The talk will give some insights into what data is moving from devices into corporate clouds and how that data is used to compile insights about user groups. Next are several key facts explained on why not only looking at metadata is important but also the actual content itself in that context. Afterwards the talk will highlight some ways to mitigate the threat posed by data aggregation.
---
More about G DATA Security Summit: https://www.gdatasoftware.com/30ysummit
---
Christian Geschkat is Product Manager Mobile Solutions at G DATA.
3. AGENDA
Define encryption today
What is happening with my data
Who is interested in my data at all?
What can be done about it?
What do we do about it?
G DATA | 30Y ANNIVERSARY SECURITY SUMMIT | BOCHUM, SEPTEMBER 24, 2015
Today we will shed a light on common practices in the corporate world regarding usage of data
that you willingly or unwillingly provide
3
4. ENCRYPTION TODAY
Encryption prevents third parties from reading your data
Data can be anything from websites to personal text
messages and pictures
There is a third type of encryption needed today: one that
will prevent corporations from reading your diary
The term encryption means different things to different
people that you should be aware of
G DATA | 30Y ANNIVERSARY SECURITY SUMMIT | BOCHUM, SEPTEMBER 24, 2015 4
5. G DATA | 30Y ANNIVERSARY SECURITY SUMMIT | BOCHUM, SEPTEMBER 24, 2015 5
ENCRYPTION TODAY
6. ENCRYPTION TODAY
Transport encryption
Content encryption
G DATA | 30Y ANNIVERSARY SECURITY SUMMIT | BOCHUM, SEPTEMBER 24, 2015 6
7. WHAT HAPPENS WITH MY DATA?
G DATA | 30Y ANNIVERSARY SECURITY SUMMIT | BOCHUM, SEPTEMBER 24, 2015 7
Google constantly tracks your location
data and stores every single data point
gathered from your Android phone
They now expose this collected data
on their location history feature in
Google Maps
Google knows where you are, who
else is there and if you both know each
other by analyzing phone contacts and
calendar entries
8. WHAT HAPPENS WITH MY DATA?
G DATA | 30Y ANNIVERSARY SECURITY SUMMIT | BOCHUM, SEPTEMBER 24, 2015 8
Uber analyzed rides in major US cities
based on behaviour:
Rides on a Friday or Saturday evening from
a bar district to a residential district
Back to the city centre after a few hours by
the same person
They called those „Rides of Glory“
Basically Uber now knows who of their
customers are having one night stands
just by data analysis
9. WHAT HAPPENS WITH MY DATA?
G DATA | 30Y ANNIVERSARY SECURITY SUMMIT | BOCHUM, SEPTEMBER 24, 2015 9
We have to cease control of our
content in social networks
Data is leaving the jurisdiction of the
originating country into countries with
less strict data protection laws
10. WHAT HAPPENS WITH MY DATA?
G DATA | 30Y ANNIVERSARY SECURITY SUMMIT | BOCHUM, SEPTEMBER 24, 2015 10
Our data is constantly and automatically
monitored and analyzed
Profiles based on that data are generated
in order to show more effective ads and to
sell more products to us
11. WHO IS INTERESTED IN MY DATA?
Almost every corporation or government
entity is collecting data about citizens or
customers in some form
These data hubs become more and more
interesting to cyber criminals: Data is the oil
of the 21st century
Every data point is relevant because it
allows to deduce statistical relevant
assumptions
G DATA | 30Y ANNIVERSARY SECURITY SUMMIT | BOCHUM, SEPTEMBER 24, 2015
Seemingly everybody
11
12. WHAT CAN BE DONE ABOUT IT?
Being aware about who is accessing personal data
App permissions hint at usage
Being aware about who is accessing meta data
Checking privacy settings and conditions is a must
Not believing transport encryption is enough
G DATA | 30Y ANNIVERSARY SECURITY SUMMIT | BOCHUM, SEPTEMBER 24, 2015 12
13. WHAT DO WE DO ABOUT IT?
Taking user requirements seriously
Taking user concerns seriously
Taking encryption seriously.
SecureChat for Android.
Try it at https://www.securechat.com
G DATA | 30Y ANNIVERSARY SECURITY SUMMIT | BOCHUM, SEPTEMBER 24, 2015 13
14. G DATA | 30Y ANNIVERSARY SECURITY SUMMIT | BOCHUM, SEPTEMBER 24, 2015 14
… THANK YOU!