2010 3 S: 220 smtp.example.com ESMTP Postfix C: HELO relay.example.org S: 250 Hello relay.example.org, I am glad to meet you C: MAIL FROM:<bob@example.org> S: 250 Ok C: RCPT TO:<alice@example.com> S: 250 Ok C: RCPT TO:<theboss@example.com> S: 250 Ok C: DATA S: 354 End data with <CR><LF>.<CR><LF> C: Hello Alice. C: Your friend, Bob C: . S: 250 Ok: queued as 12345 C: QUIT S: 221 Bye Pretty good privacy

4. SMTP protocol 4 PLAIN TEXT everyone on the way can read it Pretty good privacy 5.5.2010

5. SMTP protocol Pretty good privacy 5 NO AUTHENTICATION everyone can pose as everyone 5.5.2010

6. SMTP protocol Pretty good privacy 6 SIZE LIMIT e-mails are limited in size 5.5.2010

7. THE SOLUTION PGP - open solution to our problems 5.5.2010 Pretty good privacy 7

8. PGP features Authentication Confidentiality Compression Segmentation 8 5.5.2010 Pretty good privacy

9. Predicates Asymetric encryption Digest algorithm 9 Private/public key pair Private key is secret and uncompromised Private key encrypted data can only be decrypted by corresponding public key Reverse holds true as well Same input always generates same output Small change of input causes huge change on output Chance of collision has to be minimal 5.5.2010 Pretty good privacy

10. Authentication 10 confirming the sender‘s identity MATCH? SHA-1digest SHA-1digest Sender‘s public key RSAencryption RSAdecryption Sender‘s private key 5.5.2010 Pretty good privacy

11. Encryption 11 confirming the sender‘s identitymaking sure noone else can read the message IDEAencryption Session key IDEAencryption Recipient‘s public key 5.5.2010 Pretty good privacy

12. Decryption 12 confirming the sender‘s identitymaking sure noone else can read the message IDEAdecryption IDEAdecryption Session key Recipient‘s private key 5.5.2010 Pretty good privacy

13. Decryption 13 saving bandwidthincreasing cryptoanalysis resistance Sender Recipient 5.5.2010 Pretty good privacy

14. Compatibility & segmentation 14 traveling across platformsavoiding maximum size limit Compatibility +33% size radix-64 binary data Segmentation automatic segmentation and reassembly of long messages 5.5.2010 Pretty good privacy

15. THE CONCLUSION Jernej Virag 15 5.5.2010 Pretty good privacy

Pretty good privacy

Recommended

Recommended

More Related Content

More from Jernej Virag

More from Jernej Virag (12)

Recently uploaded

Recently uploaded (20)

Pretty good privacy