Overview
Explore the Electronic Frontier Foundation's (EFF) mission to encrypt the entire Internet in this 51-minute conference talk. Delve into the organization's decade-long journey to secure web communications through HTTPS adoption. Learn about the new STARTTLS Everywhere project, aimed at enhancing mailserver security. Discover the challenges faced in implementing widespread encryption, including issues with TLS ubiquity and configuration. Gain insights into automated solutions like ACME and future developments such as Encrypted SNI and DNS. Understand the practical implications for mailserver administrators and the importance of obtaining proper certificates. Engage with the speaker's call for feedback and collaboration to further advance Internet-wide encryption efforts.
Syllabus
Intro
We Petition the Government
We Rally Grassroots Support
EFF's Three Theories of Change
Let's Take a Trip Down Memory Lane
We tried the courts...
Ten years ago...
TLS Was Not Ubiquitous
Problem 1 & 2: TLS is not ubiquitous
How ACME Works
Problem 3 & 4: TLS/HTTPS Configuration
Current Events
What kinds of Automation?
The Future Looks Bright
Solution: Encrypted SNI
Encrypted DNS
This Ain't Theoretical
Get your mailserver a damn cert
Receiving Failure Reports
Posting MTA-STS Records/Policies
Taught by
0xdade