The document provides an overview of how to prove and hide one's identity on the internet, discussing methods like username and authentication for proving identity, while also covering tools such as PGP, VPN, SSL/TLS, and SSH for securing data. It also explains various options for anonymity, including anonymous proxies, tunnels, Tor, and Freenet, while emphasizing the nuances of trustworthiness in these systems. Overall, it aims to equip users with knowledge on enhancing both identity verification and anonymity online.

1. Proving and Hiding your Identity on the Internet A high level overview Jon “The Nice Guy” Spriggs jon@spriggs.org.uk 2009-10-25

2. Proving And Hiding Your Identity The nature of the Internet is to be anonymous.

3. The nature of Controlled Networks is to be identifiable.

4. How can we reverse these two situations to your benefit?

5. Why would you want to?

6. Prove your Identity on the Internet How do you prove your identity? Username and one-or-two factor authentication How do you secure your access to private data, hosts and networks? Physical presence, encrypted connections (PGP, VPN, SSL, SSH) How can you encourage trust? Securely exchange keys, protect physical objects, accept only trusted relationships

7. Explaining Terms: PGP / GPG What is GPG? A Free Software implementation of the PGP system, properly called “Gnu Privacy Guard” What is PGP? An encryption and authentication system Where would I use it? Signing data, ensuring no tampering has occurred

8. Encrypting data, ensuring no unauthorized person has understood it's contents.

9. Example: Create GPG Key

10. Example: Sign a file

11. Example: Decrypt a file

12. Explaining Terms: VPN What is a VPN? It is a Virtual Private Network – a method of ensuring a host or network is permitted to access a private network. Where would I use it? Connecting one or more networks or hosts together – usually from a laptop to a work network. What would I use? IPSEC, OpenVPN, SSH

13. Example: The simplest OpenVPN

14. Example: The simplest OpenVPN

15. Explaining Terms: SSL / TLS What is SSL (Secure Sockets Layer)? SSL is an old version of what is now called TLS What is TLS (Transport Layer Security)? TLS is how an encrypted link is created using certificates – for example when browsing to HTTPS sites. What would I use? HTTPS, IMAPS, FTP-S, Jabber, IRC

16. Example: SSL Certificates

17. Explaining Terms: SSH What is SSH? A series of data channels, encrypted* and transmitted over a TCP link. Where would I use it? Performing commands, opening tunnels with and transferring files with your remote hosts. What would I use? PuTTY, ssh, ConnectBot, SecureCRT

18. Example: Warning - SSH

19. Example: Creating SSH Keys

20. Example: SSH Port Forwarding Local: His port transferred to my system Local: His port transferred to my system Remote: My port transferred to his system

21. Hide your Identity on the Internet Why would you want to hide your Identity? Breaching policy, joking with friends, whistleblowing What can you use to hide your identity? Anonymous proxies, tunnels, TOR and FreeNet. How can you trust these systems? Bottom line, you can't – completely. Seeing source code can give you confidence in your first connection. Combining this with technologies like SSL, SSH Keys and GPG can help you trust your destination is untampered.

22. Explaining Terms: Anonymous Proxy What is an Anonymous Proxy? An anonymous proxy is one which has been set up (inadvertantly or otherwise) to permit traffic from the Internet through it to another service. How do I use it? Find a list, configure your application to use that proxy. Is it trustworthy? Not really. It has been included for completeness.