Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Digital Security for Everyone

97e3552e2e2b4704ec272f7aff16634e?s=47 redshiftzero
November 11, 2015

Digital Security for Everyone

introductory digital security talk for broad audience

97e3552e2e2b4704ec272f7aff16634e?s=128

redshiftzero

November 11, 2015
Tweet

Transcript

  1. Digital Security for Everyone Jennifer Helsby @redshiftzero Chicago Hack Night

    November 10, 2015 @CryptopartyChi
  2. But I have nothing to hide.

  3. But I have nothing to hide. Yes, you do.

  4. But I have nothing to hide. Yes, you do. Your

    medical information, your financial information, your political beliefs, your sexual identity, nudity, …
  5. None
  6. None
  7. None
  8. None
  9. People have been defending their own privacy for centuries with

    whispers, darkness, envelopes, closed doors, secret handshakes, and couriers. - Eric Hughes
  10. There is nothing illegal or subversive about using a tool

    to protect your privacy online.
  11. What is Cryptoparty? • A grassroots international movement to provide

    spaces for people of all types to get training in digital security • Non-commercial and free • Significant interest among activism, law, journalism, LGBT communities
  12. None
  13. Threat Modeling • What information am I trying to protect?

    • Who am I trying to protect it from (my adversary)? • What is my adversary able and willing to do to find out? • What happens if I fail?
  14. • Goal is NOT: Perfect security • Goal is: Make

    surveillance significantly more difficult and costly • Win: Exert slightly more effort than your adversary is willing to commit
  15. HTTP

  16. https://www.eff.org/https-everywhere HTTPS

  17. End-to-End (e2e) Encryption • Off-the-Record (OTR) messaging: IM encryption •

    Clients: Pidgin/Adium • PGP “Pretty Good Privacy”: Email encryption • Clients: Enigmail, Mailvelope
  18. Signal Private Messenger • End-to-end encrypted calls and messages •

    Encrypted content, not metadata • Support on Android and Apple IOS • Free and open- source
  19. Anonymity • Anonymity means you can’t tell who did what

    • Tor anonymizes your identity from the destination website, your ISP, employer, government, etc. • Browse the web anonymously with the Tor Browser Bundle https://www.torproject.org
  20. None
  21. Entry node or “guard” relay Middle relay Exit node Encrypted

    Unencrypted
  22. protect your privacy help teach support these tools and the

    orgs that make them HTTPS Everywhere Signal Tor
  23. protect your privacy help teach support these tools and the

    orgs that make them
  24. Thanks! Next Cryptoparty: 2pm Saturday December 5th, 2015 at South

    Side Hackerspace HTTPS Everywhere Signal Tor