Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Digital Security & Privacy. What is anonymity a...

Digital Security & Privacy. What is anonymity and why does it matter?

Arturo Filastò

October 15, 2019
Tweet

More Decks by Arturo Filastò

Other Decks in Technology

Transcript

  1. Digital Security & Privacy What is anonymity and why does

    it matter? Arturo Filastò - WFP@Rome, 15th October 2019
  2. Who am I? • 10+ years working in security, privacy

    & software development • Involved since early 2000s in the Italian hacker scene • Volunteering with the Tor Project since 2010 • One the creators of the GlobaLeaks whistleblowing platform in 2011 • Founded the Hermes Center for Digital Human Rights in 2012 and served as vice-president • Created OONI, the Open Observatory of Network Interference in 2012 and still working on this
  3. Digital security 101 • It’s a process • One size

    doesn’t fit all • There will always be some tradeoffs
  4. Threat Model • What do you have to keep private

    (Assets)? • Who has interest in compromising you and what can they do (Adversary Capabilities)? • What happens if you are compromised (Impact)?
  5. Alice Bob Eve Let’s meet in Piazza del Popolo at

    11:00! Encryption is about protecting the content of the communication
  6. Alice Bob Eve Let’s meet in Piazza del Popolo at

    11:00! love, Alice Authentication is about understanding who is who
  7. • Data in motion is a means of communicating with

    other people or network devices • Data at rest is a means of communicating with yourself over time
  8. Evaluating tools • Is it open source or is it

    proprietary? • Does it have a threat model? • What is the business model of the company which owns the service? • What are the terms of service?
  9. Tor is private by design! • Public design document and

    specifications • Open Source free software • The network is run by volunteers • Attacks have been published and fixed • You don’t have to trust us!
  10. Onion Services • It’s like Tor, but for services •

    Self authenticated • End-to-end encrypted
  11. What next? Try out these apps! https://torproject.org Learn more! https://securityinabox.org

    https://ssd.eff.org Contact me arturo@filasto.net @hellais