Servers can't be trusted, and thanks to tamper-proof journals EteSync doesn't need to!

Servers can't be trusted, and thanks to tamper-proof journals EteSync doesn't need to!

FOSDEM 2018

Servers can't be trusted! Whether it's because of a malicious company, a rogue employee, a government agency, a random hacker or malware, your data is not safe if it's just sitting there exposed on a server.

Luckily, there are ways to mitigate some of the threats, for example by making your server more secure, using a server you trust (self-host) and using end-to-end encryption, so the server doesn't have access to this information. While these are great, the server can still successfully manipulate your data, this is where tamper-proof journals come into play and help reducing even that.

In this talk Tom will show some of the threats your data is facing on servers even when self-hosting and using end-to-end encryption, explain what tamper-proof journals are, how they can mitigate these threats, and how they are used by EteSync to better secure your data.

Audience:

• People interested in securing their personal data, especially address books and calendar events.
• People interested in learning about the limitations of some of the widely used approaches for securing data.
• Developers creating, maintaining or developing secure solutions who will benefit by exposing themselves to more potential privacy issues and how to solve them.

Speakers: Tom Hacohen