Not-so-secure Instant Messaging

Presented at Summercon 2016, July 15, 2016, 3 p.m. (50 minutes)

The past few years have seen a proliferation of encrypted instant messaging systems, as well as a global debate about the impact of these systems on law enforcement and national security. What hasn't been asked is: how secure are these systems? In this talk we'll examine some popular secure messaging systems, including Apple iMessage and Telegram. I will describe how a a flaw in Apple's encryption allowed us to completely decrypt instant messages. I'll also talk about the future of secure instant messaging, and how governments are reacting to the technology.

Presenters:

• Matthew Green   as Dr. Matt Green
  Dr. Matthew Green, a respected cryptographer and security technologist, has over fifteen years of industry experience in computer security. Dr. Green is an Assistant Professor of Computer Science at the Johns Hopkins Information Security Institute. He specializes in applied cryptography, privacy-enhanced storage systems, and anonymous cryptocurrencies. Dr. Green led the team that developed the first anonymous cryptocurrencies, Zerocoin and Zerocash. His research team has exposed flaws in more than one third of SSL/TLS encrypted web sites as well as vulnerabilities in encryption technologies, including RSA BSafe, Exxon/Mobil Speedpass, EZpass, and automotive security systems. @matthew_d_green

Links:

• https://www.summercon.org/archives/2016/presentations.html#not-so-secure

Similar Presentations:

• Black Hat Asia 2020 Virtual / The Inside Story: There are Apps in Apps and Here is How to Break Them
• The Fifth HOPE (2004) / Secure Instant Messaging
• 33C3 (2016) / A look into the Mobile Messaging Black Box: A gentle introduction to mobile messaging and subsequent analysis of the Threema protocol.