libreoffice lockdown encryption improvements to document
play

LIBREOFFICE LOCKDOWN & ENCRYPTION Improvements to document - PowerPoint PPT Presentation

Jul 25, 2023 •345 likes •502 views

LIBREOFFICE LOCKDOWN & ENCRYPTION Improvements to document security & permissions Thorsten Behrens, CIB software GmbH FOSDEM 2020, Brussels, February 3, 2020 1 Yours Truly Thorsten Behrens thb@libreoffice.org Since 2015 with

  1. LIBREOFFICE LOCKDOWN & ENCRYPTION Improvements to document security & permissions Thorsten Behrens, CIB software GmbH FOSDEM 2020, Brussels, February 3, 2020 1

  2. Yours Truly Thorsten Behrens – thb@libreoffice.org ● Since 2015 with CIB & built the LibreOffice team there ● One of those LibreOffice forkers/founders, also on The Document Foundation board ● Working with this code since about 2001 (OpenOffice, then LibreOffice) ● Hacker, computer scientist, FLOSS & Open Standards lover 2

  3. CREDITS Vasily Melenchuk Serge Krot Samuel Mehrbrodt 3

  4. ANOTHER „ENTERPRISE“ FEATURE WE MISSED 1. FOR DESKTOP USERS 2. PERMIT ENTERPRISES TO CENTRALLY CONTROL WHAT USERS CAN DO 3. WITH THEIR COMPUTERS & THEIR DOCUMENTS 4

  5. ARCHITECTURE FOR MS RIGHTS MANAGEMENT (RMS) Client or user certificate Code signature UNO API LibreOffice Extension / RMS API RMS Client 2.1 RMS Server Wrapper LibreOffice Offjce user 5

  6. SEQUENCE DIAGRAM FOR A RMS DECRYPTION LibreOffice RMS Client RMS agent GnuPG process GnuPG process Server RMS code Extension gpg gpg Authenticate against client, Ensure integrity of client-side request session key (OS and RMS client application) Request session key Session key with permission meta data Decrypt document Active Directory 6

  7. Wrapper Extension LibreOffice 7

  8. ARCHITECTURE FOR GNUPG (SUGGESTION) User private key Code signature UNO API LibreOffice Extension GnuPG plus WKS / permitted keychain LibreOffice Offjce user 8

  9. IMPLEMENTATION 9

  10. CORE API CHANGE FOR THIS FEATURE interface XPackageEncryption: css::uno::Xinterface { boolean readEncryptionInfo( [in] sequence < css::beans::NamedValue > rOleStreams); boolean generateEncryptionKey( [in] string rPassword); boolean decrypt( [in] css::io::XInputStream rxInputStream, [out] css::io::XOutputStream rxOutputStream); sequence<css::beans::NamedValue> createEncryptionData( [in] string rPassword); boolean setupEncryption( [in] sequence<css::beans::NamedValue> rMediaEncData); sequence<css::beans::NamedValue> encrypt( [in] css::io::XInputStream rxInputStream); boolean checkDataIntegrity(); }; 10

  11. SOME SCREENSHOTS 11

  12. SOME SCREENSHOTS 12

  13. Any questions? :) 16

  14. THANK YOU! 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

GPG4LIBRE: OPENPGP SIGNING &amp; ENCRYPTION IN LIBREOFFICE LIBREOFFICE CONFERENCE ROME OCTOBER

GPG4LIBRE: OPENPGP SIGNING &amp; ENCRYPTION IN LIBREOFFICE LIBREOFFICE CONFERENCE ROME OCTOBER

GPG4LIBRE: OPENPGP SIGNING &amp; ENCRYPTION IN LIBREOFFICE LIBREOFFICE CONFERENCE ROME OCTOBER 12TH, 2017 Thorsten.Behrens@cib.de GPG4LIBRE - MOTIVATION we dont do enough crypto yet! put encryption and signing at users finger tips

188 views • 17 slides
Improvements to PDF Collabora support in Collabora Offjce Online OPENSUSE-LIBREOFFICE

Improvements to PDF Collabora support in Collabora Offjce Online OPENSUSE-LIBREOFFICE

Improvements to PDF Collabora support in Collabora Offjce Online OPENSUSE-LIBREOFFICE CONF20 By Toma Vajngerl htups://tomazvajngerl.blogspot.com/ Required Magic advanced technology Co PDF support is gettjng very important as it is a

164 views • 14 slides
E education system in lockdown time Theme: Life In Lockdown What if we are in a lockdown

E education system in lockdown time Theme: Life In Lockdown What if we are in a lockdown

E education system in lockdown time Theme: Life In Lockdown What if we are in a lockdown situation for more than a year? Date and Place: 17 may 2020 pune,maharashtra Team: SCHOOL FROM HOME (SFH) the way forward Name : Mayank Thakre Name :

367 views • 15 slides
Promoting LibreOffice in YOUR language Charles-H. Schulz 04.09.2014 1 LibreOffice Bern 2014

Promoting LibreOffice in YOUR language Charles-H. Schulz 04.09.2014 1 LibreOffice Bern 2014

Promoting LibreOffice in YOUR language Charles-H. Schulz 04.09.2014 1 LibreOffice Bern 2014 Conference Presentation Summary Introduction Your context finding the right approach A few potentially useful activities Nurturing your local

358 views • 8 slides
BookingMate App Theme: Life in Lockdown and Beyond What if were in lockdown/a new normal

BookingMate App Theme: Life in Lockdown and Beyond What if were in lockdown/a new normal

BookingMate App Theme: Life in Lockdown and Beyond What if were in lockdown/a new normal situation for more than a year? Date and Place: May 2020, UK &amp; India Team AppStars Name: Helen MacDonald Name: Faye Daniels Name: Piyali Sen

474 views • 19 slides
LibreOffice - Prsentation - Diaporama Prsentation de LibreOffice vous permet de crer

LibreOffice - Prsentation - Diaporama Prsentation de LibreOffice vous permet de crer

LibreOffice - Prsentation - Diaporama Prsentation de LibreOffice vous permet de crer des diaporamas professionnels comprenant des diagrammes, des dessins, du texte, des objets multimdia et toute une srie d'autres objets. Si vous le

59 views • 3 slides
LibreOffice Development Infrastructure State of The Union LibreOffice Conference, Aarhus 2015

LibreOffice Development Infrastructure State of The Union LibreOffice Conference, Aarhus 2015

LibreOffice Development Infrastructure State of The Union LibreOffice Conference, Aarhus 2015 What's 'development infrastructure' Gerrit, Git, Jenkins, Tinderboxes, Callgrind Perf, UBSAN, Crashtest, Bibisect, Lcov, Cppcheck, ... Machines Park

384 views • 23 slides
LibreOffice configuration management tools, approaches &amp; best practices Thorsten Behrens -

LibreOffice configuration management tools, approaches &amp; best practices Thorsten Behrens -

LibreOffice configuration management tools, approaches &amp; best practices Thorsten Behrens - tbehrens@suse.com LibreOffice Hacker at SUSE What, Why, How Customize LibreOffice repeatably Makes your life easier, happier &amp; more secure

823 views • 18 slides
Project Khidmat Life In Lockdown What if we are in a lockdown situation for more than a year?

Project Khidmat Life In Lockdown What if we are in a lockdown situation for more than a year?

Project Khidmat Life In Lockdown What if we are in a lockdown situation for more than a year? Date and Place: 17 May 2020 / Bengaluru services Team Name : Shaivy Rastogi Name : Siddhartha Sengupta Name : Prabhjeet Kaur Title: UX Designer

446 views • 25 slides
LibreOffice Theme Changer Customize Your LibreOffice Appearance in Easy Way Rania Amina FOSDEM -

LibreOffice Theme Changer Customize Your LibreOffice Appearance in Easy Way Rania Amina FOSDEM -

LibreOffice Theme Changer Customize Your LibreOffice Appearance in Easy Way Rania Amina FOSDEM - Brussels / 1 &amp; 2 February 2020 Hi, Everyone ... This me, Rania Amina A graphic &amp; UI designer, contributor &amp; member at several open

406 views • 22 slides
LibreOffice Asia Conference 2019 Tokyo Expanding LibreOffice Contribution to West Africa Agada

LibreOffice Asia Conference 2019 Tokyo Expanding LibreOffice Contribution to West Africa Agada

LibreOffice Asia Conference 2019 Tokyo Expanding LibreOffice Contribution to West Africa Agada Ihuoma Sophia iCRAFT intern ihuomaagada@gmail.com Date: 25TH May, 2019 Contents About Nigeria Open Source Software in Nigeria

279 views • 12 slides
Safety - Co Recreating Human Trust Life In Lockdown What if we are in a lockdown situation for

Safety - Co Recreating Human Trust Life In Lockdown What if we are in a lockdown situation for

Safety - Co Recreating Human Trust Life In Lockdown What if we are in a lockdown situation for more than a year? 18-May-2020, Bangalore. Stage 1 | Submission Safety Soldiers Govardhan Kunchapu Varun Jaiswal Profile Profile Team Leader

507 views • 18 slides
Relink Reconect . Relax. Reinvent. Theme: Life In Lockdown What if we are in a lockdown situation

Relink Reconect . Relax. Reinvent. Theme: Life In Lockdown What if we are in a lockdown situation

Relink Reconect . Relax. Reinvent. Theme: Life In Lockdown What if we are in a lockdown situation for more than a year? Date and Place: 24th May, 2020 (Mumbai, India) Team: Visonaria Name : Aarushi Mehra Name : Hetavi Shah Designer Designer

229 views • 12 slides
HIPSTER BINGO - OR HOW TO USE DOCKER/KUBERNETES/CRI-O TO DEPLOY LIBREOFFICE ONLINE WITH STYLE

HIPSTER BINGO - OR HOW TO USE DOCKER/KUBERNETES/CRI-O TO DEPLOY LIBREOFFICE ONLINE WITH STYLE

HIPSTER BINGO - OR HOW TO USE DOCKER/KUBERNETES/CRI-O TO DEPLOY LIBREOFFICE ONLINE WITH STYLE CIB SOFTWARE GMBH LIBREOFFICE CONFERENCE ROME OCTOBER 11TH, 2017 I HAVE 30 MINUTES TO SETUP LOOL The problem? &gt; multiple server instances

215 views • 17 slides
Dining Redefined Theme: Life In Lockdown What if we are in a lockdown situation for more than a

Dining Redefined Theme: Life In Lockdown What if we are in a lockdown situation for more than a

Dining Redefined Theme: Life In Lockdown What if we are in a lockdown situation for more than a year? Date and Place: 17th May, Banglore Team Name : Pooja S Name : Sophia Sharma User Experience Designer Profile Senior User Experience Designer

332 views • 15 slides
Ruby Monstas Session 17: Interlude: Encryption Encryption What comes to mind if you think about

Ruby Monstas Session 17: Interlude: Encryption Encryption What comes to mind if you think about

Ruby Monstas Session 17: Interlude: Encryption Encryption What comes to mind if you think about encryption? Encryption Certificates Crypto Currencies Public Key AES Encryption Privacy SSH VPN HTTPS TLS Quantum Digital Signatures

837 views • 46 slides
UNIX System Programming UNIX System Programming 1. What is a Process? 1. What is a Process?

UNIX System Programming UNIX System Programming 1. What is a Process? 1. What is a Process?

UNIX System Programming UNIX System Programming 1. What is a Process? 1. What is a Process? Processes 2. fork() 2. fork() 3. Example: 3. Example: talkto.c talkto.c 4. exec() 4. exec() 5. wait() 5. wait() 6. Process Data 6.

560 views • 12 slides
2019 Electrical Products Group Conference Beth Wozniak CEO May 22, 2019 Forward-Looking

2019 Electrical Products Group Conference Beth Wozniak CEO May 22, 2019 Forward-Looking

2019 Electrical Products Group Conference Beth Wozniak CEO May 22, 2019 Forward-Looking Statement and Key Definitions C AUTION C ONCERNING F ORWARD -L OOKING S TATEMENTS This presentation contains statements that we believe to be

611 views • 20 slides
Quarterly D&amp;O Claims Trends: Q2 2015 Sponsored by 1 Todays Moderator Jim Blinn EVP

Quarterly D&amp;O Claims Trends: Q2 2015 Sponsored by 1 Todays Moderator Jim Blinn EVP

Quarterly D&amp;O Claims Trends: Q2 2015 Sponsored by 1 Todays Moderator Jim Blinn EVP &amp; Global Product Manager, Information &amp; Analytics division Advisen Ltd. 2 This webinar is sponsored by the Executive Risk Network Sign up now

463 views • 30 slides
GIM Strategy #2: Speed product delivery Extend your reach in the global marketplace Howard

GIM Strategy #2: Speed product delivery Extend your reach in the global marketplace Howard

GIM Strategy #2: Speed product delivery Extend your reach in the global marketplace Howard Schwartz, Ph. D. Chip Gettinger VP Content Technologies VP XML Solutions SDL XySoft SDL XySoft GIM Webinar Series: www.sdl.com/gim-webinar-series

549 views • 28 slides
ACCEL Instruments GmbH Advanced Technology Equipment and Turn-Key System Supplier for Research,

ACCEL Instruments GmbH Advanced Technology Equipment and Turn-Key System Supplier for Research,

ACCEL Instruments GmbH Advanced Technology Equipment and Turn-Key System Supplier for Research, Industry and Medical worldwide Business Units RF Components and Systems Linear Accelerators Specialized Manufacturing Projects Superconducting

446 views • 26 slides
Long Term Protection Model in R Dr. Urszula Gasser, Senior Pricing Actuary 2 Disclaimer The

Long Term Protection Model in R Dr. Urszula Gasser, Senior Pricing Actuary 2 Disclaimer The

Long Term Protection Model in R Dr. Urszula Gasser, Senior Pricing Actuary 2 Disclaimer The following presentation is for general information, education and discussion purposes only. Views or opinions expressed, whether oral or in writing do

847 views • 69 slides
Advanced Software Engineering with C++ Templates Administrative Issues Thomas Gschwind &lt;thg at

Advanced Software Engineering with C++ Templates Administrative Issues Thomas Gschwind &lt;thg at

Advanced Software Engineering with C++ Templates Administrative Issues Thomas Gschwind &lt;thg at zurich dot ibm dot com&gt; About me Lecturer at Universitt Zrich Researcher at IBM Interests Machine Learning Programming

889 views • 85 slides
18.650 Statistics for Applications Chapter 3: Maximum Likelihood Estimation 1/23 Total

18.650 Statistics for Applications Chapter 3: Maximum Likelihood Estimation 1/23 Total

18.650 Statistics for Applications Chapter 3: Maximum Likelihood Estimation 1/23 Total variation distance (1) ) ( Let E, (I P ) be a statistical model associated with a sample of i.i.d. r.v. X 1 , . . .

570 views • 25 slides

More recommend