Upcoming Events

Past Events

Rightscon 2017 29-31.03.2017
CryptoAction Symposium 27-28.03.2017
F2F Meeting 03.03.2017
ASIACRYPT 2016 4-8.12.2016
Sciences à coeur 01.12.2016
Crypto-design 25.11.2016
ELEVATE Festival 22.10.2016
Freedom Not Fear 14-17.10.2016
Internet Science 2016 12-14.09.2016
OpenPGP Conference 8-9.09.2016
4S/EASST Conference - 01-02.09.2016
IETF 96 Hack-a-thon 17-26.07.2016
PGPSummit 08-10.07.2016
DSI Workshop 29.06.2016
Trust in Digital Life 15-16.06.2016
Cryptorave 6-7.05.2016
Cryptoparty 24.04.2016
NetFutures 2016 20.04.2016
NDSS TRON, 2016 21.02.2016
FOSDEM 30-31.01.2016

highlights & Events

coming Les Entretiens du Nouveau Monde Industriel (ENMI 2017) Paris, France / 19-20.12.2017

THE NEW INDUSTRIAL WORLD FORUM 2017

« ARTIFICIAL INTELLIGENCE / ARTIFICIAL STUPIDITY »

19-20 december 2017, Grande salle du Centre Pompidou

In collaboration with European project NextLeap, ANR project Epistémè and Plaine Commune’s Chaire de Recherche Contributive

Within the scope of a global reflection on a new articulation of data processing within the data economy (reticulated artificial intelligence, deep learning, machine learning in general and intensive calculus), on one hand, and of the interpretation of this data and these processes, on the other hand, and within the present scientific context as well as within the exercising of citizenship and more generally of responsibility, this eleventh edition of the New Industrial World Forum intends to analyse the impact of scientific instruments on the constitution of academic knowledge in a time when the technologies stemming from mathematics, as applied to computer science and networks, tend to establish themselves in all domains on the basis of efficiency criteria prescribed by the markets.

Program and inscription : https://enmi-conf.org

coming Security, Privacy and Applied Cryptographic Engineering (SPACE 2017) Hyderabad, India / 13-17.12.2017

Security, Privacy and Applied Cryptographic Engineering (SPACE 2017)

Francesca Musiani elected Vice-president in charge of Research of the Internet Society France Paris, France / 23.11.2017

Francesca Musiani (Cnrs, Nextleap partner) elected Vice-president in charge of Research of the Internet Society France.

https://www.isoc.fr/nicolas-chagny-reconduit-presidence/

Current issues in SDO decision-making for the Internet Parliament, London, United Kingdom / 15.11.2017

Current issues in SDO decision-making for the Internet

EU-Commission funds open source encryption FM4 Radio - Vienna - Austria / 13.11.2017

Article on the website of “FM4” Radio about the EU commission funding open source encryption, and in which the Nextleap project is cited.

http://fm4.orf.at/stories/2877814/

Décrypte et Glitch ta vi(ll)e Mains d'Oeuvres, Saint-Ouen, France / 27-29.10.2017

As part of the NextLeap European Program, IRI is organizing a “CryptoCamp” open to all technological, creative and political contributions related to topics of the NextLeap project: 1) group dynamics, personal data and cryptography and 2) platforms , governance, decentralized systems and the future of the web.

This workshop is being held as part of the Festival Rou (-x) tor at Mains d’oeuvre, Saint Ouen : Friday, October 27, 2017 - 14h - 19h Saturday, October 28, 2017 - 15h - 23h Sunday, October 29, 2017 - 14h - 19h

By alternating presentations of digital tools and practices with hacking, improvisation and role-playing sessions, the goal is to explore autonomous and decentralized digital practices in interaction with artistic performances proposed by the Festival.

Information and registration website: http://nextleap.eu/events/cryptocamp-mdo-2017.html

*** NEXTLEAP> http://nextleap.eu/ The European project NextLeap aims to create, confirm and disseminate communication protocols for a better foundation of the Internet, based on essential security, trust and respect for individual freedoms. NEXTLEAP is a European research project focused on an interdisciplinary study combining expertise in cryptography, privacy and decentralization. The team includes specialists in computer science, formal protocol verification, science and technology studies, sociology, philosophy and engineering. Partnership involves Inria, UCL, CNRS, IRI, and Merlinux (H2020 CAPS - Collective Awareness Project)

*** ROUXTEUR / NEMO at Mains d’Oeuvres, St Ouen

The Internet, Private Actors and Security Challenges Paris / 09.10.2017

International workshop ANR / UTIC

In the first of three conferences to be held over the next year, Didier Bigo (CERI-Sciences Po), Laurent Bonelli (ISP-Paris-10 Nanterre) and Sebastien-Yves Laurent (CMRP-Bordeaux) from the ANR project UTIC are bringing together representatives of major online service providers for a high-level experts roundtable. Participants will look at the ways in which technology firms engage with policy-makers and law enforcement agencies to address today’s major security challenges: How did their relationship with intelligence and law enforcement agencies evolve amidst heated post-Snowden debates on surveillance and privacy? What are the main legal hurdles faced by online service providers to protect the rights of their users, and what changes in legislation are called for? How do these companies adapt their business practices to help address today’s security challenges? By looking at these important issues at the intersection of policy, law and technology, the roundtable will analyse public-private relationships in the fields of surveillance and security, offering an opportunity for a much-needed discussion between key international stakeholders and researchers. To facilitate the discussion, the roundtable will be divided in two parts during which representatives of leading Internet companies will share their insights in interaction with researchers. The audience will have an opportunity to join the discussion during Q&A sessions.

CERI-56 rue Jacob, 75006 Paris / Salle de conférences

Program

Registration

« Nothing to hide » documentary screenings Paris / 06.09.2017

The documentary « Nothing to Hide », dedicated to electronic surveillance and its acceptance in society, will be released this Wednesday (September 6th) at the cinéma Saint-André-des-Arts in Paris (14 screenings at 1 pm). The documentary will also be screened at the Cinéma le Rio (Clermont-Ferrand, Sept 13-27) and September 24 and 28 at the cinema Le Régent (Saint-Gaudens).

On September 30, the film will be released on the Internet (Creative Commons Non Commercial).

Trailer (allocine.fr)

Availability, Reliability, and Security (ARES) Reggio Calabria, Italy / 29-30.08.2017

Availability, Reliability, and Security (ARES)

International Association for Computing and Philosophy Conference Stanford, United States / 26-28.06.2017

International Association for Computing and Philosophy Conference

Simpler secure group messaging? Web / 20.07.2017

New article : Simpler secure group messaging?

Advocates for :

  • Ditch full plausible deniability; use signatures, and rely on honest parties to delete them upon checking.
  • Design systems for optimal operation with group sizes of 3-50. There is no point in having much larger groups, or killing designs on the basis they do not perform when N goes to infinity.
  • Rely on an infrastructure server or a leader within the group to offer consistent total ordering to all. Assume that others can detect its liveness through a timeout (synchronous), and either elect or rotate another one in. Or simply, stop the chat session once they become unavailable.

Privacy-Enhancing Technologies Symposium Minneapolis, United States / 18-21.07.2017

Privacy-Enhancing Technologies Symposium

EuroUSec 2017 - 2nd European Workshop on Usable Security Paris, UPMC, Paris 6, Sorbonne Universités / 29.04.2017

NEXTLEAP’s members Ksenia Ermoshina, Harry Halpin and Francesca Musiani will present their joint paper “Can Johnny build a protocol? Co-ordinating developer and user intentions for privacy-enhanced secure messaging protocols” at the 2nd European Workshop on Usable Security. The paper gives an overview of some common protocol design questions facing developers of secure messaging protocols and tests the competing understandings of these questions using STS-inspired interviews with the designers of popular secure messaging protocols ranging from older protocols like PGP and XMPP+OTR to newer unstandardized protocols used in Signal and Briar. Far from taking users as a homogeneous and undifferentiated mass, the paper distinguishes between the low-risk users that appear in most usability studies (such as university students in the USA and Europe) and high-risk activist user-bases in countries such as Ukraine, Iran, Russia and Egypt where securing messages can be a matter of life or death.

IEEE Security and Privacy on the Blockchain Workshop Paris / 29.04.2017

Colloated with EuroS&P and Eurocrypt 2016. Today, the security and privacy properties of blockchain technologies are still an emerging field that is need of further research. The Bitcoin electronic cash system introduced the new field of blockchain technology as a practical mechanism for a permissionless and censorship-resistant e-cash over the Internet. However, the decentralized network and public verifiability of Bitcoin often do not provide the security and privacy properties assumed by its users. For example, despite a common assumption that Bitcoin is anonymous, transactions can be de-anonymized, limiting the commercial utility of the network and also harms individual privacy. Generalizations of Bitcoin’s underlying blockchain technology as a platform for smart contracts by Ethereum are still immature. For example, security issues in the underlying programming language for smart contracts in Ethereum led to the massive DAO Hack. More than ever, proper security and privacy properties need to be designed into the underlying framework for blockchain technologies.

Rightscon 2017 Brussels / 29-31.03.2017

Rightscon 2017

CryptoAction Symposium Amsterdam / 27-28.03.2017

CryptoAction Symposium

Internet Freedom Festival Valencia / 06-10.03.2017

NEXTLEAP researchers participated in giving a large two-hour session on Autocrypt which discussed community, useability, protocol and implementation aspects of bringing email encryption to a wider audience. About 70 people attended the session including many major implementors and people involved in the e2e email encryption space. Several conversations and new co-operations ensued.

F2F Meeting Madrid / 03.03.2017

The whole team met to discuss last advances in sub-projects. Autocrypt team have presented their new UX design approach in order to bring easy encryption to the mass. Claimchain is still at an early stage but fundamental technical considerations have been discussed.

Alfredo Pironti (ioactive) have also presented a shord talk about PGP: 15 years of broken emails… and we are still doing it wrong”

Computers, Privacy, and Data Protection Conference Brussels, Belgium / 26-28.01.2017

Computers, Privacy, and Data Protection Conference

Automatic Mail Encryption Meetup 2016 Berlin / 14-18.12.2016

Holger Krekel and Max Wiehle (Merlinux) were invited to organize this new “automatic mail encryption” conference which aims to bring developers and activists together and make progress towards more massively encrypted mails.

The Open Government Partnership Summit Paris / 09.12.2016

Bernard Stiegler (IRI) participated in a roundtable about the necessity of sharing data and source codes in a non- proprietary, open and reusable format, animated by Henri Verdier (French State Chief Technology Officer and Chief data officer, deputy to the Secretary General for Government Modernization) with Claire Legros and Yann Moulier-Boutang.

Security Standardization Workshop Washington DC, USA / 5-6.12.2016

This paper presented by Harry Halpin (INRIA) (with Kelsey Cairns and Graham Steel) formally analyses the security issues with the W3C Web Cryptography API in Javascript, as used by Crypto.cat and other secure messaging tools.

ASIACRYPT 2016 Hanoi / 4-8.12.2016

In this paper, Dario Fiore (IMDEA) (with A. Mitrokotsa and L. Nizzardo), E. Pagnin. introduced and formally define multi-key Has, proposing a construction of a multi-key homomorphic signature based on standard lattices and supporting the evaluation of circuits of bounded polynomial depth.

Sciences à coeur Paris / 01.12.2016

This ‘Open source’ discussion between Francesca Musiani and the cryptographer Ludovic Perret was animated by a journalist.

Abstract: Access to all kinds of data and the ability to collect and exploit them have now reached an unprecedented level. We are facing a unique paradox: we have to give thought to the issues of both access to data and data protection, with an emphasis on personal data protection. How does cryptology - then the science of secrecy, now a science based on trust - evolve, in today’s and tomorrow’s contexts? How should individuals now adapt their behaviours?”

Crypto-design Amsterdam / 25.11.2016

Harry Halpin gave this talk aimed at designers and artists interested in privacy issues and served on the jury panel to chose the Crypto Design Award winner.

International Conference on Cryptology and Network Security (CANS) Milan / 14-16.11.2016

Harry Halpin (with Elijah Sparrow, Kali Kaneko, and Ruben Pollan) submitted a paper on behalf of NEXTLEAP. His paper gives an overview and open security issues with the open-source codebase that some of the NEXTLEAP partners will be using in secure messaging protocols.

International Workshop on Semantic Web (IWSW), co-located with International Congress on Information (INFO 2016) Havana / 03.11.2016

Harry Halpin (INRIA) gave the opening talk at the workshop, discussing security and privacy considerations on open data.

Workshop on Programming Languages and Analysis for Security (Co-located with ACM CCS 2016) Vienna / 24.10.2016

Karthikeyan Bhargavan (INRIA) presented “Formal Verification of Smart Contracts.” focussing on a formal analysis of the reasons for the failure of smart contracts like the DAO in Ethereum, as explored in D2.1

Workshop on Privacy in the Electronic Society, co-located with CCS 2016 Vienna / 24.10.2016

Marios Isaakidis presented UnlimitID, a work details privacy-preserving federated identity based on Oauth that uses blind signatures to prevent the identity provider from violating the privacy of its users (D2.2). Open Access: http://dl.acm.org/citation.cfm?id=2994637&CFID=857072842&CFTOKEN=74551814

RIPE NCC IXP Tools Hackathon Madrid / 22-23.10.2016

These hackathons are made to bring together developers, operators and designers to come up with creative new tools and visualisations that benefit the entire Internet community. With people from CAIDA, Forth and AMS-IX Marios Isaakidis worked on “The Remote Peering Jedi”. The purpose of the project was to detect unreported remote peerings so as to make the IXP peer selection process more transparent.

ELEVATE Festival Graz / 22.10.2016

Ksenia Ermoshina presenting Nextleap on a roundtable “Outstanding Activism” with Sarah Harrison, Ksenia Ermoshina and Katharina Nocun.

Prosecco Security Seminar Traffic Analysis - When Encryption is not Enough to Protect Privacy Paris / 19.10.2016

Carmela Troncoso (IMDEA)

Freedom Not Fear Brussels / 14-17.10.2016

Freedom Not Fear attended is the annual meeting for civil rights activists from all across Europe. Marios Isaakidis (UCL) got involved in discussions about surveillance, privacy and EU legislation.

Berkeley Center for New Media, The History and Theory of New Media Lecture Series Berkeley / 13.10.2016

Bernard Stiegler (IRI)

The Internet Rules, But How? Berlin / 05.10.2016

The Internet Rules, But How? An STS take on “Doing” Internet Governance Pre-conference to AoIR by Francesca Musiani.

Association of Internet Researchers (AoIR) Conference, Berlin Berlin / 5-8.10.2016

Association of Internet Researchers (AoIR) Conference

Internet Governance Middle East and North Africa (IGMena) Tunis / 30.09-02.10.2016

Harry Halpin (INRIA) attended at the invitation of Slim Amamou, NEXTLEAP Advisory Board member, and briefly presented the NEXTLEAP project. Users for future user studies were recruited from over 50+ at-risk human rights activists from North Africa and the Middle East.

CAPSSI Community Workshop Bratislava / 28.09.2016

Carmela Troncoso (IMDEA) will be presenting NEXTLEAP to the CAPSSI Community workshop.

B. Stiegler Debate at L’Huma-Café Nantes / 20.09.2016

Bernard Stiegler (IRI) gave a talk on disruption and the different ways to resist to the blind and destructive implementation of technologies and innovation into society. He stressed the need to select and appropriate the algorithms and software that reach them at the heart of their personal lives as well as their political rights. The video is online: http://www.tvreze.fr/Le-numerique-et-la-societe-qui-vient-comment-agir-face-a-une-technologie-aveugle_a2605.html

W3C Technical Plenary and Advisory Committee Meeting (TPAC 2016), Lisbon Lisbon / 19-26.09.2016

Harry Halpin (INRIA) attended the Web Authentication Working Group meeting, whose technology will be likely used in our open source code after a thorough privacy analysis.

Internet Science 2016 Florence / 12-14.09.2016

Ksenia Ershomina (CNRS) will be presenting NEXTLEAP and delivering a paper called “End­-to-­end Encrypted Messaging Protocols”.

OpenPGP Conference Cologne / 8-9.09.2016

OpenPGP Conference

4S/EASST Conference - Barcelona / 01-02.09.2016

“Materializing governance by information infrastructure”, a talk by Francesca Musiani.

Internet Governance Middle East (IGMena) Summit Tunis, Tunisia / 30.08.2016

Internet Governance Middle East (IGMena) Summit

W3C Blockchains and the Web Workshop Cambridge / 29-30.07.2016

When we talk about blockchains as “part of the Web”, we face some specific questions: How does this fit into the same origin security model of the Web? What are the privacy implications, especially when talking about identity management? What part of the Web stack would be involved: client-side, server-side, protocols, interchange formats? What is the relationship to payments, including W3C’s Web Payments work.

International Association for Media and Communication Research Conference Leicester / 27-31.07.2016

Francesca Musiani discussed centralization and p2p systems from a socio-technical perspective, as explored in D2.2. (CNRS)

Microsoft Research Seminar Secure Messaging: Modern Theory and Practice Berkeley, USA / 25.07.2016

Nadim Kobeissi (INRIA)

Hot Topics in Privacy-Enhancing Technologies (HOTPets), co-located with PETS 2016 Darmstadt / 22.07.2016

Harry Halpin (INRIA) discussed ethical and technical issues in standardization relating to privacy and security.
Open Access: https://www.securityweek2016.tu-darmstadt.de/fileadmin/user_upload/Group_securityweek2016/pets2016/4_responsibility_of_open_standards.pdf

Workshop on Strategic Research Challenges for Privacy Technologies Darmstadt / 18.07.2016

NEXTLEAP co-organizes a panel on Decentralization and Privacy. Participants: Carmela Troncoso (IMDEA), Nadim Kobeissi (INRIA Paris), George Danezis (UCL), Harry Halpin (INRIA Paris).

IETF 96 Hack-a-thon Berlin / 17-26.07.2016

Nadim Kobessi (INRIA) was involved in updating the software used for IETF standardization.

PGPSummit Frankfurt / 08-10.07.2016

PGPSummit

DSI Workshop Brussels / 29.06.2016

Vincent Puig (IRI) attended this workshop of presentation of CAPS Project. The afternoon discussion group about several technologies such as the blockchain, Libre Office, Owncloud, Etherpad, KDEN Live (Alternative to Première), ABC (Attribute Based Credentials), and others was fruitful and provided input to the European Commission on the importance of supporting decentralized, open source, and free software.

Hacktivism and Radical Change Brick Lane Debates London / 21.06.2016

This event attended by Marios Isaakidis (UCL) was a participatory discussion about hacktivism as a way to protest for social or political goals. On the basis of the fact that hacktivism is often misunderstood and overlooked, the purpose of the debate was to explore how persecution of hacktivists affects other campaigns and how citizens and other activists can show solidarity. Prominent activists such as Lauri Love, Privacy International researcher Eva Blum- Dumontet and Oliver Shykles from Queer Friends of Chelsea Manning participated.

Trust in Digital Life The Hague / 15-16.06.2016

Harry Halpin participated on a panel on “Human Rights and Technology” with Patrice Chazerand (Director in charge of Digital Economy and Trade Groups, DIGITALEUROPE), Henrik Biering (CEO Peercraft), and Jacques Bus (Digital Enlightenment Forum).

New Directions in Cryptography & Applications to Cyber-Security Bletchley Park, UK / 15.06.2016

Marios Isaakidis attended this conference about various contemporary issues like post- quantum, lightweight/low zero cryptography, cryptography for embedded systems, new requirements for emerging/novel applications/distributed ledger technology (eg, digital currency), cryptographic aspects of next- generation identity management, eg, biometrics, computing on encrypted data, privacy and anonymity, protocol, Cryptanalysis and Computationally Sound Analysis of Protocols.

European Dialogue on Internet Governance Brussels / 8-10.06.2016

Harry Halpin participated as part of panel “From cybersecurity to terrorism - are we all under surveillance?” with Jans Kleijssen (Council of Europe), Gregory Mounier (Europol), Valentina Pellizzer (OneWorld Platform), and Sacha van Geffen (Greenhost). Policy issues involving encryption and “end-user” cybersecurity were put forward.

Bitcoin Summer School Corfu / 29.05.2016

With a presentation by Georges Danezis (UCL).

Stiegler Digital studies seminar Paris / 20.05.2016

CAPS Community Meeting, Berlin Berlin / 18.05.2016

Holger Krekel (Merlinux) attended this gathering of CAPS-related EU projects and interested parties. He gave an impromptu overview on aspects of NEXTLEAP and thereafter enjoyed fruitful discussions with Stravroula Maglavera from the MAZI project (offline communication infrastructures for physical communities) and with Renato Lo Cigno from the NETCOMMONS project (network infrastructure as commons). They gathered interest in arranging another meet-up to exchange research, development and community insights and tools.

Cryptorave Sao Paolo, Brazil / 6-7.05.2016

Harry Halpin presented “A Batalha pelo Controle dos Padrões Abertos: o IETF, W3C, DRM, Blockchains e além” (A battle to control the Web: IETF, W3C, DRM, Blockchains, and More”) that discussed open standards and encryption with an audience of concerned citizens and human rights defenders in Brazil.

Summer School on Real-World Cryptography and Privacy Sibenik / 05-10.06.2016

Summer school on real-world cryptography and privacy, with a presentation by Carmela Troncoso (IMDEA).

Prosecco security seminar Encrypted messaging with Cryptocat Paris / 02.05.2016

Nadim Kobeissi (INRIA)

Cryptoparty Cyprus / 24.04.2016

Marios Isaakidis (UCL) organized a cryptoparty with invited talks from Cyprus University of Technology, the developers of the private message and file sharing system Peerio (https://peerio.com) and the EMEA Internet Observatory (http://hack66.info/observatory). Marios Isaakidis gave a talk on the peer-to-peer censorship circumvention system CENO (https://censorship.no).

Worldwide LEAP developer meeting Sao Paolo / 21.04-3.05.2016

Max Wiehle (Merlinux) attended the LEAP and PIXELATED gatherings in order to establish contact with a major integration community of NEXTLEAP and also to discuss how future NEXTLEAP efforts relate to LEAP. They discussed in-depth with developers about current and planned key management protocols and discussed challenges and tasks. Discussions also took place with South American email providers and activists who are looking at using LEAP and automatic key management.

NetFutures 2016 Brussels / 20.04.2016

NetFutures 2016 “Sharing Economy” Panel with Harry Halpin (INRIA) and George Danezis (UCL).

Panel on DRM and W3C Encrypted Media Extensions Cambridge, USA / 20.03.2016

This event attended by Harry Halpin (INRIA) featured a discussion over the role of DRM (Digital « Rights » Management) in open standards via Encrypted Media Extensions, including the dangers to security researchers. Other participants included Joi Ito (Media Lab), Richard Stallman (Free Software Foundation), and Danny O’Brien (EFF).

Internet Freedom Festival (IFF) Valencia / 29.02-6.03.2016

Max Wiehle (Merlinux) went to this annual convention of activists and programmers and led a workshop on how to fight vandalism in Wikis and other collaborative contexts. A particularly interesting discussion came about with Debian developer and cryptographer Daniel Kahn Gillmor and Marios Isaakidis (UCL) on how a provider/server can prove that a client initiated a key change to deflect false “I didn’t submit this key” accusations. The IFF also helped NEXTLEAP to get a better picture of end-user use cases. The audience and participants included activists, researchers, trainers, journalists and social scientists. This diversity made it very clear that the use cases depend heavily on the community in question.

NDSS TRON, 2016 San Diego / 21.02.2016

Karthik Bhargavan (INRIA) attended. The work presented formal verification over TLS, a key protocol on the network layer for identity and encrypted messaging systems.

NextLEAP team F2F meeting Paris / 15.02.2016

NextLEAP team F2F meeting

FOSDEM Brussels / 30-31.01.2016

Marios Isaakidis (UCL) attended the largest Free Software Developers meeting in Europe and got involved in the security, synchronous communications and decentralizations dev-rooms.

CPDP – Computers, Privacy and Data Protection Brussels / 27.01.2016

Carmela Troncoso (IMEDA) gave a talk at a panel entitled “Enhancing privacy and security through technological innovation” organized by DG CONNECT. https://www.youtube.com/watch?v=nHQblksLL4s