Beruflich Dokumente
Kultur Dokumente
John Kristoff
jtk@cymru.com
FIRST 2014
FIRST 2014
Agenda
Bootstrap issues
Routing
FIRST 2014
FIRST 2014
https://www.google.com/#q=pgp+decrypt
FIRST 2014
FIRST 2014
From: businessinsider.com
Dylan Love, JUN 17 2013 4:18
EDWARD SNOWDEN: How To Make Sure The NSA
Can't Read Your Email
[...] You can generate PGP keys to your
heart's content using the free tool at
iGolder and a number of other services
around the web. []
Bootstrapping
Web of trust
Trust anchors
FIRST 2014
Usability
FIRST 2014
iPGMail, oPenGP
FIRST 2014
10
11
Shared key
ops-trust, SELS
FIRST 2014
12
I Asked...
first-teams@first
general@ops-trust
discuss@ren-isac
FIRST 2014
13
FIRST 2014
14
FIRST 2014
15
FIRST 2014
16
Keyserver uploads
FIRST 2014
17
Physical ID validation
FIRST 2014
18
FIRST 2014
19
29 expired keys
1 revoked
FIRST 2014
20
FIRST 2014
21
22
Heartbleed Notwithstanding
FIRST 2014
23
X.509 Certificates
Notary services
FIRST 2014
24
DANE
DNS-based Authentication of Named Entities
FIRST 2014
25
DNSCurve
26
Routing
No encryption in BGPSEC
Next slide
FIRST 2014
27
Games
Social media
FIRST 2014
28
Thank You!
1024D/FFE85F5D 2008-07-31
57D8 14C3 A644 200C 3ACE
46B3 7118 0AF1 FFE8 5F5D
John Kristoff <jtk@cymru.com>
pub
1024D/C85CCA46 1999-11-16
C594 D57F 9538 CFE5 4F06
549F 207C C968 C85C CA46
John Kristoff <jtk@depaul.edu>
FIRST 2014
29