Re: [Pearg] Fwd: [Busec] Virtual BUsec seminar Wed 9/30 at 9:45 am: Sarah Scheffler, "Protecting Cryptography from Self-Incrimination"

Heinrich Feuerbach <info@feuerbach.info> Sun, 27 September 2020 09:06 UTC

Return-Path: <info@feuerbach.info>
X-Original-To: pearg@ietfa.amsl.com
Delivered-To: pearg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AEC933A0AC8 for <pearg@ietfa.amsl.com>; Sun, 27 Sep 2020 02:06:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_NONE=0.001, URIBL_BLOCKED=0.001, URI_DOTEDU=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xXLHxfZiAqgw for <pearg@ietfa.amsl.com>; Sun, 27 Sep 2020 02:06:07 -0700 (PDT)
Received: from rsi20.gerwanserver.de (rsi20.gerwanserver.de [IPv6:2a02:2260:2::5bdc:227f]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B65C43A0AB4 for <Pearg@irtf.org>; Sun, 27 Sep 2020 02:06:07 -0700 (PDT)
Received: from RR (83.24.152.129.ipv4.supernova.orange.pl [83.24.152.129]) by rsi20.gerwanserver.de (Postfix) with ESMTPSA id BE9782B8040D; Sun, 27 Sep 2020 11:06:04 +0200 (CEST)
Date: Sun, 27 Sep 2020 10:59:28 +0200
From: Heinrich Feuerbach <info@feuerbach.info>
To: "David R. Oran" <daveoran@orandom.net>
Cc: Pearg@irtf.org
Message-ID: <20200927105928.39557a89@RR>
In-Reply-To: <6362EFFB-0BA4-48C6-B97B-8737A1321F79@orandom.net>
References: <CAH_gZeGkab3No2VrJMb9rK6xM7JU=TGBoCDA_ooXkEPZ2Q3i1g@mail.gmail.com> <6362EFFB-0BA4-48C6-B97B-8737A1321F79@orandom.net>
Organization: Feuerbach-Informatik
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-PPP-Message-ID: <160119756521.29396.9119484431945514025@rsi20.gerwanserver.de>
X-PPP-Vhost: feuerbach.info
Archived-At: <https://mailarchive.ietf.org/arch/msg/pearg/y8F3nfeiDLslPF_wmKswzWje3nI>
Subject: Re: [Pearg] Fwd: [Busec] Virtual BUsec seminar Wed 9/30 at 9:45 am: Sarah Scheffler, "Protecting Cryptography from Self-Incrimination"
X-BeenThere: pearg@irtf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Privacy Enhancements and Assessment Proposed RG <pearg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/pearg>, <mailto:pearg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pearg/>
List-Post: <mailto:pearg@irtf.org>
List-Help: <mailto:pearg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/pearg>, <mailto:pearg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Sun, 27 Sep 2020 09:06:10 -0000

Hello Dave,

one working Ansatz is already there to solve this issue: it is the
possibility of having a private partition in an eg. USB stick, beneath
a "public" partition. So to hide encrypted volumes inside another (as
well encrypted) volume. In case of trying to enforce decryption, one
would just decrypt the "outer" volume, containing nothing really
important to the user. So, no way to have or get evidence of another
volume inside, which contains really confidential data, as everything
is held as random bytes on the same disk. 
Example is the tool "VeraCrypt".

Cheers,
Hein


On Sat, 26 Sep 2020 10:11:26 -0400
"David R. Oran" <daveoran@orandom.net> wrote:

> This work might be of interest to the PEARG community.
> 
> DaveO
> 
> Forwarded message:
> 
> > From: Sarah Scheffler <sscheff@bu.edu>
> > To: busec <busec@cs.bu.edu>
> > Subject: [Busec] Virtual BUsec seminar Wed 9/30 at 9:45 am: Sarah 
> > Scheffler, "Protecting Cryptography from Self-Incrimination"
> > Date: Fri, 25 Sep 2020 10:26:53 -0600
> >
> > *Date/time: *Wed 9/30 at 9:45am ET
> > *Zoom link: *
> > https://bostonu.zoom.us/j/222968851?pwd=RTBhSnVnbDhqbnFrMWRSeVU1alYyUT09
> > *Meeting ID: *222 968 851
> > *Password: *115101
> >
> > -
> >
> > *Speaker: *Sarah Scheffler
> > *Title: *"Protecting Cryptography from Self-Incrimination"
> > *Abstract: *
> > The information security community has devoted substantial effort
> > to the
> > design, development, and universal deployment of strong encryption 
> > schemes
> > that withstand search and seizure by computationally-powerful 
> > nation-state
> > adversaries. In response, governments are increasingly turning to a
> > different tactic: issuing subpoenas that compel people to decrypt 
> > devices
> > themselves, under the penalty of contempt of court if they do not 
> > comply.
> > Compelled decryption subpoenas sidestep questions around government 
> > search
> > powers that have dominated the Crypto Wars and instead touch upon a
> > different (and still unsettled) area of the law: how encryption 
> > relates to
> > a person's right to silence and against self-incrimination.
> >
> > In this work, we provide a rigorous, composable definition of a 
> > critical
> > piece of the law that determines whether cryptosystems are
> > vulnerable to
> > government compelled disclosure in the United States. We justify our
> > definition by showing that it is consistent with prior court cases.
> > We prove that decryption is often not compellable by the government
> > under our
> > definition. Conversely, we show that many techniques that bolster 
> > security
> > overall can leave one more vulnerable to compelled disclosure.
> >
> > As a result, we initiate the study of protecting cryptographic 
> > protocols
> > against the threat of future compelled disclosure. We find that
> > secure multi-party computation is particularly vulnerable to this
> > threat, and we
> > design and implement new schemes that are provably resilient in the 
> > face of
> > government compelled disclosure. We believe this work should
> > influence the
> > design of future cryptographic primitives and contribute toward the 
> > legal
> > debates over the constitutionality of compelled decryption.
> >
> > *Bio:*
> > Sarah is a fifth-year PhD student in the crypto/security group at 
> > Boston
> > University, advised by Prof. Mayank Varia. Her research examines 
> > topics in
> > the intersection of law and cryptography, as well as zero-knowledge 
> > and
> > secure messaging.
> 
> > _______________________________________________
> > Busec mailing list
> > Busec@cs-mailman.bu.edu
> > https://cs-mailman.bu.edu/mailman/listinfo/busec