My talk from DevTalks Bucharest 2017
Qeb Pqxqb lc BkzovmqflkRfc Qryrc md ClapwnrgmlSgd Rszsd ne DmbqxoshnmThe State of EncryptionUif Tubuf pg FodszqujpoVjg Uvcvg qh GpetarvkqpWkh Vwdwh ri Hqfubswlrq!Cristiano Betta | @cbetta
View Slide
Qeb Pqxqb lc BkzovmqflkRfc Qryrc md ClapwnrgmlSgd Rszsd ne DmbqxoshnmThe State of EncryptionUif Tubuf pg FodszqujpoVjg Uvcvg qh GpetarvkqpWkh Vwdwh ri Hqfubswlrq
1987
The livingDaylights"
The RealSpies#
Hide
Hide%
Microdot
1mm1mm1mm
MA-4450'
RotationSheets(
Jackpot)))
Cristiano Betta@cbetta
♥ security+ virgilsecurity.com+ betta.io
, security expert+ virgilsecurity.com+ betta.io
Encryption101%
Entropy-
1111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111H = 0
1111111111111111111111111111111111111111111111111100000000000000000000000000000000000000000000000000H = 1
RAR(50x1+50x0)H ~= 5
TrueCrypt(RAR)H ~= 7.8
RC4.
! !/1/1
1984.
CertifiedSecurity0
Diffie-Hellman1
ColorExchange2
A B
A BCommon Common
A BCommon CommonSecret Secret
A BPublic Mix Public Mix
Public MixA BPublic Mix
Public MixA BPublic MixSecret Secret
A BCommon Secret Common Secret
1-wayfunctions3
X*Y = 143X > 1Y > 13
3 X*Y = 143X = 11Y = 13
X*Y = 10,967,535,067X = 104723Y = 104729
Public KeyEncryption1
AsymmetricEncryption1
!//Pub1Priv1!//Pub2Priv21 2
! !41 2
! !4+/pub21 2
! !41 2/
! !4+/priv21 2/
! !1 24
Signatures5
! !4+/priv11 2
! !1 240
! !4+/pub11 20
! !1 2○
PGPSSHSSLTLSBitCoin….1
/Pub1?/Pub2?
DigitalCertificatesInternational0
Verisign
CertificateAuthorities0
00/Pub1?/Pub2?0Root
LetsEncrypt7
letsencrypt.org
CryptoWars8
Ammunition
Netscape9
2000 MTOPS!
2017:
Crypto WarsRound 2;
SnowdenManningAssange<
“…the N.S.A. has been deliberatelyweakening the internationalencryption standards adopted bydevelopers. One goal … was to‘influence policies, standards andspecifications for commercialpublic key technologies’…”76- New York Times, 6 Sept 2013
Increased LawEnforcement=
http://www.dailymail.co.uk/wires/reuters/article-4350416/UK-minister-says-encryption-messaging-services-unacceptable.html
Chat Apps:
https://www.eff.org/node/82654
VirgilSecurity
Create private key& public Virgil Card
Push Virgil Card to server
Publish card to Virgil
Encrypt data
Decrypt data
Demo%
VirgilSecurity>
demo-ip-messaging.virgilsecurity.com
virgilsecurity.com%
Encryption201?
2047?
TotalSecurity@
TotalPrivacy%
HumanErrorA
SlingshotSecurityB
QuantumEntanglement-
Large IntegerFactorization!÷
Post-QCEncryption7
QuantumKeyExchange-
2117?
Thank you!@cbetta betta.ioCristiano Betta@virgilsecurity virgilsecurity.comVirgil Security