The praise of GnuPG @31C3
Nicolai Josuttis
nico at josuttis.de
Wed Dec 31 16:55:07 CET 2014
Disclaimer:
Sorry guys, I first wrote these emails as part of another thread.
(Not enough sleep over the last days of 31C3 ...)
But because IMO this is something important for this list,
please allow me to redistribute it as separate thread, again.
For those who didn't have time to see it yet,
there was an important talk at 31C3
about the social and technical status and consequences of
encryption by Jacob Applebaum and Laura Poitras.
As a side effect it covers GnuPG significantly.
So, please watch it completely at:
> http://media.ccc.de/browse/congress/2014/31c3_-_6258_-_en_-_saal_1_-_201412282030_-_reconstructing_narratives_-_jacob_-_laura_poitras.html#video:43:10
For those not having enough time let me point out and quote some content
from the talk with the timepoints in the video
to be able to see/hear/double-check it yourself.
I also added sometime some add-ons in [...] to understand the context.
All quotes except the last are by Jacob Appelbaum.
[26:33]:
PPTP, ipsec, SSL, TLS, SSH are broken by NSA
[31:23]:
we found that they [NSA] consistently break various different
types of encryption
[33:40]:
we want to show one PRISM record
(the record contains:
"no decrypt available for this OTR encrypted message")
[34:22]:
basically everyone that uses cryptography is broken
except for two things: OTR and PGP ([36:06])
[37:08]:
the sad part is that not everyone is using it
but the good news is that when you use it it appears to work
(when you verified the fingerprint for example)
[37:38]:
they [NSA] themselves find that they are blinded
when you use properly implemented cryptography.
[37:46]:
GnuPG and OTR are two things that actually stop the spies
from spying on you with PRISM
[40:11]:
if you use redphone and signal,
if you use something like TOR and GnuPG
with a properly sized key ...
if you use OTR
if you use jabber.ccc.de ...
if you use encontered together
you blind them
[42:41]:
Werner Koch [GnuPG], ... could you stand up?
...
Ian Goldberg [OTR], ...
...
Christine Corbett [Signal],
stand up and keep standing!
...
These people without even knowing it and without
even trying they beat them!
43:55 :
Laura Poitras:
Last night I screened my film Citizenfour here ...
Somebody ask what an they do to support the work that Snowden has done
and the Journalists.
...
Everybody should fund the work that you guys do ...
because literally, my work would not be possible without
the work that you do.
So, I would like it if everybody in this room when they leave here
in the next week to reach out and fund these projects
because without these projects the journalism
that Glenn [Greenwald] and I and Jake have done
would literally not be possible
--
Nicolai M. Josuttis
www.josuttis.de
PGP Fingerprint: EA25 EF48 BF20 01E4 1FAB 0C1C DEF9 FC80 8A1C 44D0
More information about the Gnupg-users
mailing list