1 of 15

Security,�Obscurity, Openness

Emanuele Cesena

ec@solokeys.com�@0x0ece

2 of 15

A (crypto)system should be secure even if everything about the system, except the key, is public knowledge.

3 of 15

Openness = Trust

4 of 15

iOS vs Android

5 of 15

Obscurity�"because of Security"

6 of 15

Security

Obscurity Openness

7 of 15

Security

Obscurity Openness

8 of 15

Let's break the cycle!�

Make open source alternatives�(e.g. for security keys)

9 of 15

August 2018, SoloKeys:��We make open source hardware for secure login.

10 of 15

Solo: the first open source security key to support FIDO2

11 of 15

October: Kickstarter�$123K from ~3K backers

November: passed�FIDO2 certification tests

December: first shipment

January: Shmoocon

12 of 15

Solo vs Solo Hacker*

*unlocked, reprogrammable

13 of 15

Thank you, HackerNoon

Thank you, GitHub

Thank you!

14 of 15

Let's make security more open

in hardware like in software

https://solokeys.com

Emanuele Cesena

ec@solokeys.com�@0x0ece

Get 15% off:�HACKER15

15 of 15

Finding a Microcontroller is hard!�(EFM32J, NRF52840, SAML11, STM32L4)