diff options
Diffstat (limited to 'slides/2018-ct-intro')
38 files changed, 596 insertions, 0 deletions
diff --git a/slides/2018-ct-intro/README b/slides/2018-ct-intro/README new file mode 100644 index 0000000..3e18970 --- /dev/null +++ b/slides/2018-ct-intro/README @@ -0,0 +1 @@ +Intro to CT when Tobias and I was doing a few guest lectures at Soleil IT. diff --git a/slides/2018-ct-intro/beamercolorthemergd.sty b/slides/2018-ct-intro/beamercolorthemergd.sty new file mode 100644 index 0000000..74ced1c --- /dev/null +++ b/slides/2018-ct-intro/beamercolorthemergd.sty @@ -0,0 +1,24 @@ +\mode<presentation> + +%%% +% Color definitions +%%% +\RequirePackage{xcolor} +\definecolor{rgdGreen}{RGB}{33,114,106} +\definecolor{rgdYellow}{RGB}{255,210,4} +\definecolor{rgdOrange}{RGB}{232,114,12} +\colorlet{rgdGray}{gray!33} +\colorlet{rgdBlack}{black} + +%%% +% Beamer colors +%%% +\setbeamercolor*{titlepage}{fg=rgdBlack} +\setbeamercolor*{author}{fg=rgdGreen} +\setbeamercolor*{date}{fg=black} +\setbeamercolor*{header}{bg=rgdYellow,fg=black} +\setbeamercolor*{trailer}{bg=rgdGray,fg=black} +\setbeamercolor*{item}{fg=rgdGreen} +\setbeamercolor*{alerted text}{fg=rgdGreen} + +\mode<all> diff --git a/slides/2018-ct-intro/beamerfontthemergd.sty b/slides/2018-ct-intro/beamerfontthemergd.sty new file mode 100644 index 0000000..a6d212c --- /dev/null +++ b/slides/2018-ct-intro/beamerfontthemergd.sty @@ -0,0 +1,9 @@ +\mode<presentation> + +\setbeamerfont{title}{size=\large,shape=\bfseries} +\setbeamerfont{subtitle}{size=\normalsize,shape=\bfseries} +\setbeamerfont{frametitle}{size=\large,shape=\bfseries} +\setbeamerfont{institute}{size=\small} +\setbeamerfont{date}{size=\small} + +\mode<all> diff --git a/slides/2018-ct-intro/beamerinnerthemergd.sty b/slides/2018-ct-intro/beamerinnerthemergd.sty new file mode 100644 index 0000000..0d49176 --- /dev/null +++ b/slides/2018-ct-intro/beamerinnerthemergd.sty @@ -0,0 +1,43 @@ +\mode<presentation> + +%%% +% Title page +%%% +\defbeamertemplate*{title page}{rgd}[1][]{ + \begin{tikzpicture}[remember picture, overlay] + \usebeamercolor{titlepage} + % Add top-left triangle with university logo + \filldraw[draw=rgdGray,fill=rgdGray] + (current page.north west) -- + (current page.north) -- + node[draw=none,pos=0.5](Logo){\includegraphics[width=3cm]{img/logo}} + (current page.west) -- + (current page.north west); + % Add title + \node[ + text=fg, + text width=0.75\paperwidth, + ] (Title) at ([shift={(0,-0.5cm)}]current page){% + \centering\usebeamerfont{title}\inserttitle\\% + }; + % Add subtitle + \node[ + text=fg, + text width=0.75\paperwidth, + below=0pt of Title, + ] (Subtitle) {% + \centering\usebeamerfont{subtitle}\insertsubtitle\\% + }; + % Add authors + \usebeamercolor{author} + \node[ + text=fg, + text width=0.75\paperwidth, + below=12pt of Subtitle, + ] (Author) {% + \centering\usebeamerfont{author}\insertauthor\\% + }; + \end{tikzpicture} +} + +\mode<all> diff --git a/slides/2018-ct-intro/beamerouterthemergd.sty b/slides/2018-ct-intro/beamerouterthemergd.sty new file mode 100644 index 0000000..ba757c6 --- /dev/null +++ b/slides/2018-ct-intro/beamerouterthemergd.sty @@ -0,0 +1,66 @@ +\mode<presentation> + +%%% +% Frame header +%%% +\defbeamertemplate*{frametitle}{corporate}[1][]{% + \nointerlineskip + % Add frame title + \begin{beamercolorbox}[ + wd=\paperwidth, + ht=3ex, + dp=1.5ex, + left, + leftskip=2ex + ]{header} + \insertframetitle + \end{beamercolorbox} + % Add line after header + \nointerlineskip + \begin{beamercolorbox}[ + wd=\paperwidth, + ht=0.25ex + ]{trailer} + \end{beamercolorbox}% +} + +%%% +% Frame trailer +%%% +\defbeamertemplate*{footline}{corporate}{% + \hbox{% + % Add mail + \begin{beamercolorbox}[ + wd=0.22\paperwidth, + ht=2ex, + dp=0.5ex, + left, + leftskip=2ex + ]{trailer} + \texttt{rasmus.dahlberg@kau.se} + \end{beamercolorbox}% + % Add author + \begin{beamercolorbox}[ + wd=0.73\paperwidth, + ht=2ex, + dp=0.5ex, + left, + leftskip=2ex + ]{header} + %\insertauthor + \inserttitle + \end{beamercolorbox}% + % Add page counter + \begin{beamercolorbox}[ + wd=0.05\paperwidth, + ht=2ex, + dp=0.5ex, + right, + rightskip=1ex + ]{header} + \insertframenumber/\inserttotalframenumber + \end{beamercolorbox}% + } +} + +\mode<all> diff --git a/slides/2018-ct-intro/beamerthemergd.sty b/slides/2018-ct-intro/beamerthemergd.sty new file mode 100644 index 0000000..022ef2c --- /dev/null +++ b/slides/2018-ct-intro/beamerthemergd.sty @@ -0,0 +1,23 @@ +\mode<presentation> + +%%% +% Load beamer settings +%%% +\usecolortheme{rgd} +\usefonttheme{rgd} +\useinnertheme{rgd} +\useoutertheme{rgd} + +%%% +% Disable navigation tools on slides +%%% +\setbeamertemplate{navigation symbols}{} + +%%% +% Object styles +%%% +\setbeamertemplate{itemize item}[square] +\setbeamertemplate{itemize subitem}[default] +\setbeamertemplate{sections/subsections in toc}[square] + +\mode<all> diff --git a/slides/2018-ct-intro/img/apple-logo.png b/slides/2018-ct-intro/img/apple-logo.png Binary files differnew file mode 100644 index 0000000..2bdfbab --- /dev/null +++ b/slides/2018-ct-intro/img/apple-logo.png diff --git a/slides/2018-ct-intro/img/ca-mess.pdf b/slides/2018-ct-intro/img/ca-mess.pdf Binary files differnew file mode 100644 index 0000000..44b963a --- /dev/null +++ b/slides/2018-ct-intro/img/ca-mess.pdf diff --git a/slides/2018-ct-intro/img/chrome-cert.png b/slides/2018-ct-intro/img/chrome-cert.png Binary files differnew file mode 100644 index 0000000..32e1c5c --- /dev/null +++ b/slides/2018-ct-intro/img/chrome-cert.png diff --git a/slides/2018-ct-intro/img/chrome-http.png b/slides/2018-ct-intro/img/chrome-http.png Binary files differnew file mode 100644 index 0000000..284ab02 --- /dev/null +++ b/slides/2018-ct-intro/img/chrome-http.png diff --git a/slides/2018-ct-intro/img/chrome-https.png b/slides/2018-ct-intro/img/chrome-https.png Binary files differnew file mode 100644 index 0000000..e3d26f0 --- /dev/null +++ b/slides/2018-ct-intro/img/chrome-https.png diff --git a/slides/2018-ct-intro/img/chrome-logo.png b/slides/2018-ct-intro/img/chrome-logo.png Binary files differnew file mode 100644 index 0000000..070e192 --- /dev/null +++ b/slides/2018-ct-intro/img/chrome-logo.png diff --git a/slides/2018-ct-intro/img/ct.png b/slides/2018-ct-intro/img/ct.png Binary files differnew file mode 100644 index 0000000..10267e7 --- /dev/null +++ b/slides/2018-ct-intro/img/ct.png diff --git a/slides/2018-ct-intro/img/firefox-logo.png b/slides/2018-ct-intro/img/firefox-logo.png Binary files differnew file mode 100644 index 0000000..9ebb106 --- /dev/null +++ b/slides/2018-ct-intro/img/firefox-logo.png diff --git a/slides/2018-ct-intro/img/le.png b/slides/2018-ct-intro/img/le.png Binary files differnew file mode 100644 index 0000000..b7f89d9 --- /dev/null +++ b/slides/2018-ct-intro/img/le.png diff --git a/slides/2018-ct-intro/img/logo.png b/slides/2018-ct-intro/img/logo.png Binary files differnew file mode 100755 index 0000000..0c7c885 --- /dev/null +++ b/slides/2018-ct-intro/img/logo.png diff --git a/slides/2018-ct-intro/img/monitor-comodo.png b/slides/2018-ct-intro/img/monitor-comodo.png Binary files differnew file mode 100644 index 0000000..23484f5 --- /dev/null +++ b/slides/2018-ct-intro/img/monitor-comodo.png diff --git a/slides/2018-ct-intro/img/monitor-facebook.png b/slides/2018-ct-intro/img/monitor-facebook.png Binary files differnew file mode 100644 index 0000000..68f62c4 --- /dev/null +++ b/slides/2018-ct-intro/img/monitor-facebook.png diff --git a/slides/2018-ct-intro/img/monitor-facebook2.png b/slides/2018-ct-intro/img/monitor-facebook2.png Binary files differnew file mode 100644 index 0000000..e540815 --- /dev/null +++ b/slides/2018-ct-intro/img/monitor-facebook2.png diff --git a/slides/2018-ct-intro/img/monitor-sslmate.png b/slides/2018-ct-intro/img/monitor-sslmate.png Binary files differnew file mode 100644 index 0000000..8640a04 --- /dev/null +++ b/slides/2018-ct-intro/img/monitor-sslmate.png diff --git a/slides/2018-ct-intro/img/padlock.pdf b/slides/2018-ct-intro/img/padlock.pdf Binary files differnew file mode 100644 index 0000000..b902e72 --- /dev/null +++ b/slides/2018-ct-intro/img/padlock.pdf diff --git a/slides/2018-ct-intro/img/qleft.pdf b/slides/2018-ct-intro/img/qleft.pdf Binary files differnew file mode 100644 index 0000000..f35a078 --- /dev/null +++ b/slides/2018-ct-intro/img/qleft.pdf diff --git a/slides/2018-ct-intro/img/qright.pdf b/slides/2018-ct-intro/img/qright.pdf Binary files differnew file mode 100644 index 0000000..da2e8e3 --- /dev/null +++ b/slides/2018-ct-intro/img/qright.pdf diff --git a/slides/2018-ct-intro/img/roadmap.pdf b/slides/2018-ct-intro/img/roadmap.pdf Binary files differnew file mode 100644 index 0000000..867fb20 --- /dev/null +++ b/slides/2018-ct-intro/img/roadmap.pdf diff --git a/slides/2018-ct-intro/img/take-away.pdf b/slides/2018-ct-intro/img/take-away.pdf new file mode 100644 index 0000000..7d3b190 --- /dev/null +++ b/slides/2018-ct-intro/img/take-away.pdf @@ -0,0 +1,68 @@ +%PDF-1.4 +% +3 0 obj +<< /Length 4 0 R + /Filter /FlateDecode +>> +stream +xmA0"
>R#$E{rGyC\`;㻨(dUt0f-TA7
Tx1f՚;"*4{~M7$ +endstream +endobj +4 0 obj + 118 +endobj +2 0 obj +<< + /ExtGState << + /a0 << /CA 1 /ca 1 >> + >> +>> +endobj +5 0 obj +<< /Type /Page + /Parent 1 0 R + /MediaBox [ 0 0 12.8 12.8 ] + /Contents 3 0 R + /Group << + /Type /Group + /S /Transparency + /I true + /CS /DeviceRGB + >> + /Resources 2 0 R +>> +endobj +1 0 obj +<< /Type /Pages + /Kids [ 5 0 R ] + /Count 1 +>> +endobj +6 0 obj +<< /Creator (cairo 1.14.0 (http://cairographics.org)) + /Producer (cairo 1.14.0 (http://cairographics.org)) +>> +endobj +7 0 obj +<< /Type /Catalog + /Pages 1 0 R +>> +endobj +xref +0 8 +0000000000 65535 f +0000000520 00000 n +0000000232 00000 n +0000000015 00000 n +0000000210 00000 n +0000000304 00000 n +0000000585 00000 n +0000000712 00000 n +trailer +<< /Size 8 + /Root 7 0 R + /Info 6 0 R +>> +startxref +764 +%%EOF diff --git a/slides/2018-ct-intro/img/ty.pdf b/slides/2018-ct-intro/img/ty.pdf Binary files differnew file mode 100644 index 0000000..9ad4dc8 --- /dev/null +++ b/slides/2018-ct-intro/img/ty.pdf diff --git a/slides/2018-ct-intro/main.tex b/slides/2018-ct-intro/main.tex new file mode 100644 index 0000000..f03c3ed --- /dev/null +++ b/slides/2018-ct-intro/main.tex @@ -0,0 +1,22 @@ +\pdfminorversion=4 +\documentclass[aspectratio=169]{beamer} +\usetheme{rgd} + +\input{src/preamble} + +\title{% + An Introduction to Certificate Transparency +} +%\subtitle{% +%} +\author{% + Rasmus Dahlberg and Tobias Pulls +} +\institute{% + Karlstad University +} +\date{% +} +\begin{document} + \input{src/body} +\end{document} diff --git a/slides/2018-ct-intro/makefile b/slides/2018-ct-intro/makefile new file mode 100644 index 0000000..b42d0ec --- /dev/null +++ b/slides/2018-ct-intro/makefile @@ -0,0 +1,25 @@ +.PHONY: clean tidy open + +MAIN = main + +TEX_SRC = src/$(wildcard:.tex) +TEX_IMG = \ + img/$(wildcard:.jpg) \ + img/$(wildcard:.tex) \ + img/$(wildcard:.pdf) \ + img/$(wildcard:.png) +TEX = \ + $(TEX_SRC) $(TEX_IMG) $(MAIN).tex + +$(MAIN).pdf: $(TEX) + pdflatex $(MAIN) + @pdflatex $(MAIN) + +open: $(MAIN).pdf + okular $(MAIN).pdf & + +tidy: + rm -rf *.nav *.out *.log *.aux *.toc *.snm + +clean: + rm -rf *.nav *.out *.log *.aux *.toc *.snm $(MAIN).pdf diff --git a/slides/2018-ct-intro/slides.pdf b/slides/2018-ct-intro/slides.pdf Binary files differnew file mode 100644 index 0000000..a46aec6 --- /dev/null +++ b/slides/2018-ct-intro/slides.pdf diff --git a/slides/2018-ct-intro/src/background.tex b/slides/2018-ct-intro/src/background.tex new file mode 100644 index 0000000..a61d205 --- /dev/null +++ b/slides/2018-ct-intro/src/background.tex @@ -0,0 +1,55 @@ +\begin{frame} + \frametitle{How is trust established on the web?} + \centering + \includegraphics<1>[height=0.85\textheight]{img/chrome-http} + \includegraphics<2>[height=0.85\textheight]{img/chrome-https} +\end{frame} + +\begin{frame} + \frametitle{What is the meaning of the padlock?} + \begin{columns} + \begin{column}{0.69\textwidth} + \begin{description} + \item[\tyes] Communication is encrypted + \item[\tyes] Communication is not tampered with + \item[\tyes] Server identity is verified + \end{description} + \end{column} + \begin{column}{0.29\textwidth} + \centering + \includegraphics[width=0.9\textwidth]{img/padlock} + \end{column} + \end{columns} +\end{frame} + +\begin{frame} + \frametitle{Server verification relies on certificate issuance} + \centering + \includegraphics[height=0.85\textheight]{img/chrome-cert} +\end{frame} + +\begin{frame} + \frametitle{Tracking certificate issuance is a mess} + \centering + \includegraphics[height=0.8\textheight,width=0.7\textwidth]{img/ca-mess} + \scriptsize{\url{https://www.eff.org/files/colour_map_of_cas.pdf}} +\end{frame} + +\begin{frame} + \frametitle{Certificate issuance gone wrong...} + \centering + \begin{tabular}{cc|l} + Year & Issuer & Mis-issued certificates affected e.g. \\ + \toprule + 2010 & Versign & Unkown \\ + 2011 & Comodo & Google, Mozilla, Yahoo \\ + 2011 & DigiNotar & Google\footnote{These certificates were used to attack $\approx100,000$ gmail users in Iran}, Skype, Tor... \\ + 2012 & Trustwave & Enterprise employees \\ + 2012 & T\"{u}rkTrust & Google \\ + 2013 & ANSSI & Google \\ + 2013 & Thawte & Google \\ + 2016 & Let's Encrypt & Facebook \\ + ... & ... & ... \\ + \end{tabular} +\end{frame} + diff --git a/slides/2018-ct-intro/src/body.tex b/slides/2018-ct-intro/src/body.tex new file mode 100644 index 0000000..f3f6842 --- /dev/null +++ b/slides/2018-ct-intro/src/body.tex @@ -0,0 +1,7 @@ +\input{src/titlepage} +\input{src/outline} +\input{src/background} +\input{src/ct} +\input{src/your-role} +\input{src/take-away} +\input{src/questions} diff --git a/slides/2018-ct-intro/src/ct.tex b/slides/2018-ct-intro/src/ct.tex new file mode 100644 index 0000000..88496a3 --- /dev/null +++ b/slides/2018-ct-intro/src/ct.tex @@ -0,0 +1,77 @@ +\begin{frame} + \frametitle{Certificate Transparency (CT) to the resque} + \centering + \begin{columns} + \begin{column}{0.55\textwidth} + \begin{itemize} + \item Publicly log all certificates + \item Clients require proof of logging + \item Anyone can inspect the logs + \item Goal is to \alert{detect} mis-issuance + \end{itemize} + \end{column} + \begin{column}{0.49\textwidth} + \includegraphics[width=\textwidth]{img/ct} + \end{column} + \end{columns} + \vfill + \scriptsize{\url{https://www.certificate-transparency.org/what-is-ct}} +\end{frame} + +\begin{frame} + \frametitle{Adoption status of CT among common platforms} + \begin{columns} + \begin{column}{0.33\textwidth} + \centering + \includegraphics[width=0.75\textwidth]{img/chrome-logo} + \\incrementally + \end{column} + \begin{column}{0.33\textwidth} + \centering + \includegraphics[width=0.75\textwidth]{img/apple-logo} + \\incrementally soon + \end{column} + \begin{column}{0.33\textwidth} + \centering + \includegraphics[width=0.75\textwidth]{img/firefox-logo} + \\unclear + \end{column} + \end{columns} + + \vfill + \begin{itemize} + \item Clients require at least two promises of log inclusion + \item Log is trusted until auditing hits deployment + \end{itemize} +\end{frame} + +\begin{frame} + \frametitle{Who are the log operators?} + \centering + \begin{columns} + \begin{column}{0.59\textwidth} + \begin{itemize} + \item Google Chrome includes 27 different CT logs + \item Three logs found cheating while auditing (mistakes) + \begin{itemize} + \item Same key for test and production log (Izenpe) + \item Time rollback after power outage (Venafi) + \item Invalid promises of log inclusion (Cloudflare) + \end{itemize} + \end{itemize} + \end{column} + \begin{column}{0.39\textwidth} + \begin{tabular}{c|c} + Log operator & Number of logs \\ + \toprule + DigiCert & 10 \\ + Google & 9 \\ + Cloudflare & 4 \\ + Comodo & 2 \\ + CNNIC & 1 \\ + Venafi & 1 \\ + \bottomrule + \end{tabular} + \end{column} + \end{columns} +\end{frame} diff --git a/slides/2018-ct-intro/src/outline.tex b/slides/2018-ct-intro/src/outline.tex new file mode 100644 index 0000000..6e47792 --- /dev/null +++ b/slides/2018-ct-intro/src/outline.tex @@ -0,0 +1,16 @@ +\begin{frame} + \frametitle{Outline} + \begin{columns} + \begin{column}{0.49\textwidth} + \begin{enumerate} + \item Background + \item Principles + \item Status quo + \item Your role + \end{enumerate} + \end{column} + \begin{column}{0.49\textwidth} + \includegraphics[width=0.5\textwidth]{img/roadmap} + \end{column} + \end{columns} +\end{frame} diff --git a/slides/2018-ct-intro/src/preamble.tex b/slides/2018-ct-intro/src/preamble.tex new file mode 100644 index 0000000..6905b0f --- /dev/null +++ b/slides/2018-ct-intro/src/preamble.tex @@ -0,0 +1,62 @@ +%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% +% Packages % +%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% +\usepackage[ + lambda, advantage, operators, sets, adversary, landau, probability, notions, + logic, ff, mm, primitives, events, complexity, asymptotics, keys +]{cryptocode} + +\usepackage{graphicx} +\usepackage{mathtools} +\usepackage{amsmath} +\usepackage{amssymb} +\usepackage{flowchart} +\usepackage{pifont} +\usepackage{graphicx} +\usepackage{color} +\usepackage{tikz} +\usepackage{tikz-qtree} +\usetikzlibrary{ + shapes.misc,% + positioning,% + arrows,% + snakes,% + calc,% + shadows,% + shapes.arrows,% + fit,% + backgrounds,% +} +\usepackage{booktabs} +\usepackage{smartdiagram} +%\usepackage[position=bottom]{subfig} % environment for nested figures + +\usepackage{xcolor} +\definecolor{darkGreen}{HTML}{008000} +\definecolor{darkBlue}{HTML}{2809B2} +\definecolor{darkRed}{HTML}{CC0000} +\definecolor{darkGray}{HTML}{808080} +\definecolor{darkOrange}{HTML}{D77D00} +\definecolor{darkPurple}{HTML}{800080} +\colorlet{lightGray}{gray!33} +\colorlet{lightYellow}{yellow!50} +\definecolor{darkGreen}{HTML}{008000} +\definecolor{darkBlue}{HTML}{2809B2} +\definecolor{darkRed}{HTML}{CC0000} + +% Figures, tables and code +\usepackage{booktabs} +\usepackage{colortbl} +\usepackage{flowchart} +\usepackage{adjustbox} +\usepackage{listings} + +%\setbeamertemplate{itemize item}[circle] +%\setbeamertemplate{itemize subitem}[default] +%\setbeamertemplate{caption}[numbered] + +%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% +% Defines % +%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% +\newcommand{\tyes}{\textcolor{darkGreen}{\ding{51}}} +\newcommand{\tno}{\textcolor{darkRed}{\ding{55}}} diff --git a/slides/2018-ct-intro/src/questions.tex b/slides/2018-ct-intro/src/questions.tex new file mode 100644 index 0000000..85cb2f3 --- /dev/null +++ b/slides/2018-ct-intro/src/questions.tex @@ -0,0 +1,17 @@ +\begin{frame} + \frametitle{Any questions?} \label{frm:que} + \begin{columns} + \begin{column}{0.49\textwidth} + \centering + \includegraphics[width=0.75\textwidth]{img/qleft} + \end{column} + \begin{column}{0.49\textwidth} + \centering + \includegraphics[width=0.75\textwidth]{img/qright} + \end{column} + \end{columns} + + \centering + \vspace{-1cm} + \includegraphics[width=0.20\textwidth]{img/ty} +\end{frame} diff --git a/slides/2018-ct-intro/src/take-away.tex b/slides/2018-ct-intro/src/take-away.tex new file mode 100644 index 0000000..448e1aa --- /dev/null +++ b/slides/2018-ct-intro/src/take-away.tex @@ -0,0 +1,24 @@ +\begin{frame} + \frametitle{Take away} + \begin{columns} + \begin{column}{0.69\textwidth} + \begin{itemize} + \item Certificate issuance has undergone a paradigm shift + \begin{itemize} + \item Automated and free certificates: Let's Encrypt + \item Transparency: CT, mandatory logging of certificates + \end{itemize} + \item CT does nothing for you without involvement + \begin{itemize} + \item Setup secure connections on your web services + \item Monitor domain names for mis-issued certificates + \end{itemize} + \end{itemize} + \end{column} + \begin{column}{0.29\textwidth} + \centering + \includegraphics[width=0.75\textwidth]{img/take-away} + \end{column} + \end{columns} + +\end{frame} diff --git a/slides/2018-ct-intro/src/titlepage.tex b/slides/2018-ct-intro/src/titlepage.tex new file mode 100644 index 0000000..9b18039 --- /dev/null +++ b/slides/2018-ct-intro/src/titlepage.tex @@ -0,0 +1,3 @@ +\begin{frame} + \titlepage +\end{frame} diff --git a/slides/2018-ct-intro/src/your-role.tex b/slides/2018-ct-intro/src/your-role.tex new file mode 100644 index 0000000..8ce8a65 --- /dev/null +++ b/slides/2018-ct-intro/src/your-role.tex @@ -0,0 +1,54 @@ +\begin{frame} + \frametitle{Ensure that your web solutions get the padlock} + \centering + \includegraphics[width=\textwidth]{img/le} + + \vfill + \begin{itemize} + \item There is a dedicated CT log for Let's Encrypt! + \end{itemize} +\end{frame} + +\begin{frame} + \frametitle{Inspect certificates interactively} + \centering + \includegraphics[width=\textwidth]{img/monitor-comodo} +\end{frame} + +\begin{frame} + \frametitle{Inspect certificates interactively (cont.)} + \centering + \includegraphics[height=0.85\textheight]{img/monitor-facebook2} +\end{frame} + +\begin{frame} + \frametitle{Sign up for certificate notifications} + \centering + \includegraphics[width=\textwidth]{img/monitor-facebook} +\end{frame} + +\begin{frame} + \frametitle{Sign up for certificate notifications (cont.)} + \centering + \includegraphics[width=\textwidth]{img/monitor-sslmate} +\end{frame} + +\begin{frame} + \frametitle{Get your hands dirty by running your own CT monitor} + \begin{itemize} + \item Continiously fetch certificates from all logs + \begin{itemize} + \item Rest API\footnote{ + \scriptsize{\url{https://tools.ietf.org/html/rfc6962}} + } + \item Certstream\footnote{% + \scriptsize{\url{https://github.com/CaliDog/certstream-server}} + } + \end{itemize} + \item Verify cryptographic properties + \begin{itemize} + \item Is yesterday's log included in today's log? + \item Are promises of inclusion honored? + \end{itemize} + \end{itemize} +\end{frame} |