straw man in the middle
play

(Straw) Man in the Middle: A Modest Post-Snowden Proposal Brussels, - PowerPoint PPT Presentation

May 28, 2023 •108 likes •439 views

(Straw) Man in the Middle: A Modest Post-Snowden Proposal Brussels, Belgium Jacob Appelbaum [redacted] 10 December 2015 Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 1 / 26 Post-Snowden? What does that mean?

  1. (Straw) Man in the Middle: A Modest Post-Snowden Proposal Brussels, Belgium Jacob Appelbaum [redacted] 10 December 2015 Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 1 / 26

  2. Post-Snowden? What does that mean? Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 2 / 26

  3. Understanding the plumbing Mass surveillance works by first illegally and generally seizing data, and then indiscriminately searching all data, until a specific search term is found. This is selector based surveillance, a kind of surveillance that requires mass surveillance. It comes from vulnerabilities in core internet and other network protocols. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 3 / 26

  4. A shift? We have experienced a huge shift. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 4 / 26

  5. Key changes Specific understanding about a handful of protocols. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 5 / 26

  6. Key changes A general and pervasive fear; a feeling of helplessness. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 6 / 26

  7. Key changes People have lost faith in the authorities and adopted a fatalistic attitude. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 7 / 26

  8. A new assumption A pervasive fear of mass surveillance, jokes about being on lists; a new default of total monitoring! Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 8 / 26

  9. A new default to fight passive attackers Changes are now detectable. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 9 / 26

  10. A new default to fight passive attackers Changes are now detectable. Encryption is here to stay. Passive interception moves to active. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 9 / 26

  11. A new default to fight passive attackers Changes are now detectable. Encryption is here to stay. Passive interception moves to active. Signal/ZRTP clients and Let’s Encrypt CA change the game. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 9 / 26

  12. A new default to fight passive attackers Changes are now detectable. Encryption is here to stay. Passive interception moves to active. Signal/ZRTP clients and Let’s Encrypt CA change the game. This impacts Law Enforcement and Intelligence; focusing on LE. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 9 / 26

  13. Cultural differences In the US, the UK and in other countries in Europe - searches and notification are different. Cryptography brings us to a new convergence for all cultures at once. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 10 / 26

  14. A recent European Court of Human Rights ruling Oversight isn’t enough: accountability is required Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 11 / 26

  15. Checking validity Example interactions with the police: Siren on an otherwise unmarked car pulling over a driver Drive to a well lit area, dial 112/911, confirm identity of ”officer” No know raid by armed people Did they declare they are police? How do we verify it? Knock at the door with a search warrant Is it a valid warrant? Other examples such as a famous Tupac shooting involving police in plain clothing Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 12 / 26

  16. Reality check In most of these situations - we acknowledge the serious issue of police impersonation. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 13 / 26

  17. How do we detect crimes? Cyber cyber cyber Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 14 / 26

  18. How do we detect crimes? Cyber cyber cyber (Hint: You will receive nearly no help from any authority!) Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 14 / 26

  19. An example standard of evidence In the German Chancellor Merkel case there was a supposed lack of evidence. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 15 / 26

  20. An example standard of evidence In the German Chancellor Merkel case there was a supposed lack of evidence. Thus we see - we need a new standard of evidence! Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 15 / 26

  21. A short summary First, we acknowledge a change in thinking because of Snowden. Secondly, we see a move towards more and more transparency. Thirdly, we control those we can control and not those that we don’t... Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 16 / 26

  22. Wait, control? I have no democratic control over the majority of services. I do have democratic control over a small set of services: local LE, national LE Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 17 / 26

  23. Wait, transparency? The new protocols force transparency, the proposed standard of evidence give us data for action; but how might we choose what to act on? Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 18 / 26

  24. Ask the honest parties to prove their honesty They sign their interception request in real time, point it to a given court (docket, judge, case, etc.) just as with the search of the home. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 19 / 26

  25. And anyone who doesn’t sign... Is subject to investigation with the collected evidence. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 20 / 26

  26. Wait, what? There is no requirement that cryptophone or signal help with this proposal - only that a system of real time notification is implemented by states and their relevant agencies. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 21 / 26

  27. Wait, what about TARGETED surveillance Like cryptography that horse has left the barn with the move from passive to active. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 22 / 26

  28. Wait, what about malware The same standard of evidence and notification should apply. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 23 / 26

  29. Help the (honest) police No ”Golden Key” required Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 24 / 26

  30. Help the (honest) police No ”Golden Key” required A trade of the secrecy property that keeps security for the majority of users Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 24 / 26

  31. Help the (honest) police No ”Golden Key” required A trade of the secrecy property that keeps security for the majority of users Law enforcement is always asking for a way to do this; my proposal allows an avenue while also asking them to give up secrecy and commit to accountability and transparency. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 24 / 26

  32. An equal standard From homes to phones - interference is not secret, lawful processes exist, crimes committed by thousands of unlawful attackers now subject to reporting. Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 25 / 26

  33. Questions? Jacob Appelbaum ([redacted]) (Straw) Man in the Middle: 10 December 2015 26 / 26

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Simulat ulatio ion n from subsea ea to separat ator or Matt Straw Norton on Straw w

Simulat ulatio ion n from subsea ea to separat ator or Matt Straw Norton on Straw w

Simulat ulatio ion n from subsea ea to separat ator or Matt Straw Norton on Straw w Consult ltant ants Introduct oduction ion Matt Straw PhD University of Nottingham, CFD in wind engineering (natural ventilation) 15 years oil

548 views • 19 slides
In Straw Tracker Prototype Tom-Erik Haugen, David Brown, Richard Bonventre, Andrew Edmonds.

In Straw Tracker Prototype Tom-Erik Haugen, David Brown, Richard Bonventre, Andrew Edmonds.

Fe55 Longitudinal Measurements In Straw Tracker Prototype Tom-Erik Haugen, David Brown, Richard Bonventre, Andrew Edmonds. Straw Tracker 5mm straw made of 15m thick aluminum Filled with ArCO2 and held at high voltage 2 Straw

632 views • 28 slides
Updates on the STRAW front-end electronics STT layout; The readout concept;

Updates on the STRAW front-end electronics STT layout; The readout concept;

Updates on the STRAW front-end electronics STT layout; The readout concept; Electronics developments; Status and perspectives. 1 P.Gianotti for the STT group 28/4/13 Detectors requirements and layout 4636 Straw tubes

882 views • 18 slides
TADG 5: CE Electric UK straw men November 2006 1 Overview Range of S cenarios as t he

TADG 5: CE Electric UK straw men November 2006 1 Overview Range of S cenarios as t he

TADG 5: CE Electric UK straw men November 2006 1 Overview Range of S cenarios as t he int ent is t o illuminat e t he debat e, a range of These straw men scenarios is present ed t o illust rat e: are intended solely to illuminate

118 views • 9 slides
Energy Efficiency Resource Standards: A Straw Proposal for New Hampshire Prepared by NHPUC Staff

Energy Efficiency Resource Standards: A Straw Proposal for New Hampshire Prepared by NHPUC Staff

Company LOGO Energy Efficiency Resource Standards: A Straw Proposal for New Hampshire Prepared by NHPUC Staff October 2014 EERS Straw Proposal: The Problem Lazard Frre's study Current Core progress Neighboring states

763 views • 39 slides
Straw Residual Potential in Serbia for Energy Use -taking into account the soil balance, economic

Straw Residual Potential in Serbia for Energy Use -taking into account the soil balance, economic

Workshop Straw-Combustion - Economic Opportunities for the Serbian Agro- Industry Belgrade, 22 nd April 2015 Straw Residual Potential in Serbia for Energy Use -taking into account the soil balance, economic aspects and technical

345 views • 34 slides
ABSTRACTS WCDS Advances in Dairy Technology (2019) Volume 31: 155-160 156 Effect of wheat straw

ABSTRACTS WCDS Advances in Dairy Technology (2019) Volume 31: 155-160 156 Effect of wheat straw

STUDENT RESEARCH PRESENTATION COMPETITION ABSTRACTS WCDS Advances in Dairy Technology (2019) Volume 31: 155-160 156 Effect of wheat straw chop length in high-straw dry cow diets on behaviour and physiology of dairy cows across the

308 views • 8 slides
STRAW RESEARCH, CREATIVITY, INNOVATION AND PROMOTION IN ARGENTINA Leopoldo DIAZ CANO ESBG

STRAW RESEARCH, CREATIVITY, INNOVATION AND PROMOTION IN ARGENTINA Leopoldo DIAZ CANO ESBG

STRAW RESEARCH, CREATIVITY, INNOVATION AND PROMOTION IN ARGENTINA Leopoldo DIAZ CANO ESBG Strawbale Event RACP Topics 1.Argentine straw building network. 2.The research project. 3.Raw material alternatives and crop areas in Argentina.

974 views • 80 slides
Bhun Bhungru, , the Waters Life Str Straw aw TM RATHIN BHADRA & RAJA BAGCHI

Bhun Bhungru, , the Waters Life Str Straw aw TM RATHIN BHADRA & RAJA BAGCHI

TM ISO 9001:2015 Bhun Bhungru, , the Waters Life Str Straw aw TM RATHIN BHADRA & RAJA BAGCHI teambhungru@gmail.com PH. 8709167691/8294086329/9113140886 JHARKHAND BHUNGRU UNGRU TM TM The Waters Life Straw AN ISO

548 views • 34 slides
The STT Geometry Description in PANDAroot Thanachot Nasawasd 05 June 2018 Outline Straw Tube

The STT Geometry Description in PANDAroot Thanachot Nasawasd 05 June 2018 Outline Straw Tube

Mitglied der Helmholtz-Gemeinschaft The STT Geometry Description in PANDAroot Thanachot Nasawasd 05 June 2018 Outline Straw Tube Tracker STT in Pandaroot (curent model) STT modeling I. Tubes II. Straw tube arangment III.

706 views • 26 slides
The middle program $ middle 3 3 5 middle: 3 $ middle 2 1 3 middle: 1 10 10 int main(int

The middle program $ middle 3 3 5 middle: 3 $ middle 2 1 3 middle: 1 10 10 int main(int

Detecting Anomalies Andreas Zeller 1 Tracing Infections For every infection, we must find the earlier infection that causes it. Which origin should we focus upon? 2 2 Tracing Infections 3 3 Focusing on Anomalies

522 views • 27 slides
COMET Straw Gas Chamber M2 Hiroki Nakai 1 t n e

COMET Straw Gas Chamber M2 Hiroki Nakai 1 t n e

COMET Straw Gas Chamber M2 Hiroki Nakai 1 t n e m i r e p x E T E M O C Search for Muon to Electron Conversion at Pulsed Proton Beam a

754 views • 24 slides
Switchgrass vs Winter Wheat Ontario Biomass Producers Co-op Wheat Straw If your farm

Switchgrass vs Winter Wheat Ontario Biomass Producers Co-op Wheat Straw If your farm

Switchgrass vs Winter Wheat Ontario Biomass Producers Co-op Wheat Straw If your farm operation is in need of straw Is switchgrass a better alternative than winter wheat or spring cereals? Benefits of switchgrass Guaranteed

432 views • 19 slides
Transmission Access Charge Options Straw Proposal Stakeholder Meeting March 1, 2016 March 1,

Transmission Access Charge Options Straw Proposal Stakeholder Meeting March 1, 2016 March 1,

Transmission Access Charge Options Straw Proposal Stakeholder Meeting March 1, 2016 March 1, 2016 meeting agenda Time (MST) Topic Presenter Introduction and Stakeholder Process 10:00-10:10 Kristina Osborne Overview Straw Proposal

508 views • 37 slides
Deliverability Assessment Methodology Straw Proposal Paper Deliverability Assessment Methodology

Deliverability Assessment Methodology Straw Proposal Paper Deliverability Assessment Methodology

Deliverability Assessment Methodology Straw Proposal Paper Deliverability Assessment Methodology Straw Proposal Paper Stakeholder Meeting August 5, 2019 California ISO Public California ISO Public Agenda Time Item 9:00-9:30 Welcome and

545 views • 53 slides
Welcome to Randolph Middle School An IB World School Randolph Middle School

Welcome to Randolph Middle School An IB World School Randolph Middle School

Welcome to Randolph Middle School An IB World School Randolph Middle School Charlotte-Mecklenburg Schools International Baccalaureate Middle Years Program Grades 6 8 Brian Bambauer, Principal Fast Facts RMS was built in1967

673 views • 40 slides
Solar demand in Europe in times of COVID-19 Aristotelis Chantavas President of SolarPower Europe

Solar demand in Europe in times of COVID-19 Aristotelis Chantavas President of SolarPower Europe

Solar demand in Europe in times of COVID-19 Aristotelis Chantavas President of SolarPower Europe Head of Europe Enel Green Power A new Era of Growth for Solar in the European Union EU market outlook until 2023 (status: Dec. 2019): EU solar

368 views • 7 slides
Data privacy: Introduction Vicen c Torra March, 2019 Hamilton Institute, Maynooth University,

Data privacy: Introduction Vicen c Torra March, 2019 Hamilton Institute, Maynooth University,

Data privacy: Introduction Vicen c Torra March, 2019 Hamilton Institute, Maynooth University, Ireland Outline Outline 1. Motivation 2. Difficulties 3. Terminology 4. Disclosure 5. Transparency 6. Privacy by design 7. Summary 1 / 37

510 views • 38 slides
AI in Healthcare: Privacy & Ethics considerations Ivana Bartoletti Head of Privacy, Data

AI in Healthcare: Privacy & Ethics considerations Ivana Bartoletti Head of Privacy, Data

AI in Healthcare: Privacy & Ethics considerations Ivana Bartoletti Head of Privacy, Data Protection and Ethics Contents Privacy in the Digital age: main issues Ethics: definitions and background Privacy challenges in Health

713 views • 23 slides
Privacy by Design Principles of Privacy-Aware Ubiquitous Systems Marc Langheinrich Privacy by

Privacy by Design Principles of Privacy-Aware Ubiquitous Systems Marc Langheinrich Privacy by

Privacy by Design Principles of Privacy-Aware Ubiquitous Systems Marc Langheinrich Privacy by Design ETH Zurich, Switzerland www.inf.ethz.ch/~langhein Ubicomp 2001, Atlanta Contents Ubicomp 2001, Atlanta ! Privacy primer Does privacy

680 views • 22 slides
Northern Irelands Place in Europe post-Brexit 5 November 2019 www.qub.ac.uk/Brexit

Northern Irelands Place in Europe post-Brexit 5 November 2019 www.qub.ac.uk/Brexit

Northern Irelands Place in Europe post-Brexit 5 November 2019 www.qub.ac.uk/Brexit @QUBPolicy Where are we with Brexit? Professor David Phinnemore @DPhinnemore Where are we with Brexit? 17 October 2019 revised Withdrawal Agreement

446 views • 11 slides
GDPR Obligations & Rules Introduction to Privacy and the GDPR Simone Fischer-Hbner

GDPR Obligations & Rules Introduction to Privacy and the GDPR Simone Fischer-Hbner

GDPR Obligations & Rules Introduction to Privacy and the GDPR Simone Fischer-Hbner CC-BY-4.0 Advising, Monitoring, Enforcing European Data Protection Board Art. 68 - 73 (replacing the Art. 29 Working Party) advise Supervisory

626 views • 8 slides
1 Simultaneous interpretation EN channel 1 FR channel 2 ES channel 3 DE channel 4 2 The Future

1 Simultaneous interpretation EN channel 1 FR channel 2 ES channel 3 DE channel 4 2 The Future

EUROPEAN AFFAIRS COMMITTEE The Future of Health in the European Union Brussels, November 15th, 2018 #AIM20yearsBxl #FutureHealthEU 1 Simultaneous interpretation EN channel 1 FR channel 2 ES channel 3 DE channel 4 2 The Future of Health in

299 views • 9 slides
Topics for essays Giovanni Marin Department of Economics, Society, Politics Universit degli

Topics for essays Giovanni Marin Department of Economics, Society, Politics Universit degli

Topics for essays Giovanni Marin Department of Economics, Society, Politics Universit degli Studi di Urbino Carlo Bo Aim of the essay Put at work what you learnt in the first part of the course on specific case studies Retrieve

750 views • 25 slides

More recommend