Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
The State of Encryption
Search
Cristiano Betta
June 08, 2017
Technology
0
340
The State of Encryption
My talk from DevTalks Bucharest 2017
Cristiano Betta
June 08, 2017
Tweet
Share
More Decks by Cristiano Betta
See All by Cristiano Betta
Docs as Engineering - DevRelCon London 2019
cbetta
0
130
DevRelCon London 2019 - Developer Experience Workshop
cbetta
0
130
DevRelCon London 2019 - Developer Experience Workshop
cbetta
0
270
The 7 Deadly Sins of Developer Experience (DevRelCon Tokyo)
cbetta
0
4k
Developer Experience Workshop
cbetta
1
560
The 7 Deadly Sins of Developer Onboarding
cbetta
0
180
A brick by brick guide to developer experience
cbetta
2
620
Hackathons Workshop
cbetta
0
270
This strange planet earth
cbetta
0
340
Other Decks in Technology
See All in Technology
データマネジメントのトレードオフに立ち向かう
ikkimiyazaki
6
1.2k
PHPカンファレンス名古屋-テックリードの経験から学んだ設計の教訓
hayatokudou
2
540
急成長する企業で作った、エンジニアが輝ける制度/ 20250227 Rinto Ikenoue
shift_evolve
0
100
Active Directory攻防
cryptopeg
PRO
8
5.3k
日経のデータベース事業とElasticsearch
hinatades
PRO
0
210
Windows の新しい管理者保護モード
murachiakira
0
200
Iceberg Meetup Japan #1 : Iceberg and Databricks
databricksjapan
0
320
あなたが人生で成功するための5つの普遍的法則 #jawsug #jawsdays2025 / 20250301 HEROZ
yoshidashingo
2
240
RemoveだらけのPHPUnit 12に備えよう
cocoeyes02
0
240
AWS Well-Architected Frameworkで学ぶAmazon ECSのセキュリティ対策
umekou
2
130
設計を積み重ねてシステムを刷新する
sansantech
PRO
0
160
【5分でわかる】セーフィー エンジニア向け会社紹介
safie_recruit
0
18k
Featured
See All Featured
Fontdeck: Realign not Redesign
paulrobertlloyd
83
5.4k
Code Review Best Practice
trishagee
67
18k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
49
2.3k
Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End
smashingmag
251
21k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
40
2k
Measuring & Analyzing Core Web Vitals
bluesmoon
6
250
It's Worth the Effort
3n
184
28k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
45
9.4k
Fantastic passwords and where to find them - at NoRuKo
philnash
51
3k
Building a Scalable Design System with Sketch
lauravandoore
461
33k
VelocityConf: Rendering Performance Case Studies
addyosmani
328
24k
Fireside Chat
paigeccino
34
3.2k
Transcript
Qeb Pqxqb lc Bkzovmqflk Rfc Qryrc md Clapwnrgml Sgd Rszsd
ne Dmbqxoshnm The State of Encryption Uif Tubuf pg Fodszqujpo Vjg Uvcvg qh Gpetarvkqp Wkh Vwdwh ri Hqfubswlrq ! Cristiano Betta | @cbetta
Qeb Pqxqb lc Bkzovmqflk Rfc Qryrc md Clapwnrgml Sgd Rszsd
ne Dmbqxoshnm The State of Encryption Uif Tubuf pg Fodszqujpo Vjg Uvcvg qh Gpetarvkqp Wkh Vwdwh ri Hqfubswlrq
1987
None
The living Daylights "
The living Daylights "
None
None
The Real Spies #
None
None
None
None
Hide
Hide%
Microdot
None
1mm 1mm 1mm
MA-4450 '
MA-4450 '
Rotation Sheets (
Jackpot )))
Cristiano Betta @cbetta
♥ security + virgilsecurity.com + betta.io
, security expert + virgilsecurity.com + betta.io
Encryption 101 %
Entropy -
None
11111111111111111111 11111111111111111111 11111111111111111111 11111111111111111111 11111111111111111111 H = 0
11111111111111111111 11111111111111111111 11111111110000000000 00000000000000000000 00000000000000000000 H = 1
RAR(50x1+50x0) H ~= 5
TrueCrypt(RAR) H ~= 7.8
RC4 .
! ! /1 /1
1984 .
Certified Security 0
Diffie- Hellman 1
Color Exchange 2
A B
A B Common Common
A B Common Common Secret Secret
A B Public Mix Public Mix
Public Mix A B Public Mix
Public Mix A B Public Mix
Public Mix A B Public Mix Secret Secret
A B Common Secret Common Secret
1-way functions 3
X*Y = 143 X > 1 Y > 1 3
3 X*Y = 143 X = 11 Y = 13
X*Y = 10,967,535,067 X = 104723 Y = 104729
Public Key Encryption 1
Asymmetric Encryption 1
! / / Pub1 Priv1 ! / / Pub2 Priv2
1 2
! ! 4 1 2
! ! 4+/pub2 1 2
! ! 4 1 2 /
! ! 4 1 2 /
! ! 4+/priv2 1 2 /
! ! 1 2 4
Signatures 5
! ! 4+/priv1 1 2
! ! 1 2 4 0
! ! 1 2 4 0
! ! 4+/pub1 1 2 0
! ! 1 2 ◦
Public Key Encryption 1
PGP SSH SSL TLS BitCoin …. 1
/ Pub1? / Pub2?
Digital Certificates International 0
Verisign
Certificate Authorities 0
0 0 / Pub1? / Pub2? 0 Root
LetsEncrypt 7
letsencrypt.org
Crypto Wars 8
Ammunition
Netscape 9
2000 MTOPS !
None
None
2017 :
Crypto Wars Round 2 ;
Snowden Manning Assange <
“…the N.S.A. has been deliberately weakening the international encryption standards
adopted by developers. One goal … was to ‘influence policies, standards and specifications for commercial public key technologies’…” 76 - New York Times, 6 Sept 2013
Increased Law Enforcement =
http://www.dailymail.co.uk/wires/reuters/article-4350416/UK-minister-says- encryption-messaging-services-unacceptable.html
Chat Apps :
https://www.eff.org/node/82654
Virgil Security
Create private key & public Virgil Card
Push Virgil Card to server
Publish card to Virgil
Encrypt data
Decrypt data
Demo %
Virgil Security >
demo-ip-messaging.virgilsecurity.com
virgilsecurity.com %
Encryption 201 ?
2047 ?
Total Security @
Total Privacy %
Human Error A
Slingshot Security B
Quantum Entanglement -
Large Integer Factorization! ÷
Post-QC Encryption 7
Quantum Key Exchange -
Quantum Key Exchange -
2047 ?
2117 ?
Thank you! @cbetta betta.io Cristiano Betta @virgilsecurity virgilsecurity.com Virgil Security