16:45 - 17:30
We’ve all read the news; we’re being surveilled as a massive level. Governments are indiscriminately collecting data, and storing it for years. Even if we trust our governments, this creates a honey-pot of information that criminals would love to get their hands on.
SSL certificates and encryption are important for data transport, and yet even some of the bigger companies don’t get it right. Encryption is hard, and it’s not end-user friendly, but the tide is changing.
What if your business needs to work with the data? End-to-end encryption between users isn’t an option. How can we increase security and privacy, when we need to see our users’ data? The principle of datensparsamkeit, to store only what you absolutely need, is still subject to concern if there’s a data breach.
This talk discusses the options for end-to-end communications encryption in web applications, as well as ways of securely and anonymously handling and distributing sensitive information between users, without allowing the raw data to give anything away.