Version 2.1 ﴾͡๏̯͡๏﴿
lecture: Learning from bad Crypto
A look at the Owncloud encryption module
The talk will explain how to exploit the weak design of the encryption module that comes shipped with Owncloud. The flaw is a nice educational example on how to get cryptography wrong.
It's a common saying that the first rule of cryptgraphy is "don't do your own crypto". When lay people try to invent new ciphers or new protocol designs it almost certainly goes wrong.
Owncloud comes with an encryption module that is supposed to allow the use of untrusted storage space. The talk will explain how the use of an unauthenticated encryption mode allows to inject backdoors into stored files.
Info
Day:
2016-03-27
Start time:
22:15
Duration:
00:30
Room:
Vorträge
Track:
Security & Safety
Language:
en
Links:
Concurrent Events
Speakers
 |
Hanno Böck |