mersenneforum.org  

Go Back   mersenneforum.org > Extra Stuff > Blogorrhea > chalsall

Reply
 
Thread Tools
Old 2020-08-08, 21:15   #1
chalsall
If I May
 
chalsall's Avatar
 
"Chris Halsall"
Sep 2002
Barbados

67·139 Posts
Default Just because I'm Paranoid doesn't mean They're not out to Get Me.

Hey All.

I can't go into details, but I find myself in a situation where I might be able to provide some guidance on a public-education exercise with regards to best practices in this new "online" world within which we now all find ourselves.

I don't communicate well with "normals", and so there will be several layers between what I present for consideration and what is actually communicated. I prefer it that way; I always want at least one (human) editor between me and the audience.

I would welcome feedback from those here on What Makes Sense (TM), in relation to the below.

Everything posted here on the Mersenne Forum falls under a CC license.

We'll likely never be directly credited for any good done.

Strong people are comfortable with that.
chalsall is offline   Reply With Quote
Old 2020-08-08, 21:25   #2
chalsall
If I May
 
chalsall's Avatar
 
"Chris Halsall"
Sep 2002
Barbados

67×139 Posts
Default Important concepts to map language onto.

These are the concepts that need to be expanded upon, into easily understood human language.

1. Trust.

2. Entropy.

3. What is a Certificate?

3.1. Certificate Chain?

4. What is a Digital Signature?

5. What is a Digital Credential?

6. What is a Digital Token?

7. What is an Attack Surface?

7.1. What is an Attack vector?

8. Social Engineering.

8.1. Humans are statistically your most likely risk.

8.2. Phishing.

8.3. Spear-phishing.

8.3.1. "Your email box is full. Click here (a tagged URL which is completely different than what is shown in the email) to confirm your account!

9. A discussion about Passwords vs. Passphrases vs. PINs.

9.1. The costs of exhaustive searches.

9.2. Why "123456" is a *really* bad PIN (and yet used by ~12% of all accounts).

10. Salting.

11. One-way hashes.

This post will be edited as we fill in the details, and debate the concepts.

Last fiddled with by chalsall on 2020-08-09 at 15:28
chalsall is offline   Reply With Quote
Old 2020-08-09, 06:35   #3
jwaltos
 
jwaltos's Avatar
 
Apr 2012

3·5·23 Posts
Default

Quote:
Originally Posted by chalsall View Post

8.2. Pishing.

8.3. Spear-pishing.
Phishing, but you made your point.

Edit_CH: Thanks. Fixed. (I'll be deleting messages over time, as any suggested deltas are applied.)

Last fiddled with by chalsall on 2020-08-09 at 15:29
jwaltos is offline   Reply With Quote
Old 2020-08-09, 08:41   #4
pinhodecarlos
 
pinhodecarlos's Avatar
 
"Carlos Pinho"
Oct 2011
Milton Keynes, UK

2·3·5·157 Posts
Default

Looking forward to hearing about number two.
pinhodecarlos is offline   Reply With Quote
Old 2020-08-09, 11:33   #5
Nick
 
Nick's Avatar
 
Dec 2012
The Netherlands

59C16 Posts
Default

To be effective, I think you will have to split up your audience somehow and create different versions for each group.
Nick is offline   Reply With Quote
Old 2020-08-09, 15:27   #6
chalsall
If I May
 
chalsall's Avatar
 
"Chris Halsall"
Sep 2002
Barbados

246116 Posts
Default

Quote:
Originally Posted by Nick View Post
To be effective, I think you will have to split up your audience somehow and create different versions for each group.
Completely agree.

There are going to be professional communicators who take this language, and copy-and-paste and edit it deeply to be more palatable to different audiences.

The target demographics will be wide-ranging, from the lay-person who has never digitally signed anything before in their lives, to programmers who will soon have access to an API for development purposes.

Appreciate any and all feedback.
chalsall is offline   Reply With Quote
Reply

Thread Tools


Similar Threads
Thread Thread Starter Forum Replies Last Post
Hopefully *this* user doesn't find M49... NBtarheel_33 PrimeNet 15 2014-08-19 06:14
Just because it looks like it MIGHT be racism doesn't mean it is jasong jasong 6 2014-02-12 14:15
Prime95 doesn't run on Mac kolen Information & Answers 5 2013-06-02 20:31
Why LMH doesn't sieve geoff Lone Mersenne Hunters 5 2005-04-23 04:24
SkipTrialFactoring=1 doesn't work? cmokruhl Software 1 2002-10-15 19:04

All times are UTC. The time now is 03:06.

Thu Sep 24 03:06:33 UTC 2020 up 14 days, 17 mins, 0 users, load averages: 1.95, 1.64, 1.47

Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.

This forum has received and complied with 0 (zero) government requests for information.

Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation License, Version 1.2 or any later version published by the Free Software Foundation.
A copy of the license is included in the FAQ.