Differences

This shows you the differences between two versions of the page.

Link to this comparison view

connect:resources [2016/02/02 13:13] – [A Note of Caution] 127.0.0.1connect:resources [2022/05/08 11:42] (current) – external edit 127.0.0.1
Line 1: Line 1:
-{{ :cp-logo-100x33.png?nolink|}}+{{  :cp-logo-100x33.png?nolink&}} 
 ====== Resources ====== ====== Resources ======
  
-We are working on multi language resources like Slides, Guides and Flyers in order to make Cryptoparty more accessible to people that are not native English speakers or would prefer the resources in their own language.+We are working on multi language [[http://github.com/cryptoparty|resources]] like Slides, Guides and Flyers in order to make Cryptoparty more accessible to people that are not native English speakers or would prefer the resources in their own language.
  
 Here are some links to the resources made by our community which can be used below: Here are some links to the resources made by our community which can be used below:
  
-====Slides==== +^ Link                                                       ^ Comment                                                                                                                                                                   ^ 
-https://github.com/cryptoparty/slides+| [[https://github.com/cryptoparty/slides|Slides]]           | attempt to create a universal basic set of presentation slides to help teach basic concepts at CryptoParties                                                              | 
 +| [[https://github.com/cryptoparty/artwork|Artwork]]         | collection of public domain artwork and graphics, where possible, with source files to help others remix and reuse to make slides, handouts and flyers for CryptoParties 
 +| [[https://github.com/cryptoparty/handouts|Handouts]]       | collection of handouts and, where possible, their source files to help others make new CryptoParty handouts                                                               | 
 +| [[https://github.com/cryptoparty/flyers|Flyers]]           | flyers and, where possible, their source files to help others make new CryptoParty flyers                                                                                 | 
 +| [[https://github.com/cryptoparty/stickers|Stickers]]       | a collection of stickers and, where possible, their source files to help others make new cryptoparty flyers                                                               | 
 +| [[https://peter.tono.li/en/peters-blog/cryptoparty|Tips]]  | Tips on hosting a CryptoParty                                                                                                                                             |
  
-This repo is an attempt to create a universal basic set of presentation slides to help teach basic concepts at Cryptoparties.+\\
  
-====Artwork==== 
-https://github.com/cryptoparty/artwork 
  
-This repo is a collection of public domain artwork and graphics, where possible, with source files to help others remix and reuse to make slides, handouts and flyers for cryptoparties +==== old stuff below ====
- +
-====Handouts==== +
- +
-https://github.com/cryptoparty/handouts +
- +
-This repo is a collection of handouts and, where possible, their source files to help others make new cryptoparty handouts. +
-====Flyers==== +
-https://github.com/cryptoparty/flyers +
- +
-A collection of flyers and, where possible, their source files to help others make new cryptoparty flyers +
- +
-====old stuff below==== +
- +
- +
-“In order to make sure the mobile phone frequencies are not being tracked, I would fill up a washbasin with water and put the lid of a rice cooker over my head while I made a phone call. I don’t know if it worked or not, but I was never caught.” -- [[http://www.bbc.co.uk/news/technology-20445632|North Korean]] +
  
 +“In order to make sure the mobile phone frequencies are not being tracked, I would fill up a washbasin with water and put the lid of a rice cooker over my head while I made a phone call. I don’t know if it worked or not, but I was never caught.” – [[http://www.bbc.co.uk/news/technology-20445632|North Korean]]
  
 ====== A Note of Caution ====== ====== A Note of Caution ======
Line 43: Line 33:
   * [[https://freedom.press/encryption-works|"Encryption Works: How to Protect Your Privacy in the Age of NSA Surveillance"]] by Freedom of the Press Foundation   * [[https://freedom.press/encryption-works|"Encryption Works: How to Protect Your Privacy in the Age of NSA Surveillance"]] by Freedom of the Press Foundation
   * [[https://securityinabox.org/en|Security in-a-box]] by Front Line Defenders and Tactical Technology Collective   * [[https://securityinabox.org/en|Security in-a-box]] by Front Line Defenders and Tactical Technology Collective
-  * https://cpj.org/reports/2012/04/technology-security.php+  * [[https://cpj.org/reports/2012/04/technology-security.php|https://cpj.org/reports/2012/04/technology-security.php]]
  
 That said, your privacy is already more configurable than you might think… That said, your privacy is already more configurable than you might think…
Line 66: Line 56:
 ===== Risk Analysis ===== ===== Risk Analysis =====
  
-Committee to Protect Journalists [[http://cpj.org/reports/2012/04/information-security.php#1|Journalists Security Guide - Information Security]] by [[https://en.wikipedia.org/wiki/Danny_O%27Brien|Danny O’Brien]] - hopefully a CryptoParty will clearly explain most of the software and techniques mentioned in this guide. +Committee to Protect Journalists [[http://cpj.org/reports/2012/04/information-security.php#1|Journalists Security Guide - Information Security]] by [[https://en.wikipedia.org/wiki/Danny_O'Brien|Danny O’Brien]] - hopefully a CryptoParty will clearly explain most of the software and techniques mentioned in this guide.
- +
-//Your emphasis should be on simplicity. There’s no point in surrounding yourself with computer security that you don’t use, or that fails to address a weaker link elsewhere. Take advantage of what you know well: the people who are most likely to take offense or otherwise target your work, and what they may be seeking to obtain or disrupt. Use that knowledge to determine what you need to protect and how. +
- +
-Ask yourself: What information should I protect? What data is valuable to me or a potential adversary? It might not be what you think of at first. Many journalists feel that what they are doing is largely transparent, and that they have nothing to hide. But think about the dangers to sources if the information they have provided to you was more widely known. What may seem innocuous personal information to you might be incriminatory to others.//+
  
 +//Your emphasis should be on simplicity. There’s no point in surrounding yourself with computer security that you don’t use, or that fails to address a weaker link elsewhere. Take advantage of what you know well: the people who are most likely to take offense or otherwise target your work, and what they may be seeking to obtain or disrupt. Use that knowledge to determine what you need to protect and how. Ask yourself: What information should I protect? What data is valuable to me or a potential adversary? It might not be what you think of at first. Many journalists feel that what they are doing is largely transparent, and that they have nothing to hide. But think about the dangers to sources if the information they have provided to you was more widely known. What may seem innocuous personal information to you might be incriminatory to others.//
  
 ===== Kerckhoffs's principle ===== ===== Kerckhoffs's principle =====
  
-A cryptosystem should be secure even if everything about the system, except the key, is public knowledge. ([[https://en.wikipedia.org/wiki/Kerckhoffs%27s_principle|Kerckhoffs's principle]])+A cryptosystem should be secure even if everything about the system, except the key, is public knowledge. ([[https://en.wikipedia.org/wiki/Kerckhoffs's_principle|Kerckhoffs's principle]])
  
 This principle should apply to all of the tools and resources mentioned on this page. This principle should apply to all of the tools and resources mentioned on this page.
Line 81: Line 68:
 ===== Public Key Cryptography ===== ===== Public Key Cryptography =====
  
-[[https://en.wikipedia.org/wiki/Public-key_cryptography|Public Key Cryptography]] has only become practical with the use of computers. It offers a mathematically secure way of sending encrypted messages or files between computers and their users, without necessarily having to set up a separate [[https://en.wikipedia.org/wiki/Secure_channel | Secure Channel]] e.g. a face to face meeting, to agree upon or exchange the secret key to the cryptographic algorithm they are using to protect the privacy of the message or data from snoopers.+[[https://en.wikipedia.org/wiki/Public-key_cryptography|Public Key Cryptography]] has only become practical with the use of computers. It offers a mathematically secure way of sending encrypted messages or files between computers and their users, without necessarily having to set up a separate [[https://en.wikipedia.org/wiki/Secure_channel| Secure Channel]] e.g. a face to face meeting, to agree upon or exchange the secret key to the cryptographic algorithm they are using to protect the privacy of the message or data from snoopers.
  
 Public Key Cryptography also offers a method of detecting attempts at forgery through the use of [[https://en.wikipedia.org/wiki/Digital_Signature|Digital Signatures]]. Public Key Cryptography also offers a method of detecting attempts at forgery through the use of [[https://en.wikipedia.org/wiki/Digital_Signature|Digital Signatures]].
Line 90: Line 77:
   * There is an excellent visual explanation of [[http://en.wikipedia.org/wiki/Diffie-Hellman_key_exchange|Diffie-Hellman key exchange]] on [[https://www.youtube.com/watch?feature=player_detailpage&v=YEBfamv-_do#t=126s|YouTube]].   * There is an excellent visual explanation of [[http://en.wikipedia.org/wiki/Diffie-Hellman_key_exchange|Diffie-Hellman key exchange]] on [[https://www.youtube.com/watch?feature=player_detailpage&v=YEBfamv-_do#t=126s|YouTube]].
   * Slides: [[https://github.com/micahflee/slides/blob/master/2012/10/oakland_cryptoparty_intro_to_public_key_crypto.pdf?raw=true|Introduction to Public Key Cryptography]] from CryptoParty Oakland (U.S.) via @micahflee   * Slides: [[https://github.com/micahflee/slides/blob/master/2012/10/oakland_cryptoparty_intro_to_public_key_crypto.pdf?raw=true|Introduction to Public Key Cryptography]] from CryptoParty Oakland (U.S.) via @micahflee
- 
  
 ===== Why there is no 100% anonymity ===== ===== Why there is no 100% anonymity =====
  
-  * **People make mistakes** and even the slightest mistake will break the "completeness" of anonymity. (e.g. simply forgetting to turn a proxy on or meantioning the weather) +  * **People make mistakes**  and even the slightest mistake will break the "completeness" of anonymity. (e.g. simply forgetting to turn a proxy on or mentioning the weather) 
-  * **Behavior can be analyzed** (e.g. slang and idioms may locate you). +  * **Behavior can be analyzed**  (e.g. slang and idioms may locate you). 
-  * **Behavior can be correlated** (e.g when you are home vs online) +  * **Behavior can be correlated**  (e.g when you are home vs online) 
-  * You have to connect somehow. Everything between your body and **your means of anonymity is exposed**. (e.g if you're using tor, //what// you do while using tor may be hidden - that you are //using// tor not, however) +  * You have to connect somehow. Everything between your body and **your means of anonymity is exposed**. (e.g if you're using tor, //what//  you do while using tor may be hidden - that you are //using//  tor not, however) 
-  * Some **offline threat** may out you. (e.g. [[https://en.wikipedia.org/wiki/Rubber-hose_cryptanalysis|Rubber-hose cryptanalysis]])+  * Some **offline threat**  may out you. (e.g. [[https://en.wikipedia.org/wiki/Rubber-hose_cryptanalysis|Rubber-hose cryptanalysis]]) 
 + 
 +\\