Difference between revisions of "Cryptoparty"
Tunabananas (talk | contribs) (updated with summer 2018 cryptoparty meeting notes) |
|||
(52 intermediate revisions by 11 users not shown) | |||
Line 1: | Line 1: | ||
[ | '''Update August 2018: A group of sudoers recently met to discuss rebooting digital security workshops. Please [http://lists.sudoroom.org/listinfo/cryptoparty join the mailing list] for updates and to get involved!''' | ||
Every Third Sunday of the month from 2-5pm, Sudo Room hosts an afternoon of co-learning and teaching about digital security. The driving motivation of our cryptoparties is to learn about end-user security in a fun, welcoming and inclusive environment. Popular topics include: why digital security is important; strategies for activists and journalists; encrypted email; encrypted text messaging; encrypted phone calls; encrypting your hard drive; off-the-record instant messaging; secure web browsing; mesh networks; and presentations on newer projects. All skill levels welcome - bring your phone and/or laptop! | |||
'' | [[File:Anonyzebra.jpg|thumb|frameless|'''Anony Zebra''', the official Cryptoparty mascot, protecting herself from [http://grevyszebratrust.org/stripe-recognition.html Stripe Recognition]]] | ||
=Archive= | |||
*[[Cryptoparty/2018/June|June 2018]] | |||
*[[Cryptoparty/2014/October|October 2014]] | |||
*[[Cryptoparty/2014/April|April 2014]] | |||
*[[Cryptoparty/2014/March|March 2014]] | |||
*[[Cryptoparty/2014/February|February 2014]] | |||
*[[Cryptoparty/2013/December|December 2013]] | |||
*[[Cryptoparty/2013/October|October 2013]] | |||
*[[Cryptoparty/2013/August|August 2013]] | |||
== | =Ways To Volunteer For Non Coders= | ||
Translation Efforts: | |||
*https://www.transifex.com/projects/p/Cryptocat/ | |||
https:// | *https://www.torproject.org/getinvolved/translation-overview.html.en | ||
*https://tails.boum.org/contribute/how/translate/ | |||
*https://www.transifex.com/projects/p/torproject/resources/ | |||
Art: | |||
*https://www.torproject.org/getinvolved/volunteer.html.en | |||
*https://tails.boum.org/contribute/how/graphics/ | |||
Writing (documentation + press releases): | |||
*https://tails.boum.org/contribute/how/documentation/ | |||
*https://tails.boum.org/contribute/how/promote/ | |||
[ | =General Resources= | ||
*https://www.cryptoparty.in/brief | |||
*https://securityinabox.org/en | |||
*https://www.cryptoparty.in/documentation/handbook | |||
*http://prxbx.com/email/ | |||
*http://tacticaltech.org | |||
*http://prismbreak.com | |||
* [https://ssd.eff.org/ EFF's Surveillance Self-Defense] | |||
* [https://www.eff.org/wp/know-your-rights EFF's Know Your Rights] | |||
* [http://liberationtechnology.stanford.edu/ Liberation Tech] ([https://mailman.stanford.edu/mailman/listinfo/liberationtech mailing list], [https://twitter.com/liberationtech twitter]) | |||
* [http://www.mozilla.org/security/ Mozilla Security notes] | |||
* [http://www.americanscientist.org/issues/pub/2012/5/alice-and-bob-in-cipherspace/ Alice and Bob in Cipherspace - Fully Homomorphic Encryption] | |||
* [http://mashable.com/2012/09/27/internet-censorship/ Which Countries Actively Suppress Internet Freedom?] | |||
==Recommended Software== | |||
'''Warning''': This table is intended as a starting point for new users. Mobile devices (iOS, Android), Web-based solutions, Pidgin, CryptoCat, and ChatSecure all have known flaws or associated risks that need to be considered. | |||
{| class="wikitable" | |||
|- | |||
! !! Android !! iOS !! Windows !! OS X !! Linux !! Cross-platform or Web | |||
|- | |||
| Email || [https://help.riseup.net/en/k9 K9] || ?? || [http://www.scribd.com/doc/110143089/Using-GPG-on-Windows-with-Thunderbird-and-Enigmail Thunderbird+Enigmail] || [https://www.macupdate.com/app/mac/9417/gpg-suite/ GPGSuite] [http://www.mozilla.org/en-US/thunderbird/all.html Thunderbird], [http://www.enigmail.net/download/ Enigmail] || [http://www.mozilla.org/en-US/thunderbird/all.html Thunderbird], [http://www.enigmail.net/download/ Enigmail] || [https://help.riseup.net/en/webmail riseup webmail] | |||
|- | |||
| Chat || [https://guardianproject.info/apps/gibber/ GibberBot], [https://play.google.com/store/apps/details?id=org.thoughtcrime.securesms TextSecure (sms)] || [https://whispersystems.org/blog/iphone-rsn/ TextSecure (sms)] || [http://chrisballinger.info/apps/chatsecure/ ChatSecure] || [http://www.cypherpunks.ca/otr/ Pidgin], [http://trac.adium.im/wiki/OTREncryption Adium] || [http://www.cypherpunks.ca/otr/ Pidgin] || [https://project.crypto.cat/ CryptoCat] | |||
|- | |||
| Network Anonymity || [https://play.google.com/store/apps/details?id=org.torproject.android Orbot], [https://play.google.com/store/apps/details?id=info.guardianproject.browser OrWeb] || [https://www.torproject.org/download Tor] || [https://www.torproject.org/download Tor] || [https://itunes.apple.com/au/app/onion-browser/id519296448?mt=8 Onion Browser] || [https://www.torproject.org/download Tor] || [https://www.torproject.org/download Tor] | |||
|- | |||
| Disk Encryption || [http://www.guyrutenberg.com/2012/06/29/some-thoughts-about-androids-full-disk-encryption/ Available in 4.0+] || ?? || [https://truecrypt.org/ TrueCrypt] || [http://en.wikipedia.org/wiki/File_vault Available in 10.7+] || [https://en.wikipedia.org/wiki/Linux_Unified_Key_Setup LUKS] || [https://github.com/freedomofpress/securedrop SecureDrop], [https://tahoe-lafs.org Tahoe LAFS] | |||
|- | |||
| Password Management || [https://www.keepassx.org/ KeePassX], [https://play.google.com/store/apps/details?id=org.fedorahosted.freeotp FreeOTP] || [https://fedorahosted.org/freeotp/ FreeOTP], [https://www.keepassx.org/ KeePassX] || [https://www.keepassx.org/ KeePassX] || [https://www.keepassx.org/ KeePassX] || [https://www.keepassx.org/ KeePassX] || [https://www.keepassx.org/ KeePassX] | |||
|} | |||
== Videos== | |||
* [https://www.youtube.com/watch?feature=player_detailpage&v=YEBfamv-_do#t=85s Diffie-Hellman Key Exchange] | |||
* [http://www.excivity.com/ComputeCycle/howtorworks/ How Tor Works] | |||
* [http://www.udacity.com/overview/Course/cs387/CourseRev/apr2012 Udacity: Applied Cryptography (cs387)] | |||
* [http://www.khanacademy.org/science/brit-cruise/cryptography khan academy: Journey into Cryptography] | |||
* [https://www.youtube.com/watch?v=HHoJ9pQ0cn8 Anti-Rep workshop (1/2) - Jacob Applebaum] | |||
* [https://www.youtube.com/watch?v=s9fByRmAHgU Anti-Rep workshop (2/2) - Jacob Applebaum] | |||
* [https://citp.princeton.edu/event/arvind-narayanan/ What Happened to the Crypto Dream?] | |||
==Books== | |||
* [http://en.wikipedia.org/wiki/The_Codebreakers The code breakers - david kahn] | |||
* [http://www.stevenlevy.com/index.php/books/crypto crypto - steven levy] | |||
* [http://simonsingh.net/books/the-code-book/ the code book - simon singh] | |||
* [http://en.wikipedia.org/wiki/The_Cuckoo's_Egg_(book) The Cuckoo's Egg - clifford stoll (fiction)] | |||
==Online Courses== | |||
* [https://www.coursera.org/course/crypto Cryptography] | |||
* [https://www.coursera.org/course/crypto2 Cryptography II] | |||
* [https://www.coursera.org/course/digitaldemocracy Securing Digital Democracy] | |||
=Hosting A Cryptoparty= | |||
*Cryptoparties are best when some planning takes place before. Hold a planning meeting 1-2 weeks before the event and ping the [https://lists.sudoroom.org/listinfo/cryptoparty mailing list] to recruit folks who've expressed interest in helping out. | |||
*There are handouts linked to above that can be printed out at sudo - they generally live in a clear document holder / trapper keeper labelled 'Cryptoparty' located in a crate of other trapper keepers on the middle shelf between the workshop and the bike station in sudo. | |||
*Try to reach out to communities that should be using crypto and are generally not connected to the sudo room social network. Activists, journalists, immigrants + expats, POC, etc; Consider hosting the cryptoparty in an entirely different location. | |||
*At least a week before the cryptoparty, get the word out: | |||
**Tweet/FB posts via Sudo Room's accounts (ask Jenny for info) | |||
**Send an announcement to the following mailing lists: | |||
***[https://lists.sudoroom.org/listinfo/sudo-discuss sudo-discuss] | |||
***[https://lists.sudoroom.org/listinfo/cryptoparty cryptoparty] | |||
***[https://lists.noisebridge.net/listinfo/noisebridge-discuss noisebridge-discuss] | |||
*Come half an hour to an hour earlier to set up: | |||
**Put the sudo room sandwich board out | |||
**Tape up some signage on the doors if so inclined (there are some paper signs in the clear trapper keeper) | |||
**Find a good spot for your expected # of attendees. Check with Public School; often we have split up into several working groups using different areas of the common space, sudo room proper, and the public school room. | |||
*Starting the cryptoparty: | |||
**Take notes on the wiki - set up a separate wiki page for that month's event [eg; /wiki/Cryptoparty/YEAR/MONTHNAME | |||
**Allow 15-30 minutes to get to a good group size to start | |||
**Go around the room and ask folks to introduce themselves, their level of skill w/ crypto, what they're interested in discussing or working on that afternoon. | |||
**Create an agenda ad-hoc and split the group as needed (pairs work great for things like helping someone set up disk encryption) | |||
**Have fun! Encourage wide-ranging discussion but step in if things start to get to technical. Keep focus on those who are newer to the topic and have specific things they want to accomplish. | |||
=Flyers and Handouts= | |||
* [[Tools for Protecting Against Online Snooping]] | |||
* [[Security Overview]] (work in progress, don't print) | |||
* [[Minimum Security Requirements]] | |||
==Current Flyers== | |||
A flyer for hosting a cryptoparty at sudo room every "3rd Sunday": | |||
<gallery mode="nolines"> | |||
File:Cryptoparty flyer.png|(png) | |||
File:Cryptoparty flyer.svg|(svg) | |||
File:Cryptoparty flyer pdf.pdf|(pdf) | |||
File:Cryptoparty flyer plain.svg|(plain svg) | |||
</gallery> | |||
==Historic Flyers== | |||
[[File:Cryptopartyinfoday.jpg|thumb|none|Cryptoparty flyer.]] | |||
[[Category:Events]] | |||
Latest revision as of 15:21, 24 August 2018
Update August 2018: A group of sudoers recently met to discuss rebooting digital security workshops. Please join the mailing list for updates and to get involved!
Every Third Sunday of the month from 2-5pm, Sudo Room hosts an afternoon of co-learning and teaching about digital security. The driving motivation of our cryptoparties is to learn about end-user security in a fun, welcoming and inclusive environment. Popular topics include: why digital security is important; strategies for activists and journalists; encrypted email; encrypted text messaging; encrypted phone calls; encrypting your hard drive; off-the-record instant messaging; secure web browsing; mesh networks; and presentations on newer projects. All skill levels welcome - bring your phone and/or laptop!
Archive
Ways To Volunteer For Non Coders
Translation Efforts:
- https://www.transifex.com/projects/p/Cryptocat/
- https://www.torproject.org/getinvolved/translation-overview.html.en
- https://tails.boum.org/contribute/how/translate/
- https://www.transifex.com/projects/p/torproject/resources/
Art:
- https://www.torproject.org/getinvolved/volunteer.html.en
- https://tails.boum.org/contribute/how/graphics/
Writing (documentation + press releases):
General Resources
- https://www.cryptoparty.in/brief
- https://securityinabox.org/en
- https://www.cryptoparty.in/documentation/handbook
- http://prxbx.com/email/
- http://tacticaltech.org
- http://prismbreak.com
- EFF's Surveillance Self-Defense
- EFF's Know Your Rights
- Liberation Tech (mailing list, twitter)
- Mozilla Security notes
- Alice and Bob in Cipherspace - Fully Homomorphic Encryption
- Which Countries Actively Suppress Internet Freedom?
Recommended Software
Warning: This table is intended as a starting point for new users. Mobile devices (iOS, Android), Web-based solutions, Pidgin, CryptoCat, and ChatSecure all have known flaws or associated risks that need to be considered.
Android | iOS | Windows | OS X | Linux | Cross-platform or Web | |
---|---|---|---|---|---|---|
K9 | ?? | Thunderbird+Enigmail | GPGSuite Thunderbird, Enigmail | Thunderbird, Enigmail | riseup webmail | |
Chat | GibberBot, TextSecure (sms) | TextSecure (sms) | ChatSecure | Pidgin, Adium | Pidgin | CryptoCat |
Network Anonymity | Orbot, OrWeb | Tor | Tor | Onion Browser | Tor | Tor |
Disk Encryption | Available in 4.0+ | ?? | TrueCrypt | Available in 10.7+ | LUKS | SecureDrop, Tahoe LAFS |
Password Management | KeePassX, FreeOTP | FreeOTP, KeePassX | KeePassX | KeePassX | KeePassX | KeePassX |
Videos
- Diffie-Hellman Key Exchange
- How Tor Works
- Udacity: Applied Cryptography (cs387)
- khan academy: Journey into Cryptography
- Anti-Rep workshop (1/2) - Jacob Applebaum
- Anti-Rep workshop (2/2) - Jacob Applebaum
- What Happened to the Crypto Dream?
Books
- The code breakers - david kahn
- crypto - steven levy
- the code book - simon singh
- The Cuckoo's Egg - clifford stoll (fiction)
Online Courses
Hosting A Cryptoparty
- Cryptoparties are best when some planning takes place before. Hold a planning meeting 1-2 weeks before the event and ping the mailing list to recruit folks who've expressed interest in helping out.
- There are handouts linked to above that can be printed out at sudo - they generally live in a clear document holder / trapper keeper labelled 'Cryptoparty' located in a crate of other trapper keepers on the middle shelf between the workshop and the bike station in sudo.
- Try to reach out to communities that should be using crypto and are generally not connected to the sudo room social network. Activists, journalists, immigrants + expats, POC, etc; Consider hosting the cryptoparty in an entirely different location.
- At least a week before the cryptoparty, get the word out:
- Tweet/FB posts via Sudo Room's accounts (ask Jenny for info)
- Send an announcement to the following mailing lists:
- Come half an hour to an hour earlier to set up:
- Put the sudo room sandwich board out
- Tape up some signage on the doors if so inclined (there are some paper signs in the clear trapper keeper)
- Find a good spot for your expected # of attendees. Check with Public School; often we have split up into several working groups using different areas of the common space, sudo room proper, and the public school room.
- Starting the cryptoparty:
- Take notes on the wiki - set up a separate wiki page for that month's event [eg; /wiki/Cryptoparty/YEAR/MONTHNAME
- Allow 15-30 minutes to get to a good group size to start
- Go around the room and ask folks to introduce themselves, their level of skill w/ crypto, what they're interested in discussing or working on that afternoon.
- Create an agenda ad-hoc and split the group as needed (pairs work great for things like helping someone set up disk encryption)
- Have fun! Encourage wide-ranging discussion but step in if things start to get to technical. Keep focus on those who are newer to the topic and have specific things they want to accomplish.
Flyers and Handouts
- Tools for Protecting Against Online Snooping
- Security Overview (work in progress, don't print)
- Minimum Security Requirements
Current Flyers
A flyer for hosting a cryptoparty at sudo room every "3rd Sunday":