Upgrade to Pro — share decks privately, control downloads, hide ads and more …

The State of Encryption

Cristiano Betta
June 08, 2017
Technology
0
180

The State of Encryption

My talk from DevTalks Bucharest 2017

Cristiano Betta

June 08, 2017
Tweet

More Decks by Cristiano Betta

See All by Cristiano Betta
Docs as Engineering - DevRelCon London 2019
cbetta
0
110
DevRelCon London 2019 - Developer Experience Workshop
cbetta
0
77
DevRelCon London 2019 - Developer Experience Workshop
cbetta
0
94
The 7 Deadly Sins of Developer Experience (DevRelCon Tokyo)
cbetta
0
3.3k
Developer Experience Workshop
cbetta
1
380
The 7 Deadly Sins of Developer Onboarding
cbetta
0
160
A brick by brick guide to developer experience
cbetta
2
460
Hackathons Workshop
cbetta
0
140
This strange planet earth
cbetta
0
180

Other Decks in Technology

See All in Technology
Raspberry Pi Camera 3 介紹
piepie_tw
PRO
0
160
SPA・SSGでSSRのようなOGP対応!
simo123
2
160
03_ユーザビリティテスト
kouzoukaikaku
0
620
開発者と協働できるメトリクスダッシュボードを作ろう!/SRE Lounge 2023
lmi
3
520
Google Cloud Workflows: API automation, patterns and best practices
glaforge
0
100
MoT/コネヒト/Kanmu が語るプロダクト開発xデータ分析 - 分析から機械学習システムの開発まで一人で複数ロールを担う大変さ
masatakashiwagi
3
770
re:Inventの完全招待制イベント Building a Roadmap to SaaSについて / Building a Roadmap to SaaS an invitation only event at reinvent
yayoi_dd
0
150
「一通りできるようになった」その先の話
hitomi___kt
0
140
230125 古いタブレットの活用 かーでぃさん
comucal
PRO
0
16k
Deep Neural Networkの共同学習
hf149
0
330
OpenShiftのリリースノートを整理してみた
loftkun
2
440
イ良い日ンマを作る(USBストレージ容量偽装の手法) / USB Storage Capacity Faking Techniques
shutingrz
0
540

Featured

See All Featured
The Power of CSS Pseudo Elements
geoffreycrofte
52
4.3k
5 minutes of I Can Smell Your CMS
philhawksworth
198
18k
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
109
16k
StorybookのUI Testing Handbookを読んだ
zakiyama
8
3.2k
Navigating Team Friction
lara
177
12k
Agile that works and the tools we love
rasmusluckow
320
20k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
15
1.2k
Building Flexible Design Systems
yeseniaperezcruz
314
35k
Teambox: Starting and Learning
jrom
124
7.9k
Rails Girls Zürich Keynote
gr2m
87
12k
It's Worth the Effort
3n
177
26k
Code Review Best Practice
trishagee
50
11k

Transcript

  1. Qeb Pqxqb lc Bkzovmqflk Rfc Qryrc md Clapwnrgml Sgd Rszsd

    ne Dmbqxoshnm The State of Encryption Uif Tubuf pg Fodszqujpo Vjg Uvcvg qh Gpetarvkqp Wkh Vwdwh ri Hqfubswlrq ! Cristiano Betta | @cbetta

  2. Qeb Pqxqb lc Bkzovmqflk Rfc Qryrc md Clapwnrgml Sgd Rszsd

    ne Dmbqxoshnm The State of Encryption Uif Tubuf pg Fodszqujpo Vjg Uvcvg qh Gpetarvkqp Wkh Vwdwh ri Hqfubswlrq

  3. 1987

  4. None

  5. The living Daylights "

  6. The living Daylights "

  7. None
  8. None

  9. The Real Spies #

  10. None
  11. None
  12. None
  13. None

  14.  Hide

  15.  Hide%

  16. Microdot 

  17. None

  18. 1mm 1mm 1mm

  19. MA-4450 '

  20. MA-4450 '

  21. Rotation Sheets (

  22. Jackpot )))

  23. Cristiano 
 Betta @cbetta

  24. ♥ security + virgilsecurity.com + betta.io

  25. , security expert + virgilsecurity.com + betta.io

  26. Encryption 101 %

  27. Entropy -

  28. None

  29. 11111111111111111111 11111111111111111111 11111111111111111111 11111111111111111111 11111111111111111111 H = 0

  30. 11111111111111111111 11111111111111111111 11111111110000000000 00000000000000000000 00000000000000000000 H = 1

  31. RAR(50x1+50x0) H ~= 5

  32. TrueCrypt(RAR) H ~= 7.8

  33. RC4 .

  34. ! ! /1 /1

  35. 1984 .

  36. Certified Security 0

  37. Diffie- Hellman 1

  38. Color Exchange 2

  39. A B

  40. A B Common Common

  41. A B Common Common Secret Secret

  42. A B Public Mix Public Mix

  43. Public Mix A B Public Mix

  44. Public Mix A B Public Mix

  45. Public Mix A B Public Mix Secret Secret

  46. A B Common Secret Common Secret

  47. 1-way functions 3

  48. X*Y = 143 X > 1 Y > 1 3

  49. 3 X*Y = 143 X = 11 Y = 13

  50. X*Y = 10,967,535,067 X = 104723 Y = 104729

  51. Public Key Encryption 1

  52. Asymmetric Encryption 1

  53. ! / / Pub1 Priv1 ! / / Pub2 Priv2

    1 2

  54. ! ! 4 1 2

  55. ! ! 4+/pub2 1 2

  56. ! ! 4 1 2 /

  57. ! ! 4 1 2 /

  58. ! ! 4+/priv2 1 2 /

  59. ! ! 1 2 4

  60. Signatures 5

  61. ! ! 4+/priv1 1 2

  62. ! ! 1 2 4 0

  63. ! ! 1 2 4 0

  64. ! ! 4+/pub1 1 2 0

  65. ! ! 1 2 ◦

  66. Public Key Encryption 1

  67. PGP SSH SSL TLS BitCoin …. 1

  68. / Pub1? / Pub2?

  69. Digital Certificates International 0

  70. Verisign

  71. Certificate Authorities 0

  72. 0 0 / Pub1? / Pub2? 0 Root

  73. LetsEncrypt 7

  74. letsencrypt.org

  75. Crypto Wars 8

  76. Ammunition

  77. Netscape 9

  78. 2000 MTOPS !

  79. None
  80. None

  81. 2017 :

  82. Crypto Wars Round 2 ;

  83. Snowden Manning Assange <

  84. “…the N.S.A. has been deliberately weakening the international encryption standards

    adopted by developers. One goal … was to ‘influence policies, standards and specifications for commercial public key technologies’…” 76 - New York Times, 6 Sept 2013

  85. Increased Law Enforcement =

  86. http://www.dailymail.co.uk/wires/reuters/article-4350416/UK-minister-says- encryption-messaging-services-unacceptable.html

  87. Chat Apps :

  88. https://www.eff.org/node/82654

  89. Virgil Security

  90. Create private key & public Virgil Card

  91. Push Virgil Card to server

  92. Publish card to Virgil

  93. Encrypt data

  94. Decrypt data

  95. Demo %

  96. Virgil Security >

  97. demo-ip-messaging.virgilsecurity.com

  98. virgilsecurity.com %

  99. Encryption 201 ?

  100. 2047 ?

  101. Total Security @

  102. Total Privacy %

  103. Human Error A

  104. Slingshot Security B

  105. Quantum Entanglement -

  106. Large Integer Factorization! ÷

  107. Post-QC Encryption 7

  108. Quantum Key Exchange -

  109. Quantum Key Exchange -

  110. 2047 ?

  111. 2117 ?

  112. Thank you! @cbetta betta.io Cristiano Betta @virgilsecurity virgilsecurity.com Virgil Security