Modern Cryptographic Dissidence - B Sides PDX
•
0 likes•50 views
A look into how privacy experts and law enforcement view the landscape of encryption in today's society.
Report
Share
Report
Share
Download to read offline
Recommended
Internet Freedom and its Discontents
In this class we studied the "Internet Freedom" speeches of Secretary of State Hillary Clinton, and then looked at critiques and counter-arguments made by Evgeny Morozov, Sami Ben Gharbia and Cory Doctorow.
Introduction to Hacktivism
This document discusses digital activism and hacktivism. It defines digital activism as using technology over large distances to effect political or social change through grassroots campaigns. Hacktivism is separated from digital activism by involving computer crimes like unauthorized access or impairment of computer systems. Early examples of hacktivism included attacks in 1989 promoting anti-nuclear messages. Anonymous emerged in the 2000s and became politicized through protests around Scientology in 2008. Major hacktivist operations since then have included Payback targeting copyright enforcement and Darknet targeting child pornography sites. Lessons from these events have led to guidance for underground communities on operational security.
An Internet of Governments
Presented by Klee Aiken and Maarten Van Horenbeeck at the 30th Annual FIRST Conference, in Kuala Lumpur, Malaysia.
https://www.first.org/conference/2018/program#pan-internet-of-governments-how-policymakers-became-interested-in-cyber
Michael Fertik on KTRH Houston -- 10/26/09
The document discusses a proposed Cybersecurity Act of 2009 that would give the President broad authority to declare a "cyber emergency" and disconnect private sector computers or examine internet data packets. While requiring federal agencies to improve cybersecurity is non-controversial, the bill is too vague by not defining what would constitute a grave enough threat to declare an emergency. Michael Fertik expresses concern as a civil libertarian about the President having sole and unreviewed authority to declare a cyber emergency under the proposed bill.
Privacy post-Snowden
This document summarizes international laws and policies regarding privacy and mass surveillance in the post-Snowden era. It discusses obligations under international human rights law, calls by the UN General Assembly to review surveillance practices, and reports by the UN High Commissioner for Human Rights criticizing secret interpretations of law and lack of protections for individuals. The document also reviews data privacy regulations in Europe, debates around data localization, encryption technologies, and concludes that strengthening international law and information security is needed to curb mass surveillance by powerful states.
Where next for encryption regulation?
This document discusses issues around encryption regulation. It notes developments in end-to-end encryption and storage encryption. It discusses views from FBI Director James Comey and UK Prime Minister David Cameron calling for access to encrypted communications. It reviews national policies on encryption in the US, India, China and Russia. The Council of Europe and UN Special Rapporteur support strong encryption for privacy and security. Key issues are comparing political economies today versus the 1990s which led to encryption liberalization, and determining appropriate forums for decision making given interests of industry, civil society, states and others.
Domestic issues for the clinton administration
The document outlines several domestic challenges faced by the Clinton administration, including the emergence of the internet and related legislation like the Telecommunications Act of 1996 and Communications Decency Act. It also discusses domestic terrorism such as the Oklahoma City bombing by Timothy McVeigh and Terry Nichols in 1995 and the Columbine school shooting. Congress responded to the Oklahoma City bombing by passing the Anti-Terrorism Act of 1996, similar to the Patriot Act passed after 9/11. Clinton faced political scandals such as Whitewater, sexual harassment accusations from Paula Jones, and impeachment for perjury and obstruction of justice regarding his relationship with Monica Lewinsky.
Where next for the Regulation of Investigatory Powers Act?
This document summarizes recommendations from reports by David Anderson QC, the Intelligence and Security Committee, and RUSI on reforming and consolidating complex UK legislation governing intelligence agencies and investigatory powers. It notes calls to replace existing laws with a new comprehensive bill that clearly defines agencies' powers and capabilities while strengthening oversight and legal safeguards. The government plans to introduce a draft Investigatory Powers Bill for scrutiny later in 2015.
Recommended
Internet Freedom and its Discontents
In this class we studied the "Internet Freedom" speeches of Secretary of State Hillary Clinton, and then looked at critiques and counter-arguments made by Evgeny Morozov, Sami Ben Gharbia and Cory Doctorow.
Introduction to Hacktivism
This document discusses digital activism and hacktivism. It defines digital activism as using technology over large distances to effect political or social change through grassroots campaigns. Hacktivism is separated from digital activism by involving computer crimes like unauthorized access or impairment of computer systems. Early examples of hacktivism included attacks in 1989 promoting anti-nuclear messages. Anonymous emerged in the 2000s and became politicized through protests around Scientology in 2008. Major hacktivist operations since then have included Payback targeting copyright enforcement and Darknet targeting child pornography sites. Lessons from these events have led to guidance for underground communities on operational security.
An Internet of Governments
Presented by Klee Aiken and Maarten Van Horenbeeck at the 30th Annual FIRST Conference, in Kuala Lumpur, Malaysia.
https://www.first.org/conference/2018/program#pan-internet-of-governments-how-policymakers-became-interested-in-cyber
Michael Fertik on KTRH Houston -- 10/26/09
The document discusses a proposed Cybersecurity Act of 2009 that would give the President broad authority to declare a "cyber emergency" and disconnect private sector computers or examine internet data packets. While requiring federal agencies to improve cybersecurity is non-controversial, the bill is too vague by not defining what would constitute a grave enough threat to declare an emergency. Michael Fertik expresses concern as a civil libertarian about the President having sole and unreviewed authority to declare a cyber emergency under the proposed bill.
Privacy post-Snowden
This document summarizes international laws and policies regarding privacy and mass surveillance in the post-Snowden era. It discusses obligations under international human rights law, calls by the UN General Assembly to review surveillance practices, and reports by the UN High Commissioner for Human Rights criticizing secret interpretations of law and lack of protections for individuals. The document also reviews data privacy regulations in Europe, debates around data localization, encryption technologies, and concludes that strengthening international law and information security is needed to curb mass surveillance by powerful states.
Where next for encryption regulation?
This document discusses issues around encryption regulation. It notes developments in end-to-end encryption and storage encryption. It discusses views from FBI Director James Comey and UK Prime Minister David Cameron calling for access to encrypted communications. It reviews national policies on encryption in the US, India, China and Russia. The Council of Europe and UN Special Rapporteur support strong encryption for privacy and security. Key issues are comparing political economies today versus the 1990s which led to encryption liberalization, and determining appropriate forums for decision making given interests of industry, civil society, states and others.
Domestic issues for the clinton administration
The document outlines several domestic challenges faced by the Clinton administration, including the emergence of the internet and related legislation like the Telecommunications Act of 1996 and Communications Decency Act. It also discusses domestic terrorism such as the Oklahoma City bombing by Timothy McVeigh and Terry Nichols in 1995 and the Columbine school shooting. Congress responded to the Oklahoma City bombing by passing the Anti-Terrorism Act of 1996, similar to the Patriot Act passed after 9/11. Clinton faced political scandals such as Whitewater, sexual harassment accusations from Paula Jones, and impeachment for perjury and obstruction of justice regarding his relationship with Monica Lewinsky.
Where next for the Regulation of Investigatory Powers Act?
This document summarizes recommendations from reports by David Anderson QC, the Intelligence and Security Committee, and RUSI on reforming and consolidating complex UK legislation governing intelligence agencies and investigatory powers. It notes calls to replace existing laws with a new comprehensive bill that clearly defines agencies' powers and capabilities while strengthening oversight and legal safeguards. The government plans to introduce a draft Investigatory Powers Bill for scrutiny later in 2015.
The dark web
The document discusses the dark web, which is part of the world wide web that is not indexed by standard search engines and requires special software to access. It defines the surface web and deep web, noting that the deep web contains vastly more information than the surface web but is not accessible through standard searches. It notes some of the potential uses of the dark web, including secure and anonymous access to information, but also risks like encountering criminals, hackers, or dangerous content.
RULES OF THE GAME IN CYBERWAR
CYBERWAR IS NOT A CONVENTIONAL WAR. NATIONS ARE YET TO ENTER INTO ANY INTERNATIONAL TREATY IN THE FIELD OF CYBERWAR. RULES ARE REQUIRED TO BE FRAMED IN THIS FIELD KEEPING IN VIEW THE POTENTIAL OF DAMAGE WHICH CAN BE CAUSED IN THE EVENT OF CYBERWAR.
ICANN Contract vs National Law
ICANN is a California based corporation yet it enters into binding contracts with companies all over the world.
Some of the contractual requirements may be in direct conflict with national law, so how do you strike the balance
The Darknet Emerges
The document discusses the emergence and components of the "darknet", which refers to technologies that allow for anonymous use of the internet by avoiding personal identification. It outlines various darknet technologies like Tor, VPNs, encryption tools, cryptocurrencies and secure hardware. It also discusses how the darknet is used for both legal and illegal purposes, and why some people choose to use it given declining personal privacy elsewhere. Finally, it explores how darknet capabilities may continue to evolve and how adoption of such technologies could help defend critical institutions and democratic processes by enabling secure and anonymous communications.
Wild West or gulag: models for policing cyberspace
The document discusses two models for policing cyberspace: the "Wild West model" and the "gulag model". The Wild West model treats the internet as an open frontier with freedom of speech and resistance to censorship, while the gulag model involves mass surveillance and restrictions of privacy and speech similar to totalitarian regimes. The document argues that the Wild West model is still more appropriate as total surveillance is ineffective against terrorism and erodes civil liberties, while privacy and free speech become more important in the digital age. Technological solutions alone cannot counter terrorism and censorship cannot remove propaganda from the internet.
Dark Web Impact on Hidden Services in the Tor-based Criminal Ecosystem Dr.
In this work we explored the Attacks Landscape in the Dark Web. While in the past FTR looked at good and services offered and traded, here we investigated on the attacks and exposure. We observed hacking groups targeting each other, for example by defacing concurrent web sites in order to promote their -- or stealing Onion's private keys to possibly tampering on encrypted traffic in Tor.
Hackers & hacktivism
Hackers and hacktivism can be summarized as follows:
1) Hacking involves unauthorized access to computer networks and systems, while hacktivism uses hacking for political or social causes.
2) Notable hacktivist groups include Anonymous, which has targeted government and corporate websites to support political protests and social issues.
3) Different types of hackers include black hat hackers who carry out computer attacks, while white hat hackers use hacking for security testing with authorization.
Keynote - Cindy Cohn
The document discusses the NSA's mass collection of US data including internet backbone collection, telephone records collection, and PRISM/Upstream collection. It notes that the NSA collects everything first before analyzing and sorting what is needed, relying on minimization procedures. The speaker argues this approach violates the 4th Amendment and notes the FISA court orders are not proper warrants. Litigation efforts by EFF are mentioned as well as legislation like the USA Freedom Act, international principles, and the need to not forget technology solutions.
CT3- STEVENS
This document discusses the history of U.S. cybersecurity policy through Clegg's theory of circuits of power. It examines how power has circulated through episodic, social integration, and system integration circuits over time. Key events discussed include the creation of the Department of Homeland Security after 9/11, various cybersecurity breaches in the 2000s, and Obama's 2013 executive order establishing a cybersecurity framework. Turf wars between government agencies, executive orders, legislation, and public backlash have all significantly impacted the development of U.S. cybersecurity policy over the past few decades.
Jillian C. York
The document discusses issues around mass surveillance and efforts to end it. It notes that technology companies like FinFisher and ISS World sell surveillance tools to governments without considering how they may be used, only focusing on profits. It then outlines steps to end mass surveillance, including technology solutions, policy/legal reforms, and shifting social attitudes. Finally, it quotes Edward Snowden on how mass surveillance limits human freedoms and notes that while reform will be difficult, protecting civil liberties is important.
302 patriot
This presentation covers content in Unit 4 of TECH 3020: Technology Systems in Societies, at Bowling Green State University
Towngas Infomation Security Week 2013 presentation
Presentation to Towngas employees in the inaugural talk of its 2013 Information Security Week activity
Cloaking Devices, CyberPersonas, and
Neutral Zones
When every endpoint is under constant attack, and all traffic is being parsed and analyzed, how can we safeguard confidential information, freely interact, and express our digital persona without concern? Chris will describe why privacy must not be breached; why anonymity can engender hostility, and what mindset is leading us into cyberwar zones instead of cybertrade neutral zones.
Regulating The Internet
The document provides a brief history of the internet from its creation in 1975 to key developments like the World Wide Web and social media platforms. It discusses current international and domestic frameworks for regulating the internet as well as stakeholders that influence legal regulation. It also questions whether the current frameworks are adequate given that the internet is often referred to metaphorically as the "Wild West" and if regulations are difficult to enforce across jurisdictions like in the early American west.
Policy, Media, and Power.ppt
The President holds power over policy processes, priorities, and persuasion. The document discusses the Patriot Act and how it authorized information sharing between law enforcement and intelligence agencies to help connect dots and disrupt terrorist threats while protecting civil liberties. It also discusses some of the key domestic and foreign policy areas a President would focus on like the economy, healthcare, national security, and relationships with other countries. The media, especially cable news networks and online content, has become very powerful and influential in shaping public opinion and the success of politicians.
Internet governance
1. The document discusses issues around internet governance and filtering, noting that while the internet is a critical global resource, there are currently no enforceable international laws governing access.
2. It outlines some principles of internet governance inspired by international law, and examines how different countries justify internet filtering to uphold community standards or ensure national security.
3. The document concludes that while states have independent control over internet access within their borders, there are no meaningful external legal checks and the UN currently takes no stance on internet governance internationally.
Cyber Security Agenda for 45th President
The Obama administration made progress on cybersecurity but faced challenges due to believing the private sector would solve issues and misunderstanding how the government works. While an agreement reduced Chinese commercial spying, political and military espionage continued. Edward Snowden damaged US cyber leadership and increased demands for sovereignty. To improve security, the next administration should create consequences for foreign cyber crimes and incentivize security, hold critical infrastructure to high standards, and address international cooperation and data protection.
Cybersecurity and the DarkNet
This document discusses cybersecurity issues on the darknet. It explains that the surface web covers less than 1% of the internet, and criminals are moving operations to the deepweb and darknet for increased privacy and anonymity. The darknet uses protocols like TOR to anonymize users and host websites selling illegal goods anonymously, including drugs, guns, malware, and even assassinations. Machine learning is being used by cybersecurity professionals to analyze darknet sites and forums to identify hundreds of cyber threats weekly. The document ends with questions about how governments and security experts should handle the darknet and debates around its legitimate and illegitimate uses.
Cyber Crime is around us
This document discusses types of cyber crimes such as hacking, denial of service attacks, and software piracy. It notes that cyber crime is increasing and lists members of the Strategic Alliance Cyber Crime Working Group such as the Royal Canadian Mounted Police and FBI. The document poses discussion questions about experiences with cyber crime and how to protect network environments from cyber threats.
Cybersecurity Strategies - time for the next generation
In this talk, presented in June 2016 at KAIST, I argue that it is time for the next generation of cybersecurity strategies. These must have a governance focus, and be based on international laws, declarations and agreements, basic internet rights and public good provisions.
Making sense of big data
This document summarizes a presentation on big data given by Sir Mark Walport, the UK's Chief Scientific Adviser. It discusses the opportunities and risks of big data, including how it can improve health and infrastructure but also enable privacy violations. While data can be anonymized, it is difficult to fully protect privacy due to the ability to match anonymous data with other public datasets. Both utopian and dystopian futures are possible depending on how data is governed and balanced with individual privacy. Moving forward will require advances in technology, open communication, and governance measures to control data access.
More Related Content
What's hot
The dark web
The document discusses the dark web, which is part of the world wide web that is not indexed by standard search engines and requires special software to access. It defines the surface web and deep web, noting that the deep web contains vastly more information than the surface web but is not accessible through standard searches. It notes some of the potential uses of the dark web, including secure and anonymous access to information, but also risks like encountering criminals, hackers, or dangerous content.
RULES OF THE GAME IN CYBERWAR
CYBERWAR IS NOT A CONVENTIONAL WAR. NATIONS ARE YET TO ENTER INTO ANY INTERNATIONAL TREATY IN THE FIELD OF CYBERWAR. RULES ARE REQUIRED TO BE FRAMED IN THIS FIELD KEEPING IN VIEW THE POTENTIAL OF DAMAGE WHICH CAN BE CAUSED IN THE EVENT OF CYBERWAR.
ICANN Contract vs National Law
ICANN is a California based corporation yet it enters into binding contracts with companies all over the world.
Some of the contractual requirements may be in direct conflict with national law, so how do you strike the balance
The Darknet Emerges
The document discusses the emergence and components of the "darknet", which refers to technologies that allow for anonymous use of the internet by avoiding personal identification. It outlines various darknet technologies like Tor, VPNs, encryption tools, cryptocurrencies and secure hardware. It also discusses how the darknet is used for both legal and illegal purposes, and why some people choose to use it given declining personal privacy elsewhere. Finally, it explores how darknet capabilities may continue to evolve and how adoption of such technologies could help defend critical institutions and democratic processes by enabling secure and anonymous communications.
Wild West or gulag: models for policing cyberspace
The document discusses two models for policing cyberspace: the "Wild West model" and the "gulag model". The Wild West model treats the internet as an open frontier with freedom of speech and resistance to censorship, while the gulag model involves mass surveillance and restrictions of privacy and speech similar to totalitarian regimes. The document argues that the Wild West model is still more appropriate as total surveillance is ineffective against terrorism and erodes civil liberties, while privacy and free speech become more important in the digital age. Technological solutions alone cannot counter terrorism and censorship cannot remove propaganda from the internet.
Dark Web Impact on Hidden Services in the Tor-based Criminal Ecosystem Dr.
In this work we explored the Attacks Landscape in the Dark Web. While in the past FTR looked at good and services offered and traded, here we investigated on the attacks and exposure. We observed hacking groups targeting each other, for example by defacing concurrent web sites in order to promote their -- or stealing Onion's private keys to possibly tampering on encrypted traffic in Tor.
Hackers & hacktivism
Hackers and hacktivism can be summarized as follows:
1) Hacking involves unauthorized access to computer networks and systems, while hacktivism uses hacking for political or social causes.
2) Notable hacktivist groups include Anonymous, which has targeted government and corporate websites to support political protests and social issues.
3) Different types of hackers include black hat hackers who carry out computer attacks, while white hat hackers use hacking for security testing with authorization.
Keynote - Cindy Cohn
The document discusses the NSA's mass collection of US data including internet backbone collection, telephone records collection, and PRISM/Upstream collection. It notes that the NSA collects everything first before analyzing and sorting what is needed, relying on minimization procedures. The speaker argues this approach violates the 4th Amendment and notes the FISA court orders are not proper warrants. Litigation efforts by EFF are mentioned as well as legislation like the USA Freedom Act, international principles, and the need to not forget technology solutions.
CT3- STEVENS
This document discusses the history of U.S. cybersecurity policy through Clegg's theory of circuits of power. It examines how power has circulated through episodic, social integration, and system integration circuits over time. Key events discussed include the creation of the Department of Homeland Security after 9/11, various cybersecurity breaches in the 2000s, and Obama's 2013 executive order establishing a cybersecurity framework. Turf wars between government agencies, executive orders, legislation, and public backlash have all significantly impacted the development of U.S. cybersecurity policy over the past few decades.
Jillian C. York
The document discusses issues around mass surveillance and efforts to end it. It notes that technology companies like FinFisher and ISS World sell surveillance tools to governments without considering how they may be used, only focusing on profits. It then outlines steps to end mass surveillance, including technology solutions, policy/legal reforms, and shifting social attitudes. Finally, it quotes Edward Snowden on how mass surveillance limits human freedoms and notes that while reform will be difficult, protecting civil liberties is important.
302 patriot
This presentation covers content in Unit 4 of TECH 3020: Technology Systems in Societies, at Bowling Green State University
Towngas Infomation Security Week 2013 presentation
Presentation to Towngas employees in the inaugural talk of its 2013 Information Security Week activity
Cloaking Devices, CyberPersonas, and
Neutral Zones
When every endpoint is under constant attack, and all traffic is being parsed and analyzed, how can we safeguard confidential information, freely interact, and express our digital persona without concern? Chris will describe why privacy must not be breached; why anonymity can engender hostility, and what mindset is leading us into cyberwar zones instead of cybertrade neutral zones.
Regulating The Internet
The document provides a brief history of the internet from its creation in 1975 to key developments like the World Wide Web and social media platforms. It discusses current international and domestic frameworks for regulating the internet as well as stakeholders that influence legal regulation. It also questions whether the current frameworks are adequate given that the internet is often referred to metaphorically as the "Wild West" and if regulations are difficult to enforce across jurisdictions like in the early American west.
Policy, Media, and Power.ppt
The President holds power over policy processes, priorities, and persuasion. The document discusses the Patriot Act and how it authorized information sharing between law enforcement and intelligence agencies to help connect dots and disrupt terrorist threats while protecting civil liberties. It also discusses some of the key domestic and foreign policy areas a President would focus on like the economy, healthcare, national security, and relationships with other countries. The media, especially cable news networks and online content, has become very powerful and influential in shaping public opinion and the success of politicians.
Internet governance
1. The document discusses issues around internet governance and filtering, noting that while the internet is a critical global resource, there are currently no enforceable international laws governing access.
2. It outlines some principles of internet governance inspired by international law, and examines how different countries justify internet filtering to uphold community standards or ensure national security.
3. The document concludes that while states have independent control over internet access within their borders, there are no meaningful external legal checks and the UN currently takes no stance on internet governance internationally.
Cyber Security Agenda for 45th President
The Obama administration made progress on cybersecurity but faced challenges due to believing the private sector would solve issues and misunderstanding how the government works. While an agreement reduced Chinese commercial spying, political and military espionage continued. Edward Snowden damaged US cyber leadership and increased demands for sovereignty. To improve security, the next administration should create consequences for foreign cyber crimes and incentivize security, hold critical infrastructure to high standards, and address international cooperation and data protection.
Cybersecurity and the DarkNet
This document discusses cybersecurity issues on the darknet. It explains that the surface web covers less than 1% of the internet, and criminals are moving operations to the deepweb and darknet for increased privacy and anonymity. The darknet uses protocols like TOR to anonymize users and host websites selling illegal goods anonymously, including drugs, guns, malware, and even assassinations. Machine learning is being used by cybersecurity professionals to analyze darknet sites and forums to identify hundreds of cyber threats weekly. The document ends with questions about how governments and security experts should handle the darknet and debates around its legitimate and illegitimate uses.
Cyber Crime is around us
This document discusses types of cyber crimes such as hacking, denial of service attacks, and software piracy. It notes that cyber crime is increasing and lists members of the Strategic Alliance Cyber Crime Working Group such as the Royal Canadian Mounted Police and FBI. The document poses discussion questions about experiences with cyber crime and how to protect network environments from cyber threats.
What's hot (20)
Wild West or gulag: models for policing cyberspace
Wild West or gulag: models for policing cyberspace
Dark Web Impact on Hidden Services in the Tor-based Criminal Ecosystem Dr.
Dark Web Impact on Hidden Services in the Tor-based Criminal Ecosystem Dr.
Towngas Infomation Security Week 2013 presentation
Towngas Infomation Security Week 2013 presentation
Cloaking Devices, CyberPersonas, and
Neutral Zones
Cloaking Devices, CyberPersonas, and
Neutral Zones
Similar to Modern Cryptographic Dissidence - B Sides PDX
Cybersecurity Strategies - time for the next generation
In this talk, presented in June 2016 at KAIST, I argue that it is time for the next generation of cybersecurity strategies. These must have a governance focus, and be based on international laws, declarations and agreements, basic internet rights and public good provisions.
Making sense of big data
This document summarizes a presentation on big data given by Sir Mark Walport, the UK's Chief Scientific Adviser. It discusses the opportunities and risks of big data, including how it can improve health and infrastructure but also enable privacy violations. While data can be anonymized, it is difficult to fully protect privacy due to the ability to match anonymous data with other public datasets. Both utopian and dystopian futures are possible depending on how data is governed and balanced with individual privacy. Moving forward will require advances in technology, open communication, and governance measures to control data access.
2600 v19 n4 (winter 2002)
Hermann Goering said that leaders can manipulate people into supporting wars by claiming they are under attack and accusing peacemakers of lacking patriotism. The document is an excerpt from a speech Goering gave before being sentenced to death at the Nuremberg trials for war crimes committed under the Nazi regime in Germany. It warns that governments can stir up support for conflicts by portraying themselves as defending the nation from external threats.
Privacy reconsidered
Privacy is a complex concept that is impacted by new technologies. While many are concerned about online privacy and data collection, anonymity on the internet allows for important anonymous speech. However, anonymous online spaces are also used for harassment and illegal activities. An ethical approach to privacy involves balancing openness with appropriate limits, through principles like "privacy by design" and laws that protect both privacy and security. Anonymous platforms have enabled important political speech but are also threatened by calls for increased monitoring.
The Great Cryptographic Divide - Enigma 2018
From the Enigma machine to the DES and RSA algorithms, encryption has engendered a long, drawn-out war between governments. In the last few decades, however, it has evolved into a topic that is quickly dividing the world into privacy and security advocates. As industry continues to provide enhanced encryption options to the consumer, the government is losing visibility into threat actors who are perpetrating crimes and exploiting the security of nation states. The move toward end-to-end encryption is not only impacting government, but the overall security posture of corporations as well. This raises security and risk concerns for the entire community. How are the government and private sector planning to maintain security and privacy in a fully encrypted world? How will governments maintain foreign intelligence collection requirements? What are tech companies inventing to counteract emerging threats while maintaining the privacy of their users? I will also present some creative solutions for how we can move the encryption and privacy debate forward and create reasonable common ground that will align parties instead of increasing the cryptographic divide.
Reining in the Data ITAG tech360 Penn State Great Valley 2015
Social impact of the privacy crisis in the post snowden era. What we thought was secure has been compromised. We think we want anonymity, but that promotes bad activity.
Making Better Internet Policy: An Analysis of the National Information Infras...
My Masters Thesis mapped diversity of stakeholder involvement to policy outcomes of the National Information Infrastructure. I reviewed many archival documents from the era and interviewed nearly twenty different stakeholders who were involved at the time.
Thesis Committee: D. Linda Garcia, David Ribes, Michael R. Nelson
The Post Snowden World One Year Later: What Has Changed?
Increased awareness about government surveillance practices has changed the way society understands privacy, values and due process of the law, leaving individuals and businesses unsure about who has access to their private information. The trust of our customers is the currency upon which the Internet economy is built. It's foundation, the Internet infrastructure industry, must collaborate with others who have a stake in its success to show the world that the United States takes privacy seriously. We are already seeing an international backlash to the activities of the NSA as individual countries and regions seek to implement policies that will fragment the Internet into localized networks. This would discount all the principles that have led to our industry's massive success. Now more than ever, we must work together to ensure that significant reforms are made to maintain the open and free nature of the Internet as we know it.
Sovereignty in Cyberspace
This document discusses sovereignty and governance in cyberspace, focusing on three key sites: the NSA and encryption policy, WIPO and anti-circumvention measures, and ICANN and internet identifier management. For each site, it analyzes the rhetoric used, realpolitik motivations, governance processes and challenges, and lack of legitimacy and effectiveness due to limited stakeholder participation and global technical constraints. Overall it argues that regulating technology and technologizing regulation in these areas has faced major challenges due to differing stakeholder positions and the difficulty of controlling cryptography, code, and network protocols on an open global internet.
2600 v21 n3 (autumn 2004)
The author provides a brief overview of some basic security measures at AOL based on their past experience as a low-level employee. They describe the Merlin customer database system and restricted access to workflows. Desktop workstations run Windows 2000 with unique login IDs and minimal password complexity rules. Management can monitor desktop activity and globally change desktop images.
DCB1309 - F2_Dark_Net
The Dark Net is a hidden part of the internet that allows for anonymous browsing and communication. It is much larger than the surface web that is accessible through typical search engines. The Dark Net promotes anonymity and prevents censorship, but is also exploited for criminal activity like drug and weapons trading. It poses a threat as sensitive data from governments and businesses has been stolen and is available for sale on the Dark Net. Debates are ongoing on how to address security concerns while maintaining privacy, and whether businesses should play a role in investigating criminal networks on the Dark Net.
2600 v14 n2 (summer 1997)
This document provides information about the staff and contributors involved with the 2600 magazine. It lists Emmanuel Goldstein as the Editor-in-Chief and includes various other roles such as Layout, Cover Design, Writers, Network Operations, and Insprational Music. It also includes begin and end PGP key blocks.
NS Civil Liberties & Security Supplement Sept 2014
This document discusses government surveillance programs and civil liberties in the UK. It provides examples of surveillance programs operated by GCHQ and the NSA, such as programs that collect data from social media sites, smartphones, text messages, and more. The document questions whether surveillance is being conducted within proper legal and oversight guidelines, or if it has gone too far and infringed on citizens' privacy and civil liberties. It calls for stronger legal protections and more oversight of surveillance activities.
Privacy is an Illusion and you’re all losers! - Cryptocow - Infosecurity 2013
Privacy is an illusion and you’re all losers!
or how 1984 was a manual for our panopticon society
By Cain Ransbottyn - @ransbottyn
Big Data and the Future of Money 2014
Daniel Austin from GRIN Technologies gave a presentation on how big data and the internet of things are driving changes in the nature of money. He argued that within the next 5-10 years, digital transactions will dominate globally and the evolution of digital currencies will be driven by big data and metadata. Further in the future, money may take on more autonomous and self-aware properties as it converges with human and monetary evolution. By giving money sufficient autonomy and awareness, it could potentially preserve and transfer wealth across very long timescales.
2600 v25 n1 (spring 2008)
This document discusses the increasing trend of government and corporate surveillance and the erosion of privacy. It summarizes that:
1) Advances in surveillance technology combined with public fear have allowed surveillance to rapidly expand, with over half a million cameras in London alone monitoring people an average of 300 times per day.
2) People have also voluntarily given up privacy by oversharing personal details online, yet this does not justify increased official monitoring and erosion of civil liberties through laws like the Protect America Act.
3) For the moment, public acceptance is what gives surveillance programs the most power, so resisting normalization of these practices may help curb further intrusions if privacy expectations are not completely erased.
Lofty Ideals: The Nature of Clouds and Encryption
An overview of the legal, privacy, and security issues surrounding modern cloud services and cryptography
Created as an alumnus talk for the Computer & Network Support Technology Fairfield Career Center senior class of 2016.
Ed Snowden: hero or villain? And the implications for media and democracy
These are slides for a talk to a LSE student society on Ed Snowden and his significance for media and democracy. These are a first attempt to get some thoughts in order so should be seen as exploratory notes rather than some kind of definitive statement - feedback very welcome!
It follows up on my 2012 book on WikiLeaks which looked at the history of WikiLeaks but also put it into a wider context of what it means for politics and journalism.
Policy primer net303 study period 3, 2017
This slide share is an assignment for NET303 Power, Politics and the Internet in Study period 3 of 2017
BSidesROC 2016 Keynote - Nate Cardozo - The State Of The Law
Strong end-to-end encryption is legal in the United States today, thanks to our victory in what’s come to be known as the Crypto Wars of the 1990s. But in the wake of Paris and San Bernardino, there is increasing pressure from law enforcement and policy makers, both here and abroad, to mandate so-called backdoors in encryption products. In this presentation, I will discuss in brief the history of the first Crypto Wars, and the state of the law coming into 2016. I will then discuss the current proposals to weaken or ban encryption, covering proposed and recently enacted laws in New York, California, Australia, India, and the UK. Finally, I will discuss possible realistic outcomes to the Second Crypto Wars, and give my predictions on what the State of the Law will be at the end of 2016. Obviously, the content may well change, based on what Magistrate Judge Pym does in San Bernardino!!!
Similar to Modern Cryptographic Dissidence - B Sides PDX (20)
Cybersecurity Strategies - time for the next generation
Cybersecurity Strategies - time for the next generation
Reining in the Data ITAG tech360 Penn State Great Valley 2015
Reining in the Data ITAG tech360 Penn State Great Valley 2015
Making Better Internet Policy: An Analysis of the National Information Infras...
Making Better Internet Policy: An Analysis of the National Information Infras...
The Post Snowden World One Year Later: What Has Changed?
The Post Snowden World One Year Later: What Has Changed?
NS Civil Liberties & Security Supplement Sept 2014
NS Civil Liberties & Security Supplement Sept 2014
Privacy is an Illusion and you’re all losers! - Cryptocow - Infosecurity 2013
Privacy is an Illusion and you’re all losers! - Cryptocow - Infosecurity 2013
Ed Snowden: hero or villain? And the implications for media and democracy
Ed Snowden: hero or villain? And the implications for media and democracy
BSidesROC 2016 Keynote - Nate Cardozo - The State Of The Law
BSidesROC 2016 Keynote - Nate Cardozo - The State Of The Law
More from Jason Truppi
Encryption Basics Everyone Should Know
Encryption is a core component to security and a product of strong cryptography. What should you know as a casual user of the Internet, digital wallets or as an application developer.
Supporting The Future of the Decentralized Workforce
With the rising number of remote workers, especially post-pandemic, how do businesses cope with the future of the modern decentralized workforce?
State of Security - 2017
What is the state of cybersecurity? How are businesses reacting to the threat? What can we do to reduce risk of exposure, hacking or attacks?
FBI Crypto Investigations
This document discusses cryptocurrency investigations from the perspective of a former FBI agent. It outlines the various roles and powers of regulatory and law enforcement agencies as they relate to imposing fines, civil actions, and administrative penalties. It also lists several illegal activities like funding terrorism, money laundering, and fraud that could get people in trouble. Finally, it notes that breaches and illegal activities are on the rise, but regulators and law enforcement are getting smarter and responding with more regulation.
Timeline of crypto hacks and government actions
This document provides a timeline of major crypto and law enforcement events from 2011 to 2020. It highlights several major exchange hacks and losses totaling over $1 billion from 2011 to 2019. It also lists enforcement actions such as the arrest of the Silk Road founder in 2011 and indictments of individuals for materially supporting terrorism with bitcoin in 2016.
Illusions vs Reality - BSIDES SF
I will be sharing illusions and realities that I have observed as a veteran FBI agent, who has worked hundreds of cyber incidents, and what I see today having assimilated into the innovative world of Silicon Valley tech. We all know that cybersecurity threats are evolving faster than the world can consume them and that requires passionate and dedicated people to help advance us forward and protect our assets. The reality is government alone cannot move at the pace that is needed to protect their constituents. Often there is a disconnect from what government perceives as a problem versus what private industry categorizes as a risk. Government and technology companies must work together to solve the breach pandemic we have today. I will be highlighting how enterprises are truly preparing their security teams, what valuable metrics they are capturing, what tools are most useful, and what government best practices and standards have been the most sticky. I will be covering the realities of applying threat intelligence, big data analytics and artificial intelligence at scale. Then we will take a step forward and think about what new security problems might be awaiting us in the near future. My goal is to expose the facts of what organizations are actually experiencing, which should help government focus their efforts in the areas that will be most effective at combating the threats that face us daily.
More from Jason Truppi (6)
Supporting The Future of the Decentralized Workforce
Supporting The Future of the Decentralized Workforce
Recently uploaded
Dandelion Hashtable: beyond billion requests per second on a commodity server
This slide deck presents DLHT, a concurrent in-memory hashtable. Despite efforts to optimize hashtables, that go as far as sacrificing core functionality, state-of-the-art designs still incur multiple memory accesses per request and block request processing in three cases. First, most hashtables block while waiting for data to be retrieved from memory. Second, open-addressing designs, which represent the current state-of-the-art, either cannot free index slots on deletes or must block all requests to do so. Third, index resizes block every request until all objects are copied to the new index. Defying folklore wisdom, DLHT forgoes open-addressing and adopts a fully-featured and memory-aware closed-addressing design based on bounded cache-line-chaining. This design offers lock-free index operations and deletes that free slots instantly, (2) completes most requests with a single memory access, (3) utilizes software prefetching to hide memory latencies, and (4) employs a novel non-blocking and parallel resizing. In a commodity server and a memory-resident workload, DLHT surpasses 1.6B requests per second and provides 3.5x (12x) the throughput of the state-of-the-art closed-addressing (open-addressing) resizable hashtable on Gets (Deletes).
Session 1 - Intro to Robotic Process Automation.pdf
👉 Check out our full 'Africa Series - Automation Student Developers (EN)' page to register for the full program:
https://bit.ly/Automation_Student_Kickstart
In this session, we shall introduce you to the world of automation, the UiPath Platform, and guide you on how to install and setup UiPath Studio on your Windows PC.
📕 Detailed agenda:
What is RPA? Benefits of RPA?
RPA Applications
The UiPath End-to-End Automation Platform
UiPath Studio CE Installation and Setup
💻 Extra training through UiPath Academy:
Introduction to Automation
UiPath Business Automation Platform
Explore automation development with UiPath Studio
👉 Register here for our upcoming Session 2 on June 20: Introduction to UiPath Studio Fundamentals: https://community.uipath.com/events/details/uipath-lagos-presents-session-2-introduction-to-uipath-studio-fundamentals/
Main news related to the CCS TSI 2023 (2023/1695)
An English 🇬🇧 translation of a presentation to the speech I gave about the main changes brought by CCS TSI 2023 at the biggest Czech conference on Communications and signalling systems on Railways, which was held in Clarion Hotel Olomouc from 7th to 9th November 2023 (konferenceszt.cz). Attended by around 500 participants and 200 on-line followers.
The original Czech 🇨🇿 version of the presentation can be found here: https://www.slideshare.net/slideshow/hlavni-novinky-souvisejici-s-ccs-tsi-2023-2023-1695/269688092 .
The videorecording (in Czech) from the presentation is available here: https://youtu.be/WzjJWm4IyPk?si=SImb06tuXGb30BEH .
The Microsoft 365 Migration Tutorial For Beginner.pptx
This presentation will help you understand the power of Microsoft 365. However, we have mentioned every productivity app included in Office 365. Additionally, we have suggested the migration situation related to Office 365 and how we can help you.
You can also read: https://www.systoolsgroup.com/updates/office-365-tenant-to-tenant-migration-step-by-step-complete-guide/
Northern Engraving | Nameplate Manufacturing Process - 2024
Manufacturing custom quality metal nameplates and badges involves several standard operations. Processes include sheet prep, lithography, screening, coating, punch press and inspection. All decoration is completed in the flat sheet with adhesive and tooling operations following. The possibilities for creating unique durable nameplates are endless. How will you create your brand identity? We can help!
What is an RPA CoE? Session 2 – CoE Roles
In this session, we will review the players involved in the CoE and how each role impacts opportunities.
Topics covered:
• What roles are essential?
• What place in the automation journey does each role play?
Speaker:
Chris Bolin, Senior Intelligent Automation Architect Anika Systems
Essentials of Automations: Exploring Attributes & Automation Parameters
Building automations in FME Flow can save time, money, and help businesses scale by eliminating data silos and providing data to stakeholders in real-time. One essential component to orchestrating complex automations is the use of attributes & automation parameters (both formerly known as “keys”). In fact, it’s unlikely you’ll ever build an Automation without using these components, but what exactly are they?
Attributes & automation parameters enable the automation author to pass data values from one automation component to the next. During this webinar, our FME Flow Specialists will cover leveraging the three types of these output attributes & parameters in FME Flow: Event, Custom, and Automation. As a bonus, they’ll also be making use of the Split-Merge Block functionality.
You’ll leave this webinar with a better understanding of how to maximize the potential of automations by making use of attributes & automation parameters, with the ultimate goal of setting your enterprise integration workflows up on autopilot.
inQuba Webinar Mastering Customer Journey Management with Dr Graham Hill
HERE IS YOUR WEBINAR CONTENT! 'Mastering Customer Journey Management with Dr. Graham Hill'. We hope you find the webinar recording both insightful and enjoyable.
In this webinar, we explored essential aspects of Customer Journey Management and personalization. Here’s a summary of the key insights and topics discussed:
Key Takeaways:
Understanding the Customer Journey: Dr. Hill emphasized the importance of mapping and understanding the complete customer journey to identify touchpoints and opportunities for improvement.
Personalization Strategies: We discussed how to leverage data and insights to create personalized experiences that resonate with customers.
Technology Integration: Insights were shared on how inQuba’s advanced technology can streamline customer interactions and drive operational efficiency.
"Scaling RAG Applications to serve millions of users", Kevin Goedecke
How we managed to grow and scale a RAG application from zero to thousands of users in 7 months. Lessons from technical challenges around managing high load for LLMs, RAGs and Vector databases.
"What does it really mean for your system to be available, or how to define w...
We will talk about system monitoring from a few different angles. We will start by covering the basics, then discuss SLOs, how to define them, and why understanding the business well is crucial for success in this exercise.
"NATO Hackathon Winner: AI-Powered Drug Search", Taras Kloba
This is a session that details how PostgreSQL's features and Azure AI Services can be effectively used to significantly enhance the search functionality in any application.
In this session, we'll share insights on how we used PostgreSQL to facilitate precise searches across multiple fields in our mobile application. The techniques include using LIKE and ILIKE operators and integrating a trigram-based search to handle potential misspellings, thereby increasing the search accuracy.
We'll also discuss how the azure_ai extension on PostgreSQL databases in Azure and Azure AI Services were utilized to create vectors from user input, a feature beneficial when users wish to find specific items based on text prompts. While our application's case study involves a drug search, the techniques and principles shared in this session can be adapted to improve search functionality in a wide range of applications. Join us to learn how PostgreSQL and Azure AI can be harnessed to enhance your application's search capability.
Demystifying Knowledge Management through Storytelling
The Department of Veteran Affairs (VA) invited Taylor Paschal, Knowledge & Information Management Consultant at Enterprise Knowledge, to speak at a Knowledge Management Lunch and Learn hosted on June 12, 2024. All Office of Administration staff were invited to attend and received professional development credit for participating in the voluntary event.
The objectives of the Lunch and Learn presentation were to:
- Review what KM ‘is’ and ‘isn’t’
- Understand the value of KM and the benefits of engaging
- Define and reflect on your “what’s in it for me?”
- Share actionable ways you can participate in Knowledge - - Capture & Transfer
Day 2 - Intro to UiPath Studio Fundamentals
In our second session, we shall learn all about the main features and fundamentals of UiPath Studio that enable us to use the building blocks for any automation project.
📕 Detailed agenda:
Variables and Datatypes
Workflow Layouts
Arguments
Control Flows and Loops
Conditional Statements
💻 Extra training through UiPath Academy:
Variables, Constants, and Arguments in Studio
Control Flow in Studio
High performance Serverless Java on AWS- GoTo Amsterdam 2024
Java is for many years one of the most popular programming languages, but it used to have hard times in the Serverless community. Java is known for its high cold start times and high memory footprint, comparing to other programming languages like Node.js and Python. In this talk I'll look at the general best practices and techniques we can use to decrease memory consumption, cold start times for Java Serverless development on AWS including GraalVM (Native Image) and AWS own offering SnapStart based on Firecracker microVM snapshot and restore and CRaC (Coordinated Restore at Checkpoint) runtime hooks. I'll also provide a lot of benchmarking on Lambda functions trying out various deployment package sizes, Lambda memory settings, Java compilation options and HTTP (a)synchronous clients and measure their impact on cold and warm start times.
Introduction of Cybersecurity with OSS at Code Europe 2024
I develop the Ruby programming language, RubyGems, and Bundler, which are package managers for Ruby. Today, I will introduce how to enhance the security of your application using open-source software (OSS) examples from Ruby and RubyGems.
The first topic is CVE (Common Vulnerabilities and Exposures). I have published CVEs many times. But what exactly is a CVE? I'll provide a basic understanding of CVEs and explain how to detect and handle vulnerabilities in OSS.
Next, let's discuss package managers. Package managers play a critical role in the OSS ecosystem. I'll explain how to manage library dependencies in your application.
I'll share insights into how the Ruby and RubyGems core team works to keep our ecosystem safe. By the end of this talk, you'll have a better understanding of how to safeguard your code.
Mutation Testing for Task-Oriented Chatbots
Conversational agents, or chatbots, are increasingly used to access all sorts of services using natural language. While open-domain chatbots - like ChatGPT - can converse on any topic, task-oriented chatbots - the focus of this paper - are designed for specific tasks, like booking a flight, obtaining customer support, or setting an appointment. Like any other software, task-oriented chatbots need to be properly tested, usually by defining and executing test scenarios (i.e., sequences of user-chatbot interactions). However, there is currently a lack of methods to quantify the completeness and strength of such test scenarios, which can lead to low-quality tests, and hence to buggy chatbots.
To fill this gap, we propose adapting mutation testing (MuT) for task-oriented chatbots. To this end, we introduce a set of mutation operators that emulate faults in chatbot designs, an architecture that enables MuT on chatbots built using heterogeneous technologies, and a practical realisation as an Eclipse plugin. Moreover, we evaluate the applicability, effectiveness and efficiency of our approach on open-source chatbots, with promising results.
"Choosing proper type of scaling", Olena Syrota
Imagine an IoT processing system that is already quite mature and production-ready and for which client coverage is growing and scaling and performance aspects are life and death questions. The system has Redis, MongoDB, and stream processing based on ksqldb. In this talk, firstly, we will analyze scaling approaches and then select the proper ones for our system.
[OReilly Superstream] Occupy the Space: A grassroots guide to engineering (an...
The typical problem in product engineering is not bad strategy, so much as “no strategy”. This leads to confusion, lack of motivation, and incoherent action. The next time you look for a strategy and find an empty space, instead of waiting for it to be filled, I will show you how to fill it in yourself. If you’re wrong, it forces a correction. If you’re right, it helps create focus. I’ll share how I’ve approached this in the past, both what works and lessons for what didn’t work so well.
Recently uploaded (20)
Dandelion Hashtable: beyond billion requests per second on a commodity server
Dandelion Hashtable: beyond billion requests per second on a commodity server
Session 1 - Intro to Robotic Process Automation.pdf
Session 1 - Intro to Robotic Process Automation.pdf
The Microsoft 365 Migration Tutorial For Beginner.pptx
The Microsoft 365 Migration Tutorial For Beginner.pptx
Northern Engraving | Nameplate Manufacturing Process - 2024
Northern Engraving | Nameplate Manufacturing Process - 2024
Essentials of Automations: Exploring Attributes & Automation Parameters
Essentials of Automations: Exploring Attributes & Automation Parameters
inQuba Webinar Mastering Customer Journey Management with Dr Graham Hill
inQuba Webinar Mastering Customer Journey Management with Dr Graham Hill
"Scaling RAG Applications to serve millions of users", Kevin Goedecke
"Scaling RAG Applications to serve millions of users", Kevin Goedecke
"What does it really mean for your system to be available, or how to define w...
"What does it really mean for your system to be available, or how to define w...
"NATO Hackathon Winner: AI-Powered Drug Search", Taras Kloba
"NATO Hackathon Winner: AI-Powered Drug Search", Taras Kloba
Demystifying Knowledge Management through Storytelling
Demystifying Knowledge Management through Storytelling
High performance Serverless Java on AWS- GoTo Amsterdam 2024
High performance Serverless Java on AWS- GoTo Amsterdam 2024
Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024
[OReilly Superstream] Occupy the Space: A grassroots guide to engineering (an...
[OReilly Superstream] Occupy the Space: A grassroots guide to engineering (an...
Modern Cryptographic Dissidence - B Sides PDX
- 1. Modern Cryptographic Dissidence Jason Truppi - @NotTruppi
- 2. - Supreme Court Justice William O. Douglas, 1952 The right to be let alone is indeed the beginning of all freedom.
- 3. -Whitfield Diffie, 2017 Without strong encryption, you will be spied on systematically by lots of people.
- 4. -National Research Council Study of US Crypto Policy, 1996 ...on balance, the advantages of more widespread use of cryptography outweigh the disadvantages.
- 5. -Senate Church Committee, 1976 ...domestic intelligence activities [that] threaten to undermine our democratic society and fundamentally alter its nature.
- 6. -Thomas Jefferson, 1791 I would rather be exposed to the inconveniences attending too much liberty than those attending too small a degree of it.
- 7. -Louis J. Freeh, Director FBI, 1997 The looming spectre of the widespread use of robust, virtually unbreakable encryption is one of the most difficult problems confronting law enforcement as the next century approaches.
- 8. @NotTruppi ©2017 How Did We Get Here? • Crypto Wars v1 • DoD’s Category XIII Munitions List • Clipper Chip • Netscape US-edition • Wassenaar Arrangement • Executive Order 13026 • Crypto reform of 2010 • App-revolution • Going Dark • Crypto Wars v2
- 10. @NotTruppi ©2017 What We Know? 47% Non FDE FDE HTTP HTTPS 60% Non E2E E2E 22%
- 11. @NotTruppi ©2017 What We Know?
- 12. What Are The Arguments? • To protect and serve • Going dark • Lawful access to evidence • Exceptional access to evidence • Trusted escrow service • LE requests are more complex • CALEA is not modernized Government
- 13. @NotTruppi ©2017 Going Dark? Encryption Status of Reported Wiretaps 0 20 40 60 80 100 120 140 2012 2013 2014 2015 2016 Encryption Not Deciphered Deciphered
- 15. What Are The Arguments? • Obligation to protect the user • Law enforcement requests are a burden • Government shouldn’t force software changes • Don’t stifle innovation • Forward secrecy is the future Corporations
- 16. What Are The Arguments? • Slippery slope for law enforcement methods • Government misuse • Backdoors will make everything unsafe • Govt and Corp can’t grant us privacy • Not anti-Govt Cypherpunks
- 18. @NotTruppi ©2017 Good News Everyone…Bad News! • Privacy is dead • Governments are losing visibility • State/locals will need serious help • Backdoors to encryption don’t work • No exceptional access policy is defined • Big data has no legal boundaries anymore • ”The Cloud” is advancing encryption tech • Visual data encryption • Internet is segmenting with data localization laws
- 20. The Future!?
- 21. @NotTruppi ©2017 What Are The Alternatives? • Exceptional access • Enhanced metadata collection (IoT) • Network investigative techniques • Better big data analytics • HUMINT • Better collaboration and cooperation from service providers • Law enforcement training • Consolidated practices for requesting data • Reform of global legal • Quantum computing :bwaaaahhhhh!!:
- 22. -Me A qubit a day, keeps encryption away.
- 23. Thank you Jason Truppi - @NotTruppi