Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

CryptoParty Belfast 11 Oct 2014 - OTR


Published on

Belfast CryptoParty Slides - Intro and OTR
14th October 2014

Published in: Software
  • Be the first to comment

  • Be the first to like this

CryptoParty Belfast 11 Oct 2014 - OTR

  1. 1. Belfast CryptoParty Welcome Pete Maynard @pgmaynard October 14, 2014 Belfast CryptoParty | #cryptofast Pete Maynard @pgmaynard 1
  2. 2. What is a CryptoParty? A CryptoParty is free, public and fun. It's a decentralized, global initiative to introduce the most basic cryptography software and the fundamental concepts of their operation to the general public. Belfast CryptoParty | #cryptofast Pete Maynard @pgmaynard 2
  3. 3. Future Topics PGP (Data encryption and authentication) Tor (Anonymity Online) Disk Encryption Securely Downloading applications Whatever you want :) Belfast CryptoParty | #cryptofast Pete Maynard @pgmaynard 3
  4. 4. Disclaimer "The only secure computer is one that's unplugged, locked in a safe, and buried 20 feet under the ground in a secret location. . . and I'm not even too sure about that one" { Dennis Huges, FBI. Belfast CryptoParty | #cryptofast Pete Maynard @pgmaynard 4
  5. 5. What is OTR? Encrypted Instant Messaging Encryption - No one else can read your instant messages. Authentication - You are assured the correspondent is who you think it is. Deniability - The messages you send do not have digital signatures that are checkable by a third party. Anyone can forge messages after a conversation to make them look like they came from you. However, during a conversation, your correspondent is assured the messages he sees are authentic and unmodi
  6. 6. ed. Perfect forward secrecy - If you lose control of your private keys, no previous conversation is compromised. Belfast CryptoParty | #cryptofast Pete Maynard @pgmaynard 5
  7. 7. What OTR is not Some applications will allow "O the record Normally disables logging - Does not mean it's encrypted! SSL, the padlock on websites (HTTPS), is not the same OTR is not secure if you log the conversation OTR does not allow more than two people in a conversation Belfast CryptoParty | #cryptofast Pete Maynard @pgmaynard 6
  8. 8. What you will need Windows/Linux - Pidgin with the OTR plug-in Mac OS - Adium (built in support for OTR) Android/iOS - Chat Secure Belfast CryptoParty | #cryptofast Pete Maynard @pgmaynard 7
  9. 9. Connect and Go 1 Download your client 2 Setup account 3 Accounts, Manage Account, Add 4 Enter connection details (right) 5 Enable OTR Protocol: Facebook (XMPP) Username: [think] Domain : Resource: none Password: [think] Proxy : Port 443 Belfast CryptoParty | #cryptofast Pete Maynard @pgmaynard 8