Edward Snowden wrote an op-ed in the New York Times where he argues that people are finally starting to care about privacy and preventing global surveillance. And though we care more, we also feel more powerless, according to a recent survey.
link rodeo
Security Link Rodeo: Silk Road, the Patriot Act, Alan Turing, and Your Passwords
The man behind the Silk Road, Ross Ulbricht, received a life sentence after being convicted of money laundering and drug trafficking. It’s estimated that he made around $18 million on the website, which ran as a hidden service in the Tor network. Some of the operators for the Silk Road argue that it was a haven for libertarian philosophy, but does that really excuse the amount of damage they enabled? The Economist notes that since the Silk Road fell, illegal drug sales on the Internet have doubled.
Security Link Rodeo: The Patriot Act, Logjam, and Hacked Websites
Kind of good news: Senators Ron Wyden and Rand Paul teamed up to squash the Patriot Act extension. It’s going to expire on June 1st unless another vote is called on the 31st. The USA Freedom Act (which I think is good?) unfortunately didn’t make it through Senate, either.
Objected to extending the Patriot Act #EndThisDragnet
— Ron Wyden (@RonWyden) May 23, 2015
Regarding the Logjam vulnerability that I mentioned last week, if you’ve got a cloud server and you’re generating new Diffie-Hellman parameters, make sure you’ve got good random numbers! Digital Ocean has advice on generating sufficient random data on cloud servers. The short version is that you should be running haveged on all of your servers.
Regarding #LOGJAM, I wonder how many people are generating new 2048 bit primes on virtual machines with bad RNG right now.
— π ³π °π π Έπ ³ π ·π Ύπ »π Όπ ΄π (@capmblade) May 22, 2015
Security Link Rodeo
My four-week History of Cryptography class at Portland Underground Grad School is almost over. While I’ve had plenty of experience with speaking to audiences about difficult subjects, this has been my first time with an ongoing class. I think I’m learning as much as my students! Because this class has helped rekindle my passion for cryptography and computer security, this link rodeo is going to focus on those subjects.