diff options
Diffstat (limited to 'slides/2021-aha')
28 files changed, 1039 insertions, 0 deletions
diff --git a/slides/2021-aha/README b/slides/2021-aha/README new file mode 100644 index 0000000..e8027a5 --- /dev/null +++ b/slides/2021-aha/README @@ -0,0 +1 @@ +An internal talk I did at Mullvad VPN. diff --git a/slides/2021-aha/beamercolorthemergd.sty b/slides/2021-aha/beamercolorthemergd.sty new file mode 100644 index 0000000..74ced1c --- /dev/null +++ b/slides/2021-aha/beamercolorthemergd.sty @@ -0,0 +1,24 @@ +\mode<presentation> + +%%% +% Color definitions +%%% +\RequirePackage{xcolor} +\definecolor{rgdGreen}{RGB}{33,114,106} +\definecolor{rgdYellow}{RGB}{255,210,4} +\definecolor{rgdOrange}{RGB}{232,114,12} +\colorlet{rgdGray}{gray!33} +\colorlet{rgdBlack}{black} + +%%% +% Beamer colors +%%% +\setbeamercolor*{titlepage}{fg=rgdBlack} +\setbeamercolor*{author}{fg=rgdGreen} +\setbeamercolor*{date}{fg=black} +\setbeamercolor*{header}{bg=rgdYellow,fg=black} +\setbeamercolor*{trailer}{bg=rgdGray,fg=black} +\setbeamercolor*{item}{fg=rgdGreen} +\setbeamercolor*{alerted text}{fg=rgdGreen} + +\mode<all> diff --git a/slides/2021-aha/beamerfontthemergd.sty b/slides/2021-aha/beamerfontthemergd.sty new file mode 100644 index 0000000..a6d212c --- /dev/null +++ b/slides/2021-aha/beamerfontthemergd.sty @@ -0,0 +1,9 @@ +\mode<presentation> + +\setbeamerfont{title}{size=\large,shape=\bfseries} +\setbeamerfont{subtitle}{size=\normalsize,shape=\bfseries} +\setbeamerfont{frametitle}{size=\large,shape=\bfseries} +\setbeamerfont{institute}{size=\small} +\setbeamerfont{date}{size=\small} + +\mode<all> diff --git a/slides/2021-aha/beamerinnerthemergd.sty b/slides/2021-aha/beamerinnerthemergd.sty new file mode 100644 index 0000000..b96a415 --- /dev/null +++ b/slides/2021-aha/beamerinnerthemergd.sty @@ -0,0 +1,49 @@ +\mode<presentation> + +%%% +% Title page +%%% +\defbeamertemplate*{title page}{rgd}[1][]{ + \begin{tikzpicture}[remember picture, overlay] + \usebeamercolor{titlepage} + % Add top-left triangle with university logo + \filldraw[draw=rgdGray,fill=rgdGray] + (current page.north west) -- + (current page.north) -- + node[draw=none,pos=0.5](LogoMul){\includegraphics[width=3.5cm]{img/mullvad}} + (current page.west) -- + (current page.north west); + \filldraw[draw=rgdGray,fill=rgdGray] + (current page.north east) -- + (current page.north) -- + node[draw=none,pos=0.5](LogoKau){\includegraphics[width=3cm]{img/kau}} + (current page.east) -- + (current page.north east); + % Add title + \node[ + text=fg, + text width=0.75\paperwidth, + ] (Title) at ([shift={(0,-0.5cm)}]current page){% + \centering\usebeamerfont{title}\inserttitle\\% + }; + % Add date + \node[ + text=fg, + text width=0.75\paperwidth, + below=0pt of Title, + ] (Subtitle) {% + \centering\usebeamerfont{date}\today\\% + }; + % Add authors + \usebeamercolor{author} + \node[ + text=fg, + text width=0.75\paperwidth, + below=0pt of Subtitle, + ] (Author) {% + \centering\usebeamerfont{author}\insertauthor\\% + }; + \end{tikzpicture} +} + +\mode<all> diff --git a/slides/2021-aha/beamerouterthemergd.sty b/slides/2021-aha/beamerouterthemergd.sty new file mode 100644 index 0000000..45ba820 --- /dev/null +++ b/slides/2021-aha/beamerouterthemergd.sty @@ -0,0 +1,71 @@ +\mode<presentation> + +%%% +% Frame header +%%% +\defbeamertemplate*{frametitle}{corporate}[1][]{% + \nointerlineskip + % Add frame title + \begin{beamercolorbox}[ + wd=\paperwidth, + ht=3ex, + dp=1.5ex, + left, + leftskip=2ex + ]{header} + \insertframetitle + \end{beamercolorbox} + % Add line after header + \nointerlineskip + \begin{beamercolorbox}[ + wd=\paperwidth, + ht=0.25ex + ]{trailer} + \end{beamercolorbox}% +} + +%%% +% Frame trailer +%%% +\defbeamertemplate*{footline}{corporate}{% + \hbox{% + % Add metadata + \begin{beamercolorbox}[ + wd=0.50\paperwidth, + ht=2ex, + dp=0.5ex, + left, + leftskip=2ex + ]{trailer} + \href{https://rgdd.github.io}{rgdd.github.io} + $\cdots$ + \href{https://twitter.com/\_\_rgdd}{@\_\_rgdd} + $\cdots$ + \href{mailto:rasmus@mullvad.net}{rasmus@mullvad.net} + $\cdots$ + \href{mailto:rasmus.dahlberg@kau.se}{rasmus.dahlberg@kau.se} + \end{beamercolorbox}% + % Add title + \begin{beamercolorbox}[ + wd=0.45\paperwidth, + ht=2ex, + dp=0.5ex, + left, + leftskip=2ex + ]{header} + \inserttitle + \end{beamercolorbox}% + % Add page counter + \begin{beamercolorbox}[ + wd=0.05\paperwidth, + ht=2ex, + dp=0.5ex, + right, + rightskip=1ex + ]{header} + \insertframenumber/\inserttotalframenumber + \end{beamercolorbox}% + } +} + +\mode<all> diff --git a/slides/2021-aha/beamerthemergd.sty b/slides/2021-aha/beamerthemergd.sty new file mode 100644 index 0000000..022ef2c --- /dev/null +++ b/slides/2021-aha/beamerthemergd.sty @@ -0,0 +1,23 @@ +\mode<presentation> + +%%% +% Load beamer settings +%%% +\usecolortheme{rgd} +\usefonttheme{rgd} +\useinnertheme{rgd} +\useoutertheme{rgd} + +%%% +% Disable navigation tools on slides +%%% +\setbeamertemplate{navigation symbols}{} + +%%% +% Object styles +%%% +\setbeamertemplate{itemize item}[square] +\setbeamertemplate{itemize subitem}[default] +\setbeamertemplate{sections/subsections in toc}[square] + +\mode<all> diff --git a/slides/2021-aha/handout.pdf b/slides/2021-aha/handout.pdf Binary files differnew file mode 100644 index 0000000..e210a10 --- /dev/null +++ b/slides/2021-aha/handout.pdf diff --git a/slides/2021-aha/img/after.tex b/slides/2021-aha/img/after.tex new file mode 100644 index 0000000..c2af725 --- /dev/null +++ b/slides/2021-aha/img/after.tex @@ -0,0 +1,70 @@ +\begin{tikzpicture}[ + -latex, + entity/.style = { + draw = gray!30, + thick, + rounded rectangle, + fill = white, + minimum width = 2cm, + font = \fontsize{8}{8}\selectfont, + text = white, + }, + relation/.style = { + draw = none, + font = \fontsize{6}{6}\selectfont, + }, + path/.style = { + draw, + thick, + -latex, + }, +] + \node[entity, fill=darkBlue] (Publisher) at (0,0) { Publisher }; + \node[entity, fill=darkGreen, below=1.5cm of Publisher] (EndUser) {End-user}; + \node[entity, fill=darkOrange, left=1.5cm of Publisher] (Log) {Log}; + \node[entity, fill=darkRed, below=1.5cm of Log] (Witness) {Witness}; + + % Key setup + \path[path, dashed] ($ (EndUser) + (2,0) $) -- + node[relation, above] { Public keys } + (EndUser); + % Get data and signature + \path[path] (Publisher) -- + node[relation, right] { + \begin{tabular}{c} + Opaque data\\ + Signature\\ + Proofs of logging\\ + \end{tabular} + } + (EndUser); + % Verification + \path[path, rounded corners] + (EndUser.180) -| + ($ (EndUser) + (-1.25,-.75) $) + node[relation, below]{ + Verify + } -| + (EndUser.210); + + + % Cosigning + \path[path] (Witness) edge[bend right] + node[relation,right]{Cosignature} + (Log); + \path[path] (Log) edge[bend right] + node[relation,left]{Tree head} + (Witness); + \path[path, rounded corners] + (Witness.180) -| + ($ (Witness) + (-1.25,-.75) $) + node[relation, below]{ + Verify + } -| + (Witness.210); + + % Get proofs + \path[path] (Log) -- + node[relation,above]{Proofs of logging} + (Publisher); +\end{tikzpicture} diff --git a/slides/2021-aha/img/before.tex b/slides/2021-aha/img/before.tex new file mode 100644 index 0000000..f634ef4 --- /dev/null +++ b/slides/2021-aha/img/before.tex @@ -0,0 +1,46 @@ +\begin{tikzpicture}[ + -latex, + entity/.style = { + draw = gray!30, + thick, + rounded rectangle, + fill = white, + minimum width = 2cm, + font = \fontsize{8}{8}\selectfont, + text = white, + }, + relation/.style = { + draw = none, + font = \fontsize{6}{6}\selectfont, + }, + path/.style = { + draw, + thick, + -latex, + }, +] + \node[entity, fill=darkBlue] (Publisher) at (0,0) { Publisher }; + \node[entity, fill=darkGreen, below=1.5cm of Publisher] (EndUser) {End-user}; + + % Key setup + \path[path, dashed] ($ (EndUser) + (2,0) $) -- + node[relation, above] { Public key } + (EndUser); + % Get data and signature + \path[path] (Publisher) -- + node[relation, right] { + \begin{tabular}{c} + Opaque data\\ + Signature\\ + \end{tabular} + } + (EndUser); + % Verification + \path[path, rounded corners] + (EndUser.180) -| + ($ (EndUser) + (-1.25,-.75) $) + node[relation, below]{ + Verify + } -| + (EndUser.210); +\end{tikzpicture} diff --git a/slides/2021-aha/img/beverwijk.jpg b/slides/2021-aha/img/beverwijk.jpg Binary files differnew file mode 100644 index 0000000..3ac9d1a --- /dev/null +++ b/slides/2021-aha/img/beverwijk.jpg diff --git a/slides/2021-aha/img/clean.jpg b/slides/2021-aha/img/clean.jpg Binary files differnew file mode 100644 index 0000000..2465e5e --- /dev/null +++ b/slides/2021-aha/img/clean.jpg diff --git a/slides/2021-aha/img/ct.tex b/slides/2021-aha/img/ct.tex new file mode 100644 index 0000000..9ae60c3 --- /dev/null +++ b/slides/2021-aha/img/ct.tex @@ -0,0 +1,69 @@ +\begin{tikzpicture}[ + -latex, + entity/.style = { + draw = gray!30, + thick, + rounded rectangle, + fill = white, + minimum width = 2cm, + font = \fontsize{8}{8}\selectfont, + text = white, + }, + relation/.style = { + draw = none, + font = \fontsize{6}{6}\selectfont, + }, + path/.style = { + draw, + thick, + -latex, + }, +] + \node[entity, fill=darkBlue] (Website) at (0,0) { Website }; + \node[entity, fill=darkGreen, below=1.5cm of Website] (Browser) {Browser}; + \node[entity, fill=darkOrange, left=1.5cm of Website] (Log) {Log}; + \node[entity, fill=darkRed, below=1.5cm of Log] (Monitor) {Monitor}; + + % Get certificate and proofs of logging + \path[path] (Website) -- + node[relation, right] { + \begin{tabular}{c} + Certificate\\ + Proofs of logging\\ + \end{tabular} + } + (Browser); + % Verification + \path[path, rounded corners] + (Browser.180) -| + ($ (Browser) + (-1.25,-.75) $) + node[relation, below]{ + Verify + } -| + (Browser.210); + + % Monitoring + \path[path] (Monitor) edge[bend right] + node[relation,right]{} + (Log); + \path[path] (Log) edge[bend right] + node[relation,left]{} + (Monitor); + \path[path, rounded corners] + (Monitor.180) -| + ($ (Monitor) + (-1.25,-.75) $) + node[relation, below]{ + Mis-issuance? + } -| + (Monitor.210); + + % Get proofs + \path[path, dashed] (Log) -- + node[relation,above]{Proofs of logging} + (Website); + + % Add certificates to log + \path[path, dashed] ($ (Log) + (-2,0) $) -- + node[relation, above] { Certificates } + (Log); +\end{tikzpicture} diff --git a/slides/2021-aha/img/curl.jpg b/slides/2021-aha/img/curl.jpg Binary files differnew file mode 100644 index 0000000..51765e7 --- /dev/null +++ b/slides/2021-aha/img/curl.jpg diff --git a/slides/2021-aha/img/diginotar.jpg b/slides/2021-aha/img/diginotar.jpg Binary files differnew file mode 100644 index 0000000..c185e38 --- /dev/null +++ b/slides/2021-aha/img/diginotar.jpg diff --git a/slides/2021-aha/img/kau.png b/slides/2021-aha/img/kau.png Binary files differnew file mode 100755 index 0000000..0c7c885 --- /dev/null +++ b/slides/2021-aha/img/kau.png diff --git a/slides/2021-aha/img/log-request.tex b/slides/2021-aha/img/log-request.tex new file mode 100644 index 0000000..08edf87 --- /dev/null +++ b/slides/2021-aha/img/log-request.tex @@ -0,0 +1,47 @@ +\begin{tikzpicture}[ + -latex, + entity/.style = { + draw = gray!30, + thick, + rounded rectangle, + fill = white, + minimum width = 2cm, + font = \fontsize{8}{8}\selectfont, + text = white, + }, + relation/.style = { + draw = none, + font = \fontsize{6}{6}\selectfont, + }, + path/.style = { + draw, + thick, + -latex, + }, +] + \node[entity, fill=darkBlue] (Publisher) at (0,0) { Publisher }; + \node[entity, fill=darkGreen, below=1.5cm of Publisher] (DNS) {DNS}; + \node[entity, fill=darkOrange, left=1.5cm of Publisher] (Log) {Log}; + + % Setup DNS + \path[path, dashed] (Publisher) -- + node[relation, right] {TXT RR} + (DNS); + + \path[path] (Publisher) edge[bend right] + node[relation, above] { + Key-value pairs + } + (Log); + \path[path] (Log) edge[bend right] + node[relation,below] { + accept/reject + } + (Publisher); + + \path[path, rounded corners] (Log) |- + node[relation,below,pos=.75]{ + verify TXT RR + } + (DNS); +\end{tikzpicture} diff --git a/slides/2021-aha/img/mt.tex b/slides/2021-aha/img/mt.tex new file mode 100644 index 0000000..3deaf62 --- /dev/null +++ b/slides/2021-aha/img/mt.tex @@ -0,0 +1,19 @@ +\begin{tikzpicture}[ + -latex, +] + \Tree [ + .$\hash(h_{01}\concat h_{23})$ [ + .$h_{01}\coloneqq\hash(h_0\concat h_1)$ [ + .$h_0\coloneqq\hash(\mathsf{foo})$ + ] [ + .$h_1\coloneqq\hash(\mathsf{bar})$ + ] + ] [ + .$h_{23}\coloneqq\hash(h_2\concat h_3)$ [ + .$h_2\coloneqq\hash(\mathsf{baz})$ + ] [ + .$h_3\coloneqq\hash(\mathsf{qux})$ + ] + ] + ] +\end{tikzpicture} diff --git a/slides/2021-aha/img/mullvad.png b/slides/2021-aha/img/mullvad.png Binary files differnew file mode 100644 index 0000000..4574eb1 --- /dev/null +++ b/slides/2021-aha/img/mullvad.png diff --git a/slides/2021-aha/img/openbsd.pdf b/slides/2021-aha/img/openbsd.pdf Binary files differnew file mode 100644 index 0000000..53c6c98 --- /dev/null +++ b/slides/2021-aha/img/openbsd.pdf diff --git a/slides/2021-aha/img/rb.png b/slides/2021-aha/img/rb.png Binary files differnew file mode 100644 index 0000000..a0b30cb --- /dev/null +++ b/slides/2021-aha/img/rb.png diff --git a/slides/2021-aha/img/rgdd.jpg b/slides/2021-aha/img/rgdd.jpg Binary files differnew file mode 100644 index 0000000..597b406 --- /dev/null +++ b/slides/2021-aha/img/rgdd.jpg diff --git a/slides/2021-aha/img/thanks.pdf b/slides/2021-aha/img/thanks.pdf Binary files differnew file mode 100644 index 0000000..9ad4dc8 --- /dev/null +++ b/slides/2021-aha/img/thanks.pdf diff --git a/slides/2021-aha/img/tree-leaf.trunnel b/slides/2021-aha/img/tree-leaf.trunnel new file mode 100644 index 0000000..c3806f3 --- /dev/null +++ b/slides/2021-aha/img/tree-leaf.trunnel @@ -0,0 +1,9 @@ +/* + * The logged Merkle tree leaf data + */ +struct tree_leaf { + u64 shard_hint; + u8 checksum[32]; + u8 signature[64]; + u8 key_hash[32]; +} diff --git a/slides/2021-aha/main.tex b/slides/2021-aha/main.tex new file mode 100644 index 0000000..2d8a8b6 --- /dev/null +++ b/slides/2021-aha/main.tex @@ -0,0 +1,21 @@ +\pdfminorversion=4 +%\documentclass[handout,aspectratio=169]{beamer} +\documentclass[aspectratio=169]{beamer} +\usetheme{rgd} + +\input{src/preamble} + +\title{% + Transparent Logging---An introduction and ongoing work +} +\author{% + Rasmus Dahlberg +} +\date{% + \today +} + +\begin{document} + \input{src/titlepage} + \input{src/body} +\end{document} diff --git a/slides/2021-aha/slides.pdf b/slides/2021-aha/slides.pdf Binary files differnew file mode 100644 index 0000000..c3dc16b --- /dev/null +++ b/slides/2021-aha/slides.pdf diff --git a/slides/2021-aha/src/body.tex b/slides/2021-aha/src/body.tex new file mode 100644 index 0000000..0778fe7 --- /dev/null +++ b/slides/2021-aha/src/body.tex @@ -0,0 +1,465 @@ +% +% Title page +% - Hi everyone +% - Welcome to my talk <tile> +% - I'm Rasmus +% -- I work in the TCR group together with Fredrik and others +% -- I've been here since September, and it started out as an internship. Then +% we decided to prolong that into something more permanent. +% -- I am also aff. with Kau, where I do my PhD studies. +% -- Surprise surprise, my thesis is about transparent logs. +% + +\begin{frame} + \vfill + \begin{columns} + \begin{column}{0.5\textwidth} + \mktitle{Outline} + \begin{enumerate} + \item Transparent Logging + \begin{itemize} + \item Why? % Let's talk DigiNotar + \item How? % Let's talk CT + \item What? % What should you make transparent + \end{itemize} + \item ``System Transparency Logging'' + \end{enumerate} + \end{column} + \begin{column}{0.5\textwidth} + \centering + \includegraphics[width=\columnwidth]{img/rgdd} + \burl{https://creativecommons.org/licenses/by-sa/4.0/} + \end{column} + \end{columns} +\end{frame} + +\begin{frame} + \vfill + \begin{columns} + \begin{column}{0.45\textwidth} + \mktitle{Let's travel in space and time} + \begin{itemize} + \item June, 2011 + \item Netherlands, Beverwijk + \item DigiNotar + \end{itemize} + \end{column} + \begin{column}{0.55\textwidth} + \centering + \includegraphics[width=\columnwidth]{img/beverwijk} + \burl{https://creativecommons.org/licenses/by-sa/3.0/} + % https://commons.wikimedia.org/wiki/File:Nzkanaal2.jpg + \end{column} + \end{columns} +\end{frame} + +\begin{frame} + % + % To give you the backdrop. + % + % DigiNotar was a so-called certificate authority that issues web certs + % - If this means nothing to you, it is sort of like passports but for + % websites. In real life we have a trusted government body that is + % responsible of issuing our passports. We trust that a passport will not + % be issued for us unless we can prove that we are who we say we are. + % - In the digital world certificate authorities play this role but for + % websites. This way, you can be sure that you are really visiting + % mullvad.net, and not someone that is impersonating our domain. + % + % So, the expectation here is that you would only issue a certificate to the + % rightful domain owner. At minimum, this requires some identity checking. + % + % Let's get back to what happened then. + % + % It turns out that DigiNotar was hacked. They issued fraudulent + % certificates for Google, Facebook, Twitter, Mozilla, Tor, and many others. + % + % This was detected by DigiNotar a week after the incident. + % - They decided to be silent. + % + % The only reason why we detected this is because of a large scale attack + % in Iran, which targeted 300k gmail users. If the attacker had been more + % stealthy, we probably would not have detected the attack. + % + % Fortunately we did detect the attack. Soon thereafter, none of the major + % browser trusted DigiNotar anymore. In September, a bankruptcy was filed. + % + \vfill + \begin{columns} + \begin{column}{0.45\textwidth} + \mktitle{What happened?} + \begin{itemize} + \item DigiNotar issued web certificates + \item Did not live up to expectations + \item Then lied about it for weeks + \end{itemize} + \end{column} + \begin{column}{0.55\textwidth} + \centering + \includegraphics[width=\columnwidth]{img/diginotar} + \burl{https://www.bbc.com/news/technology-14989334} + \end{column} + \end{columns} +\end{frame} + +\begin{frame} + % + % What to make of this then? + % + % First of all, DigiNotar was neither the first nor the last. Many + % certificate authorities messed up before them. Many certificate + % authorities messed up after them. + % + % It would be incredibly helpful if we could detect if a certificate + % authority makes mistakes. In the case of certificate management, + % detection really comes down to the ability of discovering which + % certificates have been issued for whom. + % + % From this intuition the idea of Certificate Transparency is simple. + % - Talk about figure. + % - Emphasize that the log is not a trusted party due to crypto magic. + % + \vfill + \begin{columns} + \begin{column}{0.5\textwidth} + \mktitle{What to make of this} + \begin{itemize} + \item DigiNotar was neither first nor last\footnotemark + \item Detection of certificate mis-issuance? + \item Discoverability with transparent logs\footnotemark + \end{itemize} + \end{column} + \begin{column}{0.5\textwidth} + \input{img/ct} + \end{column} + \end{columns} + \vfill + \pause + \centering\alert{Chrome and Safari enforce Certificate Transparency} + + \footnotetext[1]{\burl{https://sslmate.com/certspotter/failures}} + \footnotetext[2]{\burl{https://certificate.transparency.dev/}} +\end{frame} + +\begin{frame} + % + % Okay, great that we have transparency for certificates. Does that mean + % are done? + % + % The short answer is no. We are definitely not done. There is still a lot + % of remaining work with Certificate Transparency. There is even more work + % left to do when we think about other use-cases of transparency logging. + % + % (Use do you get the same binaries as everyone else for example, leave the + % rest for them to think about if they want to) + % + \mktitle{Transparency logging is good for more than just certificates} + Source code \\ + Binaries \\ + Config files \\ + TPM quotes \\ + Media content \\ + Tax declarations \\ + Documents of ownership \\ + BGP announcements \\ + Tor's consensus \\ + ... \\ + \vfill + \pause + \alert{The log we are working on is helpful for all these use-cases!} +\end{frame} + +% +% https://curl.se/download.html +% +\begin{frame} + % + % 1. Introduce the setup. Daniel represents many software projects. + % 2. How would you know if your private key got compromised? + % + \mktitle{Example use-case\#1} + \begin{columns} + \begin{column}{0.5\textwidth} + \mktitle{Meet Daniel} + \begin{itemize} + \item The author of \texttt{curl} + \item Digitally signs new releases + \item Long-term signing key-pair + \end{itemize} + \end{column} + \begin{column}{0.5\textwidth} + \centering + \includegraphics[height=.6\textheight]{img/curl} + \burl{https://creativecommons.org/licenses/by-sa/4.0/} + \end{column} + \end{columns} +\end{frame} + +% +% https://arxiv.org/pdf/2104.06020.pdf, page 6 for the challenge. +% +\begin{frame} + % + % 1. What is R-B. + % 2. Challenge + % 3. How I think that challenge could be approached + % + \mktitle{Example use-case\#2} + \begin{columns} + \begin{column}{0.6\textwidth} + \mktitle{Meet the R-B project} + \begin{itemize} + \item Same input gives the same output + \item Consensus of ``valid'' checksum? + \end{itemize} + \end{column} + \begin{column}{0.4\textwidth} + \centering + \includegraphics[width=\columnwidth]{img/rb} + \burl{https://creativecommons.org/licenses/by-sa/4.0/} + \end{column} + \end{columns} +\end{frame} + +\begin{frame} + \mktitle{Problem summary} + \vfill + \begin{columns} + \begin{column}{0.125\textwidth} + \end{column} + \begin{column}{0.75\textwidth} + \begin{enumerate} + \item Which signatures were produced by what private keys? + \item Consensus of checksums that should be considered valid? + \end{enumerate} + \end{column} + \begin{column}{0.125\textwidth} + \end{column} + \end{columns} + \vfill +\end{frame} + +\begin{frame} + % + % 1. Introduce the system. Think first two paragraphs in design.md + % + \mktitle{Our starting point} + \begin{columns} + \begin{column}{0.5\textwidth} + \begin{itemize} + \item Data publisher + \item End-user + \item Assumptions + \begin{itemize} + \item Public key can be located + \item Signed data can be located + \item End-user can install extra tooling + \end{itemize} + \end{itemize} + \end{column} + \begin{column}{0.5\textwidth} + \centering + \input{img/before} + \end{column} + \end{columns} + \vfill + \pause + \alert{The attacker can compromise the data publisher}\\ + \pause + \alert{The goal is to detect unwanted key-usage} +\end{frame} + +\begin{frame} + % + % 1. Our design is about transparency logs. So, I need to explain briefly + % what a transparency log is. + % 2. Append-only Merkle tree. You can think of the data as being stored in + % the leaves. Each leaf is hashed. Parents concatenate their children + % hashes to produces their own hash values. Repeat until single root hash. + % 3. The root hash is usually called a tree head. + % 4. Tree head interesting because it fixes the structure and the content of + % the tree. Add/remove/modify -> new tree head. + % 5. If the log signs the tree head, you can hold it accountable for its + % structure and content. + % 6. This is important because the attacker can control the log. + % 7. So we cannot trust that the log is append-only. We will need to verify + % that. To this end we have consistency proofs. The intuition is that you + % can force the log to reveal a number of cryptographic hashes. These + % hashes will prove that the tree head you see today is consistent with the + % tree head you saw yesterday. + % 8. You can also prove that something is in the log efficiently. This is + % called an inclusion proof. The intuition is that you reveal a number of + % hashes. If you can use them to reconstruct the root of a globally + % consistent tree head you can be sure that some data is in the log. + % 8. Global consistency (as opposed to just consistency) is what prevents + % the log from creating forks. I will return to this later on because it is + % an important part of our design. + % (9. Not having global consistency would be like having a blockchain + % without a consensus mechanism.) + % + \mktitle{An intuition of transparency log properties} + \input{img/mt} + \vfill + \begin{columns} + \begin{column}{0.33\textwidth} + \begin{itemize} + \item Tree head + \end{itemize} + \end{column} + \begin{column}{0.33\textwidth} + \begin{itemize} + \item Consistency proof + \end{itemize} + \end{column} + \begin{column}{0.33\textwidth} + \begin{itemize} + \item Inclusion proof + \end{itemize} + \end{column} + \end{columns} + \vfill + \pause + \alert{The attacker can control the log} +\end{frame} + +\begin{frame} + \mktitle{Preparing a logging request} + \begin{columns} + \begin{column}{0.5\textwidth} + \begin{itemize} + \item Select a shard hint and checksum + \item Sign using your private key + \end{itemize} + \end{column} + \begin{column}{0.5\textwidth} + \lstinputlisting[style=CStyle]{img/tree-leaf.trunnel} + \end{column} + \end{columns} +\end{frame} + +\begin{frame} + \mktitle{Submitting a logging request} + \begin{columns} + \begin{column}{0.2\textwidth} + \underline{Key-value pairs:} + \begin{itemize} + \item Shard hint + \item Checksum + \item Signature + \item Public key + \item Domain hint + \end{itemize} + \end{column} + \begin{column}{0.8\textwidth} + \centering + \input{img/log-request} + \end{column} + \end{columns} +\end{frame} + +\begin{frame} + \mktitle{Distributing proofs of public logging} + \begin{columns} + \begin{column}{0.5\textwidth} + \begin{itemize} + \item End-user will not talk to the log + \item Proofs of logging + \begin{itemize} + \item Inclusion proof + \item Tree head + \end{itemize} + \item Witness cosigning + \end{itemize} + \end{column} + \begin{column}{0.5\textwidth} + \centering + \input{img/after} + \end{column} + \end{columns} + \pause + \alert{The attacker can control a threshold of witnesses} +\end{frame} + +\begin{frame} + \mktitle{Example use-case\#1} + \begin{columns} + \begin{column}{0.5\textwidth} + \mktitle{Remember Daniel?} + \begin{itemize} + \item Sign a checksum of each \texttt{curl} release + \item Start logging every signed checksum + \item Monitor the log for your own leaves + \end{itemize} + \end{column} + \begin{column}{0.5\textwidth} + \centering + \includegraphics[height=.6\textheight]{img/curl} + \burl{https://creativecommons.org/licenses/by-sa/4.0/} + \end{column} + \end{columns} +\end{frame} + +\begin{frame} + \mktitle{Example use-case\#2} + \begin{columns} + \begin{column}{0.6\textwidth} + \mktitle{Remember the R-B project?} + \begin{itemize} + \item Sign the expected checksum of each build + \item A valid checksum is a logged checksum + \item Rebuilders validate logged checksums + \end{itemize} + \end{column} + \begin{column}{0.4\textwidth} + \centering + \includegraphics[width=\columnwidth]{img/rb} + \burl{https://creativecommons.org/licenses/by-sa/4.0/} + \end{column} + \end{columns} +\end{frame} + +\begin{frame} + \mktitle{Summary and feature overview} + \begin{columns} + \begin{column}{0.5\textwidth} + \begin{itemize} + \item Signed checksums + \item Sharding + \item Preserved data flows + \item Anti-spam + \item Global consistency + \item Few simple parsers + \item No cryptographic agility + \end{itemize} + \end{column} + \begin{column}{0.5\textwidth} + \includegraphics[width=\columnwidth]{img/clean} + \end{column} + \end{columns} +\end{frame} + +\begin{frame} + \vfill + \begin{columns} + \begin{column}{0.7\textwidth} + \mktitle{Current status} + \begin{itemize} + \item Version v0 README and documentation\footnotemark + \item A public instance of the log is up and running + \item At least one party is witnessing the log + \item Come say hello and contribute if you want! + \begin{itemize} + \item \texttt{irc/oftc \#siglog} + \item Matrix bridge\footnotemark + \item Open meetings every Tuesday, 1300 + \end{itemize} + \end{itemize} + \end{column} + \begin{column}{0.3\textwidth} + \centering + \includegraphics[width=\columnwidth]{img/thanks} + \end{column} + \end{columns} + \footnotetext[1]{\burl{https://github.com/system-transparency/stfe/}} + \footnotetext[2]{\burl{https://app.element.io/\#/room/\#siglog:matrix.org}} +\end{frame} diff --git a/slides/2021-aha/src/preamble.tex b/slides/2021-aha/src/preamble.tex new file mode 100644 index 0000000..4021351 --- /dev/null +++ b/slides/2021-aha/src/preamble.tex @@ -0,0 +1,113 @@ +%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% +% Packages % +%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% +\usepackage[utf8]{inputenc} + +\usepackage[ + lambda, advantage, operators, sets, adversary, landau, probability, notions, + logic, ff, mm, primitives, events, complexity, asymptotics, keys +]{cryptocode} + +\usepackage{rotate} +\usepackage{graphicx} +\usepackage{mathtools} +\usepackage{amsmath} +\usepackage{amssymb} +\usepackage{flowchart} +\usepackage{smartdiagram} +\usepackage{pifont} +\usepackage{wasysym} +\usepackage{graphicx} +\usepackage{color} +\usepackage{drawstack} +\usepackage{tikz} +\usepackage{tikz-qtree} +\usetikzlibrary{ + arrows,% + decorations.markings,% + backgrounds,% + calc,% + fit,% + positioning,% + shapes.misc,% + shadows,% + shapes.arrows,% + shapes,% + snakes,% +} +\usepackage{booktabs} +\usepackage{smartdiagram} +%\usepackage{floatrow}% this one causes error on arch for some reason +\usepackage[position=bottom]{subfig} % environment for nested figures + +\usepackage{xcolor} +\definecolor{darkGreen}{HTML}{008000} +\definecolor{darkBlue}{HTML}{2809B2} +\definecolor{darkRed}{HTML}{CC0000} +\definecolor{darkGray}{HTML}{808080} +\definecolor{darkOrange}{HTML}{D77D00} +\definecolor{darkPurple}{HTML}{800080} +\colorlet{lightGray}{gray!33} +\colorlet{lightYellow}{yellow!50} +\definecolor{darkGreen}{HTML}{008000} +\definecolor{darkBlue}{HTML}{2809B2} +\definecolor{darkRed}{HTML}{CC0000} + +\usepackage{hyperref} +\hypersetup{ + colorlinks = true, % Color links instead of boxes + urlcolor = darkBlue, % Color external hyper links + linkcolor = darkBlue, % Color internal links + citecolor = darkBlue, % Color citations +} + +% Figures, tables and code +\usepackage{booktabs} +\usepackage{colortbl} +\usepackage{flowchart} +\usepackage{adjustbox} +\usepackage{listings} + +\lstdefinestyle{CStyle}{ + backgroundcolor=\color{lightGray!25}, + commentstyle=\color{darkGreen}, + keywordstyle=\color{darkBlue}, + numberstyle=\tiny\color{darkRed}, + stringstyle=\color{darkPurple}, + basicstyle=\footnotesize, + breakatwhitespace=false, + breaklines=false, + captionpos=b, + keepspaces=true, + numbers=left, + numbersep=5pt, + showspaces=false, + showstringspaces=false, + showtabs=false, + tabsize=2, + language=C, + morekeywords={size_t,def,in,zip,True,False,ord,u8,u64}, +} + +\setbeamertemplate{itemize item}[circle] +\setbeamertemplate{itemize subitem}[default] +\setbeamertemplate{caption}[numbered] + +%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% +% Defines % +%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% +\makeatletter +\let\@@magyar@captionfix\relax %needed for \titlefloatright +\makeatother + +\newcommand{\tyes}{\textcolor{darkGreen}{\ding{51}}} +\newcommand{\tno}{\textcolor{darkRed}{\ding{55}}} +\newcommand{\burl}[1]{\tiny{\url{#1}}} +\newcommand{\TODO}[1]{\textcolor{red}{TODO}: #1} +\newcommand{\floatright}[1]{\hspace{0pt plus 1 filll}#1$\;$} + +\def\rding{\rotatebox[origin=c]{-91}{\ding{224}}} +\def\lding{\rotatebox[origin=c]{91}{\ding{224}}} + +% TODO: fix this properly... +\newcommand{\mktitle}[1]{\centering\textbf{\large#1}\vfill\normalsize} diff --git a/slides/2021-aha/src/titlepage.tex b/slides/2021-aha/src/titlepage.tex new file mode 100644 index 0000000..9b18039 --- /dev/null +++ b/slides/2021-aha/src/titlepage.tex @@ -0,0 +1,3 @@ +\begin{frame} + \titlepage +\end{frame} |
