お知らせ 【グループ管理者の皆さま】成長し続けるエンジニアを支援する「Forkwell」と「connpass」が連携し、connpass上でイベントを開催するグループを2020年3月末まで支援いたします。詳しくはこちら by Forkwell

このエントリーをはてなブックマークに追加

2月

20

WebHack #11 Using Cryptography Safely

Organizing : https://webhack.connpass.com/

Hashtag :#cryptography
Registration info

Free Admission + Dinner (self-paid)

Free

FCFS
13/15

Free Admission

Free

FCFS
18/45

Description

Details

Using Cryptography Safely

Abstract

issue

Web apps are using cryptography very often nowadays, but still this is not a simple task. As shown, a whopping 87% of Android apps and 80% of iOS apps analyzed by Veracode were found to have cryptographic issues.

If you're using your language's standard library to encrypt something, you'll suddenly find yourself grappling with arcane choices. Should you use CFB, CBC, CTR or ECB? Should you use PKCS#7 padding? What is an IV and how do you set it's value?

These little choices can easily break your cryptography entirely, even you've chosen a strong cipher. Turning to the web for help, won't save you either. Unfortunately, Stack Overflow answers, blog articles and tutorials are still full of mistakes and bad advice.

There are some good news, though. You can understand how encryption works without understanding all the math behind it. This talk will try to unlock the meaning behind all these confusing terms and help you learn new ideas and write safer code in the same time.

Presenter

Boaz Yaniv is Software Architect who is passionate about security and cryptography. Linguist and Humanities specialist by training, he found himself working on authentication solutions - first for the Israeli government then for Rakuten, Inc. in Japan - and add to learn a lot about cryptography in the process.

Lightning talk: Overview of JSON Object Signing and Encryption (JOSE)

Abstract

JavaScript Object Notation (JSON) is a text format for the serialization of structured data. The JSON format is often used for serializing and transmitting structured data over a network connection.

JSON Object Signing and Encryption (JOSE) WG in IETF standardized mechanism for integrity protection (signature and MAC) and encryption as well as the format for keys and algorithm identifiers to support interoperability of security services for protocols that use the JSON.

There are specifications such as JSON Web Key (JWK), JSON Web Signature (JWS) and JSON Web Encryption (JWE) in JOSE WG. This lightning talk will introduce overview of them.

Presenter

Masaru Kurahayashi(@kura_lab) is Authentication Technology kuro-obi(黒帯) and CISO-Board in Yahoo! Japan Corporation. He is an engineer and responsible for Identity federation systems such as OAuth and OpenID Connect provided by Yahoo! JAPAN. Also, He works for OpenID Foundation Japan as an evangelist for about four years.

Program

  • 19:00-19:10 Registration
  • 19:10-20:00 Presentation from Mr. Boaz Yaniv
  • 20:00-20:10 Q&A
  • 20:10-20:20 Talk from Mr. Masaru Kurahayashi
  • 20:30-22:00 Dinner

Venue

https://lodge.yahoo.co.jp/access_pc.html

Contact

Mr.Bible (080-8495-1823)

Acknowledgement

Tech Meetup WebHack would like to express the special thanks of gratitude to Yahoo! JAPAN who provide the wonderful venue.

Presenter

Boaz Yaniv Boaz Yaniv Masaru Kurahayashi Masaru Kurahayashi

Feed

WangFangda

WangFangdaさんが資料をアップしました。

02/28/2018 08:58

WangFangda

WangFangdaさんが資料をアップしました。

02/21/2018 11:30

WangFangda

WangFangdaさんが資料をアップしました。

02/21/2018 11:21

WangFangda

WangFangdaさんが資料をアップしました。

02/21/2018 11:16

WangFangda

WangFangdaさんが資料をアップしました。

02/21/2018 11:14

WangFangda

WangFangda published WebHack #11 Using Cryptography Safely.

02/02/2018 18:10

WebHack #11 Using Cryptography Safely has been published!

Ended

2018/02/20(Tue)

19:00
20:20

開催日時が重複しているイベントに申し込んでいる場合、このイベントには申し込むことができません

Registration Period
2018/02/02(Fri) 19:00 〜
2018/02/20(Tue) 18:30

Location

Yahoo! Japan LODGE

東京都千代田区紀尾井町1-3 17F

Attendees(31)

Ken Izumi

Ken Izumi

WebHack #11 Using Cryptography Safely に参加を申し込みました!

Charles Green

Charles Green

I joined WebHack #11 Using Cryptography Safely!

Hsiaoming

Hsiaoming

I joined WebHack #11 Using Cryptography Safely!

nitamon314

nitamon314

WebHack #11 Using Cryptography Safelyに参加を申し込みました!

tzuzee

tzuzee

I joined WebHack #11 Using Cryptography Safely!

麥町

麥町

WebHack #11 Using Cryptography Safelyに参加を申し込みました!

navigatorhsu

navigatorhsu

WebHack #11 Using Cryptography Safely に参加を申し込みました!

c3retc3

c3retc3

I joined WebHack #11 Using Cryptography Safely!

jammm

jammm

I joined WebHack #11 Using Cryptography Safely!

VivekVikani

VivekVikani

I joined WebHack #11 Using Cryptography Safely!

Attendees (31)

Canceled (11)