Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
The State of Encryption
Search
Cristiano Betta
June 08, 2017
Technology
0
290
The State of Encryption
My talk from DevTalks Bucharest 2017
Cristiano Betta
June 08, 2017
Tweet
Share
More Decks by Cristiano Betta
See All by Cristiano Betta
Docs as Engineering - DevRelCon London 2019
cbetta
0
130
DevRelCon London 2019 - Developer Experience Workshop
cbetta
0
110
DevRelCon London 2019 - Developer Experience Workshop
cbetta
0
180
The 7 Deadly Sins of Developer Experience (DevRelCon Tokyo)
cbetta
0
3.8k
Developer Experience Workshop
cbetta
1
520
The 7 Deadly Sins of Developer Onboarding
cbetta
0
180
A brick by brick guide to developer experience
cbetta
2
560
Hackathons Workshop
cbetta
0
230
This strange planet earth
cbetta
0
290
Other Decks in Technology
See All in Technology
Flutter研修【MIXI 24新卒技術研修】
mixi_engineers
PRO
0
160
DDDにおける認可の扱いとKotlinにおける実装パターン / authorization-for-ddd-and-kotlin-implement-pattern
urmot
4
390
エンジニアの生存戦略 〜クラウド潮流の経験から紐解く技術トレンドのメカニズムと乗りこなし方〜
shimy
9
1.9k
[2024最新版]AWS Control Towerを使ったセキュアなマルチアカウント環境の作り方
hiashisan
0
270
データ分析を支える技術 生成AI再入門
ishikawa_satoru
0
380
目標設定は好きですか? アジャイルとともに目標と向き合い続ける方法 / Do you like target Management?
kakehashi
10
3k
Azure OpenAI Service Dev Day / LLMでできる!使える!生成AIエージェント
masahiro_nishimi
3
750
Git 研修 Basic【MIXI 24新卒技術研修】
mixi_engineers
PRO
0
310
スタートアップにおける組織設計とスクラムの長期戦略 / Scrum Fest Kanazawa 2024
yoshikiiida
13
3.6k
さらに高品質・高速化を目指すAI時代のテスト設計支援と、めざす先 / AI Test Lab vol.1
shift_evolve
0
190
可視化プラットフォームGrafanaの基本と活用方法の全て
hamadakoji
0
230
AWSで”最小権限の原則”を実現するための考え方 /20240722-ssmjp-aws-least-privilege
opelab
10
4.3k
Featured
See All Featured
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
228
16k
Speed Design
sergeychernyshev
9
270
Principles of Awesome APIs and How to Build Them.
keavy
124
16k
Put a Button on it: Removing Barriers to Going Fast.
kastner
58
3.3k
Save Time (by Creating Custom Rails Generators)
garrettdimon
PRO
13
430
The Mythical Team-Month
searls
217
43k
Build The Right Thing And Hit Your Dates
maggiecrowley
28
2.2k
A Tale of Four Properties
chriscoyier
155
22k
Gamification - CAS2011
davidbonilla
78
4.9k
[RailsConf 2023 Opening Keynote] The Magic of Rails
eileencodes
17
8.7k
CSS Pre-Processors: Stylus, Less & Sass
bermonpainter
353
29k
Docker and Python
trallard
37
2.9k
Transcript
Qeb Pqxqb lc Bkzovmqflk Rfc Qryrc md Clapwnrgml Sgd Rszsd
ne Dmbqxoshnm The State of Encryption Uif Tubuf pg Fodszqujpo Vjg Uvcvg qh Gpetarvkqp Wkh Vwdwh ri Hqfubswlrq ! Cristiano Betta | @cbetta
Qeb Pqxqb lc Bkzovmqflk Rfc Qryrc md Clapwnrgml Sgd Rszsd
ne Dmbqxoshnm The State of Encryption Uif Tubuf pg Fodszqujpo Vjg Uvcvg qh Gpetarvkqp Wkh Vwdwh ri Hqfubswlrq
1987
None
The living Daylights "
The living Daylights "
None
None
The Real Spies #
None
None
None
None
Hide
Hide%
Microdot
None
1mm 1mm 1mm
MA-4450 '
MA-4450 '
Rotation Sheets (
Jackpot )))
Cristiano Betta @cbetta
♥ security + virgilsecurity.com + betta.io
, security expert + virgilsecurity.com + betta.io
Encryption 101 %
Entropy -
None
11111111111111111111 11111111111111111111 11111111111111111111 11111111111111111111 11111111111111111111 H = 0
11111111111111111111 11111111111111111111 11111111110000000000 00000000000000000000 00000000000000000000 H = 1
RAR(50x1+50x0) H ~= 5
TrueCrypt(RAR) H ~= 7.8
RC4 .
! ! /1 /1
1984 .
Certified Security 0
Diffie- Hellman 1
Color Exchange 2
A B
A B Common Common
A B Common Common Secret Secret
A B Public Mix Public Mix
Public Mix A B Public Mix
Public Mix A B Public Mix
Public Mix A B Public Mix Secret Secret
A B Common Secret Common Secret
1-way functions 3
X*Y = 143 X > 1 Y > 1 3
3 X*Y = 143 X = 11 Y = 13
X*Y = 10,967,535,067 X = 104723 Y = 104729
Public Key Encryption 1
Asymmetric Encryption 1
! / / Pub1 Priv1 ! / / Pub2 Priv2
1 2
! ! 4 1 2
! ! 4+/pub2 1 2
! ! 4 1 2 /
! ! 4 1 2 /
! ! 4+/priv2 1 2 /
! ! 1 2 4
Signatures 5
! ! 4+/priv1 1 2
! ! 1 2 4 0
! ! 1 2 4 0
! ! 4+/pub1 1 2 0
! ! 1 2 ◦
Public Key Encryption 1
PGP SSH SSL TLS BitCoin …. 1
/ Pub1? / Pub2?
Digital Certificates International 0
Verisign
Certificate Authorities 0
0 0 / Pub1? / Pub2? 0 Root
LetsEncrypt 7
letsencrypt.org
Crypto Wars 8
Ammunition
Netscape 9
2000 MTOPS !
None
None
2017 :
Crypto Wars Round 2 ;
Snowden Manning Assange <
“…the N.S.A. has been deliberately weakening the international encryption standards
adopted by developers. One goal … was to ‘influence policies, standards and specifications for commercial public key technologies’…” 76 - New York Times, 6 Sept 2013
Increased Law Enforcement =
http://www.dailymail.co.uk/wires/reuters/article-4350416/UK-minister-says- encryption-messaging-services-unacceptable.html
Chat Apps :
https://www.eff.org/node/82654
Virgil Security
Create private key & public Virgil Card
Push Virgil Card to server
Publish card to Virgil
Encrypt data
Decrypt data
Demo %
Virgil Security >
demo-ip-messaging.virgilsecurity.com
virgilsecurity.com %
Encryption 201 ?
2047 ?
Total Security @
Total Privacy %
Human Error A
Slingshot Security B
Quantum Entanglement -
Large Integer Factorization! ÷
Post-QC Encryption 7
Quantum Key Exchange -
Quantum Key Exchange -
2047 ?
2117 ?
Thank you! @cbetta betta.io Cristiano Betta @virgilsecurity virgilsecurity.com Virgil Security