Encryption and privacy in web apps

@raae

Encryption and privacy in web apps

@raae

The family/business

JSConf Budpest 2019

Live stream

Why make a privacy focused web app?
End-to-end encryption is key
Let's code!
Privacy is more than end-to-end encryption
Challenges with a privacy focused web app

Disclaimer

Thank you

Jeffrey Goldberg!

@jpgoldberg on Twitter

Why?

Don't be evil

vs.

Can't be evil

End-to-end encryption

Web Crypto API

jcy8BRD4&NidjK6zXBw<w1Jw#gqkmEwcRWev@@41D5H@9K}#>=)+Qw0,kVv}U6p

Entropy

A long random sequence of characters has high entropy, a short human memorable password has low entropy.

A key can be

generated or derived

Encryption ≠ Privacy

Website

Analytics

Marketing Automation

Encryption and privacy in web apps

Encryption and privacy in web apps

Disclaimer

Why?

Don't be evil

Can't be evil

End-to-end encryption

Web Crypto API

Entropy

A key can be

generated or derived

Let's code!

Encryption ≠ Privacy

Website

Analytics

Marketing Automation

Application Monitoring

Billing

Challenges

Less tooling

You are in the dark

No password recovery

Key Management

Go Play!

queen.raae.codes/mpya

https://