-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathparanoid.html
241 lines (232 loc) · 7.65 KB
/
paranoid.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
<!doctype html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Passwords strategies for the semi-paranoid</title>
<meta name="description" content="Passwords strategies for the semi-paranoid">
<meta name="author" content="Koen Metsu">
<meta name="apple-mobile-web-app-capable" content="yes" />
<meta name="apple-mobile-web-app-status-bar-style" content="black-translucent" />
<meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=1.0, user-scalable=no">
<script src="//code.jquery.com/jquery-1.8.0.js"></script>
<script src="//code.jquery.com/ui/1.8.23/jquery-ui.js"></script>
<script src="//netdna.bootstrapcdn.com/twitter-bootstrap/2.2.1/js/bootstrap.min.js"></script>
<script type="text/javascript" src="//cdn.mathjax.org/mathjax/latest/MathJax.js?config=TeX-AMS-MML_HTMLorMML"></script>
<link href="//netdna.bootstrapcdn.com/twitter-bootstrap/2.2.1/css/bootstrap-combined.min.css" rel="stylesheet">
<link rel="stylesheet" href="css/reveal.css">
<link rel="stylesheet" href="css/theme/black.css" id="theme">
<link type="text/css" rel="stylesheet" href="fsharp.formatting/styles/style.css" />
<link type="text/css" rel="stylesheet" href="fsharp.formatting/styles/deedle.css" />
<link type="text/css" rel="stylesheet" href="css/custom.css" />
<script src="fsharp.formatting/styles/tips.js" type="text/javascript"></script>
<!-- For syntax highlighting -->
<link rel="stylesheet" href="lib/css/zenburn.css">
<link rel="stylesheet" href="css/fsreveal.css">
<!-- If the query includes 'print-pdf', include the PDF print sheet -->
<script>
if( window.location.search.match( /print-pdf/gi ) ) {
var link = document.createElement( 'link' );
link.rel = 'stylesheet';
link.type = 'text/css';
link.href = 'css/print/pdf.css';
document.getElementsByTagName( 'head' )[0].appendChild( link );
}
</script>
<!--[if lt IE 9]>
<script src="lib/js/html5shiv.js"></script>
<![endif]-->
<script language="javascript" type="text/javascript">
function init()
{
websocket = new WebSocket("ws://"+window.location.host+"/websocket");
websocket.onmessage = function(evt) { location.reload(); };
}
window.addEventListener("load", init, false);
</script>
</head>
<body>
<div class="reveal">
<!-- Any section element inside of this container is displayed as a slide -->
<div class="slides">
<section >
<h1>Passwords strategies for the semi-paranoid</h1>
</section>
<section >
<h2>The only good passwords are those you can't remember</h2>
</section>
<section >
<h2>Password managers to the rescue!</h2>
</section>
<section >
<section >
<h2>Online password managers</h2>
<h4>Storing your passwords with a 3rd party provider</h4>
</section>
<section >
<h2>Convenient for you</h2>
<ul>
<li>One place</li>
<li>Good integration</li>
<li>Backups</li>
<li>2FA</li>
<li>Local encryption/decryption</li>
</ul>
</section>
<section >
<h2>They're in business for this sole purpose</h2>
</section>
<section >
<h4>Convenient for hackers</h4>
<ul>
<li>Client-side malware</li>
<li>Court orders</li>
<li>Large target for hacks</li>
<li>Insiders</li>
</ul>
</section>
<section >
<h1>If it's on the web, <em>somebody</em> has access to it.</h1>
</section>
<section >
<h2>Conclusion</h2>
<h3>Pretty safe, but for the paranoid...????</h3>
</section>
</section>
<section >
<section >
<h2>Offline</h2>
<h4>Storing your password database yourself</h4>
</section>
<section >
<h2>Good for the paranoid</h2>
<h4>At the small expense of less convenience...</h4>
<ul>
<li>Safe for paranoid levels 1 - 3000</li>
<li>Customizable</li>
<li>Open source</li>
</ul>
</section>
<section >
<h2>What in case of loss?</h2>
<ul>
<li>Back up onsite</li>
<li>Back up offsite</li>
</ul>
</section>
<section >
<h2>How to access on the go?</h2>
<ul>
<li>Usb thumb drive</li>
<li>3rd party cloud sync</li>
</ul>
</section>
<section >
<h1>If it's on the web, <em>somebody</em> has access to it.</h1>
</section>
</section>
<section >
<section >
<h2>What in case of 3rd party access?</h2>
</section>
<section >
<h2>Multi-factor authentication</h2>
<h4>Make your master password more than a password</h4>
<ul>
<li>Something you <strong>know</strong></li>
<li>Something you <strong>have</strong></li>
<li>Something you <strong>are</strong></li>
</ul>
</section>
<section >
<h2>Yubikey</h2>
<h4>Something you have</h4>
<ul>
<li>Static password</li>
<li>TOTP</li>
<li>Challenge/Response</li>
<li>NFC</li>
</ul>
</section>
<section >
<h2>Yubikey</h2>
<h4>Simplest approach:</h4>
<p>[password you know] <br \>+<br \> [long meaningless static password from yubikey]</p>
<br \>**Pro tip**: keep copies of your Yubikey
</section>
<section >
<h2>Key Files</h2>
<h4>Something you have</h4>
<ul>
<li>Regular file(s)</li>
<li>Content must be kept secret</li>
<li>Must provide key file to open password database</li>
</ul>
</section>
</section>
<section >
<section >
<h2>Veracrypt</h2>
<h4>Hide your password file</h4>
<ul>
<li>Create encrypted file, store kdbx file in that</li>
<li>Use multi-factor authentication</li>
<li>Hide with steganography</li>
</ul>
</section>
<section >
<h2>Steganography</h2>
<p><img src="images/paranoidpasswords/stegpicture.png" alt="Steganography in pictures" /></p>
</section>
<section >
<h2>Steganography</h2>
<p><img src="images/paranoidpasswords/stegveracrypt.png" alt="Steganography in pictures" /></p>
</section>
</section>
<section >
<section >
<h1>Be paranoid, it's fun!</h1>
</section>
<section >
<h1>Determine your attack vectors</h1>
</section>
<section >
<h1>Don't forget</h1>
<p><img src="https://imgs.xkcd.com/comics/security.png" alt="XKCD on security" /></p>
<p><a href="https://imgs.xkcd.com/comics/security.png">source</a></p>
</section>
</section>
<section >
<h1>Thank you</h1>
<h3>Follow me <a href="https://twitter.com/koenmetsu" title="@koenmetsu">@koenmetsu</a></h3>
</section>
</div>
</div>
<script src="lib/js/head.min.js"></script>
<script src="js/reveal.js"></script>
<script>
// Add the nohighlight class and data-noescape attribute to code elements that have already been formatted by FSharp.Formatting
$('pre.highlighted code').addClass('nohighlight').attr('data-noescape', '');
// Full list of configuration options available here:
// https://github.com/hakimel/reveal.js#configuration
Reveal.initialize({
controls: true,
progress: true,
history: true,
center: true,
transition: 'default', // default/cube/page/concave/zoom/linear/fade/none
// Parallax scrolling
// parallaxBackgroundImage: 'https://s3.amazonaws.com/hakim-static/reveal-js/reveal-parallax-1.jpg',
// parallaxBackgroundSize: '2100px 900px',
// Optional libraries used to extend on reveal.js
dependencies: [
{ src: 'lib/js/classList.js', condition: function () { return !document.body.classList; } },
{ src: 'plugin/markdown/marked.js', condition: function () { return !!document.querySelector('[data-markdown]'); } },
{ src: 'plugin/markdown/markdown.js', condition: function () { return !!document.querySelector('[data-markdown]'); } },
{ src: 'plugin/highlight/highlight.js', async: true, callback: function () { hljs.initHighlightingOnLoad(); } },
{ src: 'plugin/zoom-js/zoom.js', async: true, condition: function () { return !!document.body.classList; } },
{ src: 'plugin/notes/notes.js', async: true, condition: function () { return !!document.body.classList; } }
]
});
</script>
</body>
</html>