the hill we must die on cryptographers and congress
play

The Hill We Must Die On: Cryptographers and Congress Shaanan Cohney - PowerPoint PPT Presentation

Nov 22, 2023 •241 likes •676 views

The Hill We Must Die On: Cryptographers and Congress Shaanan Cohney Gabriel Kaptchuk University of Pennsylvania Johns Hopkins University January 9, 2019 1 / 32 Who Are We? Gabe Kaptchuk Shaanan Cohney 4 th year PhD Student at 5 th

  1. The Hill We Must Die On: Cryptographers and Congress Shaanan Cohney Gabriel Kaptchuk University of Pennsylvania Johns Hopkins University January 9, 2019 1 / 32

  2. Who Are We? Gabe Kaptchuk Shaanan Cohney • 4 th year PhD Student at • 5 th year PhD Student at JHU UPenn • Co-advised by Avi Rubin • Co-advised by Nadia and Matt Green Heninger and Jonathan Smith • American • Australian • We worked together in Senator Ron Wyden’s (D-OR) personal office in Washington DC • Neither of us had prior political experience • Both of us have research mentors with policy interests 2 / 32

  3. This Talk is NOT ... An advertisement for a set of political views 3 / 32

  4. This Talk is NOT ... A talk about the merits/evils of exceptional access mechanisms 4 / 32

  5. This Talk is NOT ... A US civics lecture 5 / 32

  6. This Talk is NOT ... A view into the secrets happening behind closed doors 6 / 32

  7. This Talk IS... Two perspectives on what we learned from our summer on Capitol Hill 7 / 32

  8. “Cryptography rearranges power: it configures who can do what, from what. This makes cryptography an inherently political tool” — Phillip Rogaway 8 / 32

  9. Why Work in Policy? • Governments struggle with complex systems • Governments set trends • Loudest voices on our issues not from our community 9 / 32

  10. Why Work in Policy? • Governments struggle with complex systems • Governments set trends • Loudest voices on our issues not from our community • IMPACT 9 / 32

  11. US Federal Government Reminder The Executive Branch The Judicial Branch (President and most departments) (Courts) 10 / 32

  12. US Federal Government Reminder The Legislative Branch (House and Senate) The Executive Branch The Judicial Branch (President and agencies) (Courts) 11 / 32

  13. Legislative Branch 12 / 32

  14. Legislative Branch 13 / 32

  15. Senate Office • Approx. 15 people in DC • Issue areas are “owned” by particular staffers • Staff identify problems and suggest actions • Problems also sourced from constituents, lobbyists, and experts 14 / 32

  16. Summer Goals • What are the government’s ground rules? 15 / 32

  17. Summer Goals • What are the government’s ground rules? • Can two people make substantive impacts? 15 / 32

  18. Summer Goals • What are the government’s ground rules? • Can two people make substantive impacts? • Is there overlap between academically interesting problems and policy interesting problems? 15 / 32

  19. Summer Goals • What are the government’s ground rules? • Can two people make substantive impacts? • Is there overlap between academically interesting problems and policy interesting problems? • How can we best represent our community? 15 / 32

  20. What our mothers think we did 16 / 32

  21. What our manager thinks we did Can’t share details but... We care about Our Senator cared about • Widespread crypto protocol • HTTPS deployment disabled/misconfigured on • FIPS Standardization agency websites Process • Lack of StartTLS • Government CAs • FBI misrepresenting • Old and outdated VPN decryption difficulties protocols • Government transparency • Voting ...high overlap, but not exactly the same 17 / 32

  22. What we actually did • Wrote lots of letters - both nice and angry • Drafted legislation • ‘Cryptographic’ investigations • Advised the Senator and senior staff • Met with representatives from government agencies and private corporations • Argued about lots of things. 18 / 32

  23. What we actually did • Wrote lots of letters - both nice and angry • Drafted legislation • ‘Cryptographic’ investigations • Advised the Senator and senior staff • Met with representatives from government agencies and private corporations • Argued about lots of things. Productively. 18 / 32

  24. 19 / 32

  25. Highlight: Meeting with National Security Agency • When Senators ask, people show up • Met with senior officials and cryptographers from NSA • One official commented that it was refreshing to have a direct conversation with members of the academic cryptographic community • Can’t disclose any of the details 20 / 32

  26. Lessons 21 / 32

  27. Lesson #1: Crypto is everywhere • FIPS 22 / 32

  28. Lesson #1: Crypto is everywhere • FIPS • Census department will be using differential privacy in the 2020 census 22 / 32

  29. Lesson #1: Crypto is everywhere • FIPS • Census department will be using differential privacy in the 2020 census • More government services are available online 22 / 32

  30. Lesson #2: Talk is Cheap, but Powerful • Politics is performance. Hearings are for the public. • Politicians actually do listen (or at least their staff do) • It’s not hard to get one meeting • Ideas seeded today, become law tomorrow 23 / 32

  31. Media and Spin The member won’t read your paper The member won’t read your twitter The legislative aide will read your twitter 24 / 32

  32. Priorities Golden Rules: 1. Don’t make the member look bad 2. Make the member look good 3. Really, Don’t make the member look bad 25 / 32

  33. Priorities Golden Rules: Don’t forget the other rules: 1. Don’t make the member 1. Don’t do bad look bad 2. Do good 2. Make the member look good 3. Don’t do bad 3. Really, Don’t make the member look bad 25 / 32

  34. Lesson #3: Learn to Talk like the other Kind of Nerd • It’s hard to sell 0-RTT handshakes or isogeny based cryptography, tell stories • Politicians valorize and demonize, consider their mental model • Master the art of the concrete ask • Not all legislation is intended to pass! 26 / 32

  35. Concrete Asks Easier Asks I’d like the Congressperson to request this document from... I want the Congressperson to ask the relevant agency to... I want the Congressperson’s cybersecurity staffer to investigate... Harder Asks I’d like a public letter from the Senator to... about... I want the Congressperson to vote in favor of... 27 / 32

  36. Communicating with a Member Call Meet Write 28 / 32

  37. Lesson #4: Don’t Ignore “Incremental” Problems • Big ticket and controversial issues have friction • The issues you can move won’t always be the sexy ones • Compromise can get you real change 29 / 32

  38. Lesson #4: Don’t Ignore “Incremental” Problems Good Problems Harder Problems • We should be using MPC for • Don’t backdoor our crypto Social Good • We need more funding for Z • Why does the government misconfigure Y? • The industry standards for L are broken, and it is affecting population M 29 / 32

  39. What you can do If you’re an academic... • Embrace the moral nature of your work • Start telling your stories • Don’t shy away from taking moral stances • Consider doing some work in the legislature of your respective country • Be active in learning how to talk about your work non-technically 30 / 32

  40. What you can do If you’re in industry... • Reach beyond your particular company to bring together the industry • Start telling stories about how privacy actively helps your customers and a member’s constituents 30 / 32

  41. What you can do If you’re a concerned human... • Take part in your political process 30 / 32

  42. Thank You! • Please reach out with any questions or thoughts! • Thanks to Wharton for funding Shaanan and Tech Congress for funding Gabe! • Big thank you to Senator Wyden, his staff, and our fellow fellows for having us over the summer! Shaanan Cohney Gabe Kaptchuk https://cohney.info https://kaptchuk.com shaanan@cohney.info gabe@kaptchuk.com 31 / 32

  43. Image Citations Presented in order of appearance https://thehill.com/blogs/blog-briefing-room/news/ 275092-generic-presidential-campaign-ad-mocks-political-cliches http://chicagopolicyreview.org/2016/05/25/ exceptional-access-how-a-back-door-could-create-large-scale-security-threats/ https://commons.wikimedia.org/wiki/File: Taiwanese_Junior_High_School_Students_Sleeping_in_School_2007-10-09.jpg https://commons.wikimedia.org/wiki/File:The_closed_door_at_The_Jahangiri_Mahal.JPG https://commons.wikimedia.org/wiki/File:Seal_of_the_President_of_the_United_States.svg https://www.publicdomainpictures.net/en/view-image.php?image=72186&picture=scales-of-justice http://hero.wikia.com/wiki/Bill_(Schoolhouse_Rock!) https://www.iagreetosee.com/portfolio/throwback-thursday-im-just-a-bill-yea-right/ https://thestreetwhereyoulive.files.wordpress.com/2011/08/oversight-cartoon.jpg https://www.nsa.gov/about/cryptologic-heritage/center-cryptologic-history/insignia/ https://aws.amazon.com/compliance/fips/ https://en.wikipedia.org/wiki/United_States_Census https://government.diginomica.com/2015/10/22/ denmark-has-made-digital-mandatory-for-government-citizen-interactions/ 32 / 32

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Bookmarks for Cryptographers Beno t Viguier MSc ( x y. x@y.nl ) benoit viguier

Bookmarks for Cryptographers Beno t Viguier MSc ( x y. x@y.nl ) benoit viguier

Bookmarks for Cryptographers Beno t Viguier MSc ( x y. x@y.nl ) benoit viguier https://www.viguier.nl Student talk 5th June 2017 Institute for Computing and Information Sciences Digital Security Radboud University Nijmegen 1 Tikz

467 views • 19 slides
High-speed cryptography, Cryptographers part 3: more cryptosystems Working

High-speed cryptography, Cryptographers part 3: more cryptosystems Working

High-speed cryptography, Cryptographers part 3: more cryptosystems Working systems Daniel J. Bernstein Cryptanalytic University of Illinois at Chicago & algorithm designers Technische Universiteit Eindhoven Unbroken

1.49k views • 145 slides
Sage for Cryptographers Martin R. Albrecht (martinralbrecht+summerschool@googlemail.com) POLSYS

Sage for Cryptographers Martin R. Albrecht (martinralbrecht+summerschool@googlemail.com) POLSYS

Sage for Cryptographers Martin R. Albrecht (martinralbrecht+summerschool@googlemail.com) POLSYS Team, UPMC, Paris, France ECrypt II PhD Summer School Outline 1 Introduction 2 Highlevel Features 3 Mathematics 4 Cryptography 5 External Tools,

960 views • 69 slides
The ISO Standardization Process of PLAID: A Cryptographers Perspective Real World Cryptography

The ISO Standardization Process of PLAID: A Cryptographers Perspective Real World Cryptography

The ISO Standardization Process of PLAID: A Cryptographers Perspective Real World Cryptography Workshop 2015 Arno Mittelbach based on joint work with Jean Paul Degabriele, Victoria Fehr, Marc Fischlin, Tommaso Gagliardoni, Felix Gnther,

488 views • 24 slides
Bookmarks for Cryptographers Beno t Viguier ( x y. x@y.nl ) benoit viguier CHES 2017

Bookmarks for Cryptographers Beno t Viguier ( x y. x@y.nl ) benoit viguier CHES 2017

Bookmarks for Cryptographers Beno t Viguier ( x y. x@y.nl ) benoit viguier CHES 2017 Rump Session Taipei, 26th September 2017 Institute for Computing and Information Sciences Digital Security Radboud University Nijmegen 1 Tikz

436 views • 19 slides
Hardware Design for Cryptographers P . Schaumont Bradley Department of Electrical and Computer

Hardware Design for Cryptographers P . Schaumont Bradley Department of Electrical and Computer

Hardware-oriented Specification Hardware Circuits Hardware Description in C Hardware Design for Cryptographers P . Schaumont Bradley Department of Electrical and Computer Engineering Virginia Tech Blacksburg, VA Design and Security of

1.01k views • 63 slides
Congress attendance and its predictive value for future congress contribution Charl Coleman,

Congress attendance and its predictive value for future congress contribution Charl Coleman,

Congress attendance and its predictive value for future congress contribution Charl Coleman, Elzabie Nelson & Marion Vermeulen So what is a congress really about? The South African Society for Blood Transfusion congress is hosted

334 views • 17 slides
The 4 th EURASIA CONGRESS OF INFECTIOUS DISEASES 01-05 JUNE 2011 HOLLYWOOD HOTEL & CONGRESS

The 4 th EURASIA CONGRESS OF INFECTIOUS DISEASES 01-05 JUNE 2011 HOLLYWOOD HOTEL & CONGRESS

The 4 th EURASIA CONGRESS OF INFECTIOUS DISEASES 01-05 JUNE 2011 HOLLYWOOD HOTEL & CONGRESS CENTER, SARAJEVO-BOSNIA & HERZEGOVINA Presidents of Congress Vice Presidents of Congress Congress Secretary Organization Prof. Hakan

433 views • 18 slides
Agenda Overview of 116 th Congress (20192020) 116th Congress: TaxRelated Measures

Agenda Overview of 116 th Congress (20192020) 116th Congress: TaxRelated Measures

9/13/2019 Legislative & Political Update 116 th Congress & 2020 Elections September 13, 2019 Jim Flood, Partner Scott Douglas, Senior Policy Director Crowell & Moring | 29 Agenda Overview of 116 th Congress (20192020)

495 views • 11 slides
What You Need to Know Before Your Capitol Hill Visits Agenda Introductions Goals for the ALC

What You Need to Know Before Your Capitol Hill Visits Agenda Introductions Goals for the ALC

What You Need to Know Before Your Capitol Hill Visits Agenda Introductions Goals for the ALC Hill Visits What to Expect on Capitol Hill What are the Asks on Capitol Hill Overview of Packet Materials Tips for a Successful Hill Visit

318 views • 18 slides
Hill Air Force Base Airman & Family Readiness Center Survivor Benefit Plan (SBP) What is

Hill Air Force Base Airman & Family Readiness Center Survivor Benefit Plan (SBP) What is

Hill Air Force Base Airman & Family Readiness Center Survivor Benefit Plan (SBP) What is SBP? Retired pay stops when you die! Many widows were being left destitute 21 Sep 72 Congress implemented the SBP Government subsidized

394 views • 14 slides
Congress Chapter 12 1 congress powerpoint 90 slides February 27, 2015 The Constitution and the

Congress Chapter 12 1 congress powerpoint 90 slides February 27, 2015 The Constitution and the

congress powerpoint 90 slides February 27, 2015 Congress Chapter 12 1 congress powerpoint 90 slides February 27, 2015 The Constitution and the Legislative Branch of the Government Article I describes structure of Congress Bicameral

1.28k views • 90 slides
LIST OF PRESENTATION IN THE OPEN CONGRESS (First author only) A. International congress 1.

LIST OF PRESENTATION IN THE OPEN CONGRESS (First author only) A. International congress 1.

LIST OF PRESENTATION IN THE OPEN CONGRESS (First author only) A. International congress 1. Kunihara T , Yasuda K, Matsui Y, Murakami T, Watanabe M. Thoracoscopic Pericardiectomy for Chronic Effusive Pericarditis: A case report. The 3rd Annual

421 views • 23 slides
Less is More Neil Heseltine Hill Top Farm Malham @hilltopfarmgirl Hill Top Farm

Less is More Neil Heseltine Hill Top Farm Malham @hilltopfarmgirl Hill Top Farm

Less is More Neil Heseltine Hill Top Farm Malham @hilltopfarmgirl Hill Top Farm @hilltopfarmgirl HILL TOP FARM Live & work at Hill Top Farm, Malham; 300 acre family farm, Grandparents moved here in 1950 as tenants; Parents

592 views • 18 slides
Proposed Proposed Kenmoun Kenmount Hill t Hill CDS CDS Amen Amendmen dment Public Hearing

Proposed Proposed Kenmoun Kenmount Hill t Hill CDS CDS Amen Amendmen dment Public Hearing

Proposed Proposed Kenmoun Kenmount Hill t Hill CDS CDS Amen Amendmen dment Public Hearing October 25 th , 2018 Hist History ory of of Kenmoun Kenmount Hill t Hill Why Why Kenmo Kenmount Hill? unt Hill? Why Why Now? Now? We

519 views • 35 slides
DER 33 JAHRERCKBLICK TECHNOLOGY AND POLITICS IN CONGRESS TALKS, FROM 1984 TO NOW MEL &

DER 33 JAHRERCKBLICK TECHNOLOGY AND POLITICS IN CONGRESS TALKS, FROM 1984 TO NOW MEL &

DER 33 JAHRERCKBLICK TECHNOLOGY AND POLITICS IN CONGRESS TALKS, FROM 1984 TO NOW MEL & MAXIGAS @ 33C3 2C3 (1985) video: ARD Tagesschau DATA Before 1992: Congress archive https://events.ccc.de/congress/ 403 Forbidden web.archive.org

557 views • 36 slides
Req equest uest for or Proposal oposal Tech echnical nical Ass ssis istance tance Web

Req equest uest for or Proposal oposal Tech echnical nical Ass ssis istance tance Web

Lang ngua uage ge Training aining Cen enter er Program ogram Req equest uest for or Proposal oposal Tech echnical nical Ass ssis istance tance Web ebinar nar Februar ruary 4, 2016 Webinar Participants Defen ense se La

229 views • 10 slides
Security Enhancements (SE) for Android Stephen Smalley Trusted Systems Research Natjonal

Security Enhancements (SE) for Android Stephen Smalley Trusted Systems Research Natjonal

Security Enhancements (SE) for Android Stephen Smalley Trusted Systems Research Natjonal Security Agency CLASSIFICATION HEADER Agenda Motjvatjon/Background Current State Using SELinux in Android What's Next for SELinux in

762 views • 72 slides
Briefing on Human Capital and Equal Employment Opportunity Commission Meeting June 22,

Briefing on Human Capital and Equal Employment Opportunity Commission Meeting June 22,

Briefing on Human Capital and Equal Employment Opportunity Commission Meeting June 22, 2017 Agenda Key Messages Victor McCree, EDO Overview of Human Capital Miriam Cohen, CHCO Strategic Workforce Planning Working Group

482 views • 35 slides
Class 8 Questions about term paperlist of possible topics available later today

Class 8 Questions about term paperlist of possible topics available later today

Class 8 Questions about term paperlist of possible topics available later today Communications discussion Communications assignment 1 CS 4001 Mary Jean Harrold Intercepting Communications Thanks to Sherry Clark for her

536 views • 6 slides
CSE 473: Artificial Intelligence Autumn 2011 Search Luke Zettlemoyer Slides from Dan Klein,

CSE 473: Artificial Intelligence Autumn 2011 Search Luke Zettlemoyer Slides from Dan Klein,

CSE 473: Artificial Intelligence Autumn 2011 Search Luke Zettlemoyer Slides from Dan Klein, Stuart Russell, Andrew Moore Outline Agents that Plan Ahead Search Problems Uninformed Search Methods (part review for some)

616 views • 38 slides
NaturalLI: Natural Logic Inference for Common Sense Reasoning Angeli & Manning (2014)

NaturalLI: Natural Logic Inference for Common Sense Reasoning Angeli & Manning (2014)

NaturalLI: Natural Logic Inference for Common Sense Reasoning Angeli & Manning (2014) (MacCartney 2007) Introduction: Motivation examples Natural Logic: Lexical Relations Monotonicity and Polarity Proof by alignment

899 views • 46 slides
Stochastic Search using the Natural Gradient Ecient Natural Evolution Strategies (eNES) Yi Sun,

Stochastic Search using the Natural Gradient Ecient Natural Evolution Strategies (eNES) Yi Sun,

Stochastic Search using the Natural Gradient Ecient Natural Evolution Strategies (eNES) Yi Sun, Daan Wierstra, Tom Schaul, and Jrgen Schmidhuber {yi,daan,tom,juergen}@idsia.ch IDSIA, Galleria 2, Manno 6928, Switzerland June 17th, 2009 Yi

1.24k views • 107 slides
Image Identification with Natural Language Specification Qi Feng, Donghyun Kim Department of

Image Identification with Natural Language Specification Qi Feng, Donghyun Kim Department of

Introduction Methods Results Saliency Map Image Identification with Natural Language Specification Qi Feng, Donghyun Kim Department of Computer Science, Boston University fung@bu.edu, donhk@bu.edu December 08, 2017 . . . . . . . .

165 views • 15 slides

More recommend