Open mozfest-bot opened 7 years ago
bunnybooboo
commented
7 years ago This is a highly technical talk @franziskuskiefer - which absolutely welcome into our space. However, as Mozfest is not the standard conference, I wonder how your session might be shaped into one that's highly participatory?
franziskuskiefer
commented
7 years ago It's pretty technical indeed. My rough idea would be to give a short introduction for a couple things (for example e2e encryption and PKI) to people popping in and then trying to get a discussion going from there. With technical people we could then go into details of certain primitives and algorithms. With less technical people I'd try to explain some of the concepts in less technical terms (for example like this DH KEX explanation). Participation can start at a rather high level (e.g. how do you communicate with your friends/spouse/bank over the internet) and take people down the layers to the cryptographic mechanisms that make all this possible.
bunnybooboo
commented
7 years ago CONGRATULATIONS! @franziskuskiefer your session has made it to our final Privacy and Security schedule.
Please look out for further communications from our team in coming days.
bunnybooboo
commented
7 years ago cc/ @arroway status on combining these sessions? We have enough room to have them run on their own?
bunnybooboo
commented
7 years ago Confirming that contact information is in hand for both you @franziskuskiefer and Mark Goodwin. We're locking in ticketing this week. Looking forward to meeting you both.
bunnybooboo
commented
7 years ago Materials request confirmed. If this session was a roast dinner, I'd be sitting guests at the table in preparation!
[ UUID ] b8f40283-22e1-41a7-aad2-4c100f7b4792
[ Session Name ] Crypto Office Hour [ Primary Space ] Privacy and Security
[ Submitter's Name ] Franziskus Kiefer [ Submitter's Affiliated Organisation ] Mozilla [ Submitter's Github ] @franziskuskiefer
[ Additional facilitators ] Mark Goodwin
What will happen in your session?
In the Crypto Office Hour we want to talk about all the crypto things underlying security mechanisms on the web. This includes, but is not limited to, the following.
What is Transport Layer Security (TLS) Recent improvements in TLS and why it's necessary for a healthy internet while at the same time not sufficient TLS 1.3 is awesome because it's avoiding many old mistakes/doesn't allow some of the old interception mechanisms. Limitations of TLS and attacks The role of end-to-end-encryption on the internet Problems of end-to-end-encryption as seen in messaging apps such as WhatsApp. How does the Web PKI work Why is the Web PKI a mess? What's the plan for fixing the Web PKI? New developments in crypto Challenges and solutions to secure crypto code.
What is the goal or outcome of your session?
The goal is to increase the participants understanding of the mechanisms underlying most security and privacy mechanisms on the web.
If your session requires additional materials or electronic equipment, please outline your needs.
Some paper and pens are probably sufficient.
Time needed
90 mins