Version 2.1 ﴾͡๏̯͡๏﴿

lecture: Learning from bad Crypto

A look at the Owncloud encryption module

Event large 4b8aa978adbb7c8e80151f5a83c6782a12e763374ae3a042a55e7e626a64d93b

The talk will explain how to exploit the weak design of the encryption module that comes shipped with Owncloud. The flaw is a nice educational example on how to get cryptography wrong.

It's a common saying that the first rule of cryptgraphy is "don't do your own crypto". When lay people try to invent new ciphers or new protocol designs it almost certainly goes wrong.
Owncloud comes with an encryption module that is supposed to allow the use of untrusted storage space. The talk will explain how the use of an unauthenticated encryption mode allows to inject backdoors into stored files.


Day: 2016-03-27
Start time: 22:15
Duration: 00:30
Room: Vorträge
Track: Security & Safety
Language: en


Concurrent Events