Speakers:



#1. idont (https://twitter.com/idont_party): 'Troublesome Trash'



What information do you leave in your trash? How can this information be used to attack you, your family, your workplace, or your friends?



I will be talking about some dumpster diving after hard-drives that a friend and I did, what information we found, and (hypothetically) how we could have used this information to attack various people, families and companies.



The talk will also include a part on how one can prevent these kind of attacks.



Bio: Sloth by day, hacker by night



#2. David Vaile (https://twitter.com/DavidVaile): The #CensusFail debacle



The 2016 Census was already controversial because of privacy and identifiability concerns, and became a debacle on the night, identified by hashtag #CensusFail, when the online site was abandoned but left telling millions of people to ‘busy now, come back in 15 minutes’.



With a Senate committee inquiring into what went wrong, this talk explores what we know so far. The speaker, as Australian Privacy Foundation rep, met with the Australian Bureau of Statistics (ABS) about privacy concerns in early 2016, and engaged in ongoing attempts to unravel what was going on.



Topics will include:



• Why the evil privacy activists had been carping on about the Census (including the “Dear magistrate” letter, and precursors in 2006 and 2011)



• Technical issues about data perturbation: risk of re-identifiability of the unit level data, in various scenarios



• Doubt as to depth of research into this risk into the future



• Other matters left unexplored by the failed Privacy Impact Assessment in late 2015 that no-one noticed



• How misrepresentations worked to elevate an offence that does not exist (not completing the census) when the real offence is something difficult to use (not complying with a Direction to complete after it is served on you and within a minimum 14 days from service)



• The spin was about the ‘hack’ or the ‘DDOS



• What actually appeared to happen: why did the site go down/get taken down?



• Attacks and diversions: the extent of the misleading misdirection away from simple under-provision



• What are the implications of the failure – ASD form filling fail?



• Root cause analysis – contracting out IT security and data protection expertise?



• Role of transborder data flow – exposure to foreign jurisdictions?



• What we have lost? Possible futures?



• Lessons for individuals



• Lessons for public policy



• Lessons for hackers (help from the floor!)



Bio: David Vaile (https://twitter.com/DavidVaile) is Co-convenor of the Cyberspace Law and Policy Community (http://cyberlawcentre.org/) at Faculty of Law, UNSW, and among other civil society engagements, vice chair of the Australian Privacy Foundation (https://www.privacy.org.au/).



He teaches and researches IT and internet law, legal research and risk management. He was assisted the ALRC Right of Action for Intrusion of Privacy Report; member of Internet Society-AU policy committee; co-author of reports such as Data Sovereignty and the Cloud with NextDC, Baker & McKenzie and AON, Drowning in Codes of Conduct for auDA, and Consumer Privacy Complaints in Communications report for ACCAN; researcher Data to Decisions Cooperative Research Centre and committee member of the market research industry AMSRO’s Privacy Committee.



---



Lightning Talks:



Mark: Quick peek into Let's Encrypt/ACME



This event is co-organised with Electronic Frontiers Australia: Sydney Chapter (https://www.meetup.com/electronic-frontiers-australia-sydney/events/233959428/)



==========================



CryptoParty Sydney



We are all about providing resources and help for anyone seeking to secure their communication in a casual, fun, and positive environment. Our events are free of charge, open to anyone, and politically non-aligned.



The topics which are covered in each session depend on what attendees are keen to learn. We normally tend to start off with a short presentation and then move to a hands-on part during which you will be able to get one-on-one help with electronic privacy tools.



It is important that you bring your *laptop* to really get the most out of the meeting, but don’t worry: *No prior knowledge and skills* on the subject-matter are expected! Further details and any of our used slides can be found here:



https://www.cryptoparty.in/sydney