Zero Knowledge; you can't leak what you don't know

software-engineering Talk 45 Mins Intermediate
Ben Dechrai
Ben Dechrai
Developer Evangelist
Auth0

We regularly hear of another data breach at another large company, or of governments collecting and storing more of our data. Even if we trust our service providers, they're creating a honey-pot of information that criminals would love to get their hands on.

Data in transit is a mostly solved problem, with TLS securing the connections, but how about when the data is at rest? Encryption is hard, and worse, it's not end-user friendly. One misstep, and it's as good as useless.

Learn the steps you can take to secure more of the data you store, and how you can evaluate the benefit or risk these different approaches will bring you and your customers.

 
0 comments visibility_off  Remove from Watchlist visibility  Add to Watchlist
 

Outline/Structure of the Talk

Origins of communication

Encryption - the benefits and blind-spots

Describe an example Software-as-a-Service system

How can we secure the data at rest?

How can we process encrypted data?

What security holes still exist, and what can we do about those?

How can you use this information to make a plan of what's suitable for your organisation or product?

Learning Outcome

You will gain an understanding of

  • where encryption can help secure your data at rest,
  • where it won't help you, and
  • how you can plan to implement certain strategies to protect your organisation and its customers.

Target Audience

Software Engineers, Solutions Architects

Prerequisites for Attendees

While this talk is accessible to all, some basic understanding of internet communications and data storage might be useful.

Video

Watch Video ondemand_video

Links

My full speaking schedule is available at https://bendechrai.com/schedule

schedule Submitted 3 years ago
LAST Conference Melbourne 2019

Melbourne, Australia

Melbourne Venue launch

Tue, 30th Jul 2019

email Contact Us
Recent Activities
Call for Proposals CLOSED
Ended on Jun 2 '19 11:59 PM AEST

LAST is Australia's cross-functional conference. Rather than retreat to our trade and talk among our peers-in practice we want LAST to be a place where people can learn about the holistic process of product and service development, or growing organisations and our own skills and careers.

This conference is also about learning and sharing from our colleagues. Over the years we have come to value the following things;

  • Interactive sessions over presentations
  • Specific tools and techniques over general frameworks
  • Learning from mistakes and failures over sharing sanitised success stories
  • Diversity of content over following industry best practices
  • Evidence based approaches over novel ideas

That is, while there is value in the items on the right, we value the items on the left more.

Details play_arrow
Speaker Compensation
confirmation_numberFree conference pass info_outline
Please refer to our Speaker Compensation Policy
Active Members
help