In-depth technical inquiry about application-level encryption. How crypto helps to narrow down significant risks to controlled attack surfaces, enables managing the risk efficiently and elegantly, how tools and algorithms sit in a broader context of managing infrastructure-wide risks associated with handling sensitive data.
We discuss client-side, middleware-side and proxy-side encryption. End-to-end encryption, Zero knowledge, Zero trust systems.Click to read slides.
Read talk transcript on Codemotion site.