PBU-Blocking_Your_Metadata

Encrypt your MetaData

Prism Breakup
Eyebeam
Gabriella Levine
Gabriellalevine.com | gabriella.levine@gmail.com
Sunday, October 6, 13

http://goo.gl/yxS0Z3


1. What does Metadata look like?
2. cryptographic protocols
3. See what’s happening on your network
4. Some ways to block your data

1 hour

1. Delete cookies
2. Alternate Web Browser & Online Storage
3. Your Documents (text, images...)
4. Chat / Skype / Twitter / Facebook / SMS
5. VPN / Little Snitch

Protect your metadata.

Data about Data...
“electronic DNA”

What is MetaData?

Where does it come from?

1. In the “cloud”
2. On the client’s server
3. On your local machine (cookies)
4. The client’s client’s server
...where else?

Where is it kept?

NSA data centers

Bluffdale, Utah

NISO categories of metadata:
Structural, Descriptive, Administrative
Markup Languages : syntax to express
metadata
Different syntaxes:
XML, HTML, JSON, RDF, plain text...

MetaData Syntax

ISO - endorsed Dublin Core
1. Title
2. Creator
3. Subject
4. Description
5. Publisher
6. Contributor
7. Date
8. Type
9. Format
10.Identiﬁer
11.Source
12.Language
13.Relation
14.Coverage
15.Rights

MetaData Standards

What does it look like?

Cookies?

First party cookies
Third party cookies

What are cookies?

Where is it stored?

How does it get there?

How to see my cookies?

chrome://settings/cookies

- Track how many people visit a website
- Store Login / password info
- E-Commerce sites store customer
preferences
- Easy checkout info
- Sell your cookie info to telemarketers
- Sell statistics
...all based on info you’ve input to an
form online

What with my cookies?

Cookies across multiple sites?

⌘-shift-N
Doesn’t store cookies to your
local disk
Metadata is still stored on the
client’s site

Chrome Incognito?

Downsides?
-passwords
-preferences
-autocomplete
...

Delete cookies

How does it effect me?

Advertisements (AdSense)

Advertisements

how else...?

Airline flights?

-Communication protocol over a network
-HTTPS vs. HTTP
-HTTP sends data as plain text
-HTTPS encrypts data with SSL (secure
socket layer)
-HTTPS layers HTTP on top of SSL / TLS

Security Certificates

-Perform authentications
-Encrypt communications
-Uses a certificate
-CA (certificate authority) has a private key
used to sign other certificates
-CA resources : Thawte, Verisign...
-Free ones: CAcert, StartSSL, godaddy.com ...

SSL : Secure Socket Layer

- SSL Certificates have a key pair: a public
and a private key.
- These keys work together to establish an
encrypted connection.
- RSA: an algorithm for public key
encryption

RSA encryption

Public key encryption

Security certificate not trusted

Anyone can create a key pair
Verisign makes DIGITAL CERTIFICATES, by signing
public keys
This certificate is seen by my browser, which has
a list of trusted providers
Trusted providers vs. not trusted providers (selfsigned)
Verisign is expensive ($1000)

Value = Trustworthiness

in Adium: View Certificate

HTTPS everywhere

IP address to identify your general location
“We may also select advertising based on
information about your computer or device,
such as your device model, browser type, or
sensors in your device like the accelerometer.”
http://www.google.com/policies/technologies/ads/

Metadata that is tracked

Some cool diagnostic tools

IP Lookup: whatismyipaddress.com

whatismyipaddress.com/ip-lookup

Little Snitch

Little Snitch Network Monitor

Little Snitch Configuration

WireShark: what’s on your network?

1. Firewall - protect your computer from
data from the internet)
2. VPN (virtual private network - protect
your data on the internet)
3. Little Snitch (protects your private data
from being sent out)

Shields

Firewall

http://www.engadget.com/2006/05/30/
how-to-build-your-own-network-firewall/

Firewall

VPN: Hotspot Shield

Hotspot Shield: IP Hider Mask

SpiderOak

Alternate Online Storage

Spideroak.com

Tor (free software for enabling online anonymity

through a network)

Duck Duck Go (an anonymous internet search

engine)

Project Meshnet + cjdns (an encrypted

network, with the goal of a sustainable decentralized
alternative internet)

HyperBoria + cjdns (a global decentralized

network, alternative internet)

Alternate Browsers & Networks

duckduckgo.com

Project Meshnet

Hyperboria.net

cjdns.info

evbogue.com

Mozilla’s DoNotTrack

RiseUp
HushMail ($$)
Zoho ($$)
BlueHost ($$)
Thunderbird + Mozilla’s DoNotTrack option

Email

mail.RiseUp.net

Thunderbird + DoNotTrack

•Microsoft Office (Word, Powerpoint...)
•Adobe (Photoshop, Illustrator...)

Text files, photos, videos...

Extensible Metadata Platform
Microsoft Office
Adobe

XMP standard

• Your name
• Your initials
• Your company or organization name
• The name of your computer
• The name of the network server or hard disk where yo
• Other file properties and summary information
• Non-visible portions of embedded OLE objects
• The names of previous document authors
• Document revisions
• Document versions
• Template information
• Hidden text
• Comments

MS Word

•Gimp
•Formulate Pro
•Open Office
•....

Open Source Alternatives

•Your name
•What type of camera
•GPS location photo taken
•Photo date / time
•Size, formate
•linked files
•fonts
•properties
•copyrights
•edit history

Photos

Adobe Bridge

Adobe Bridge
Adobe Bridge

Startup Script

MICROSOFT :
http://support.microsoft.com/
default.aspx?scid=kb;EN-US;290945
ADOBE:
http://help.adobe.com/en_US/acrobat/
X/pro/using/WS4E397D8A-B438-4b93BB5F-E3161811C9C0.w.html

Minimize metadata

Not searchable

The downsides?

Chat Services

Adium.im

Link your accounts

OTR Messaging

Toggle Encryption

Accept Encryption

Chat OTR

G-Chat Log

Gibberbot

ChatSecure for iOS

•crabgrass
•status.net

Twitter

status.net

crabgrass

Adium plugin for SKYPE:
http://www.adiumxtras.com/index.php?
a=xtras&xtra_id=5011

ostel.co

VoIP

•Alternate browsers?
•Getting rid of your metadata on
documents?
•Alternative social networks?
•...

The downsides?

Why are these interfaces
so shitty?

Small alternative browsers
or networks? vs. working
around current ones (chrome,
etc.)

Why open source?

Immersion.media.mit.edu

XMPP services

XMPP.net

register an XMPP chatserver

Create New XMPP

jabber.chaotic.de

1. Now I know how to use Adium to encrypt my chats,
and I use chatserver or gibberbot for sending texts,
and I use Rise Up for gmail, but what can I do because
everyone uses gmail still?
2. All of these platforms are messy and hard to use can we come up with 3 solutions for better, more user
friendly interface?


PBU-Blocking_Your_Metadata

Recomendados

Recomendados

Más contenido relacionado

Último

Último (20)

Destacado

Destacado (20)

PBU-Blocking_Your_Metadata