Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Remember the rubber hose

Remember the rubber hose

A talk in distributed ledgers, privacy and an often disregarded threat mode.

Ricardo J. Méndez

July 20, 2018

More Decks by Ricardo J. Méndez

Other Decks in Technology


  1. July 20, 2018 / [email protected] @ArgesRic
 https://mastodon.social/@ricardojmendez/ Remember the rubber

    hose Ricardo J. Méndez
  2. @argesric @samsungnext About me Technical Director for Europe at Samsung

    NEXT in Berlin. We partner with innovators and invest in forward-looking deep-tech companies. This talk, however, is about privacy. Feel free to grab me later if you want to talk more.
  3. Speaking of which…

  4. @argesric @samsungnext Kudos to the organizers. We need more conferences

    taking people’s desire for privacy into account.
  5. Let’s talk about privacy

  6. @argesric @samsungnext Have you asked people about decentralization?

  7. @argesric @samsungnext Most have no idea.

  8. @argesric @samsungnext People do know a few things, though The

    "crypto"comes from all the data out there being encrypted... Blockchains are private because they are decentralized... And this makes them anonymous and untraceable.
  9. @argesric @samsungnext This is partly our fault.

  10. @argesric @samsungnext There’s a lot of new concepts for people.

  11. @argesric @samsungnext Privacy “as a way to prevent signalling concerns

    from encompassing all of our activity.” Vitalik Buterin, reddit thread
  12. @argesric @samsungnext Everything we do in public generates signals.

  13. @argesric @samsungnext First world problem?

  14. @argesric @samsungnext “We are putting X on the blockchain”

  15. @argesric @samsungnext Effectively, logging.

  16. Let’s talk about keys

  17. @argesric @samsungnext Raise your hand… Who believes in being in

    control of their private keys? Who expects public key cryptography will keep our data safe at least until quantum computers? Who has ever had a gun to their heads?
  18. @argesric @samsungnext Yeah. That signaling.

  19. @argesric @samsungnext “We are making the world a better place”

  20. @argesric @samsungnext What’s the worst thing that can happen?

  21. @argesric @samsungnext Censorship resistance? Pseudonymity?

  22. @argesric @samsungnext Those who can benefit the most are vulnerable.

  23. None
  24. Rubber hose cryptanalysis

  25. @argesric @samsungnext Easy, cheap, and effective.

  26. None
  27. None
  28. @argesric @samsungnext We need to make it easier for people

    to be private.
  29. @argesric @samsungnext Yes, we are better off. But we have

    it pretty good already.
  30. @argesric @samsungnext Hey, I’ll take it.

  31. How can we help?

  32. @argesric @samsungnext Yes, users can change your defaults.

  33. @argesric @samsungnext If your defaults aren’t private, they will stay

    non-private. Source
  34. @argesric @samsungnext Can we help with the metadata?

  35. @argesric @samsungnext Plausible deniability?

  36. @argesric @samsungnext But mostly, speak plainly. Help them build a

    mental model.
  37. Because we’re really close

  38. None
  39. @argesric @samsungnext We’re in the cusp of something here.

  40. @argesric @samsungnext … and then 95% of them won’t change

    the defaults.
  41. None
  42. None
  43. @argesric @samsungnext Thank you. Contact: [email protected]