WomensStuff

There is no such thing as a secure computer. You can bury it in cement and drop it in the deepest hole in the ocean. If someone needs access to it bad enough, they will get in.

Computer security is about costs to gain access. If they need physical access, far fewer people can be compromised. If that physical access does not gain them additional access; it forces them to spend man power to compromise more systems physically. Thus making things more expensive.

The estimated cost of breaching a level 1 system should be $100K, a level 2 system $10 million, a level 3 system $10 billion and the root of your trust $10 trillion.

White listing is the baseline standard for software running on your computer. If it is not signed by a level 2 system, then it will not run on your computer. The binary itself is reproducible and your package manager can be used to sanity check the build from the server. Your web browser runs in a container which only has access to your downloads folder with write only permissions and the files will be marked as non-executable (not that it will matter as they can’t possibly be signed). The browser is the tor browser and all traffic will be routed unless you login to your bank account.

I am supposed to use a program called fig to create information for social media accounts. (Name, age, address, username are generated and Keepassxc is to generate a unique, random, strong password and store the output from fig).

If messaging friends, I use signal and if I need extra message security, I am to shuffle a deck of cards and put the order into a program which uses it for sending a “one time message” then give the deck of cards to the recipient.

https://www.schneier.com/academic/solitaire/

Something about one time pads being used for nuclear weapons and submarines and the security of the physical transfer of the one time pads. And embassies getting a hard drive full of just one time pads.

(I skipped a bunch but that is what I remember)