Matrix French gov deployment: opening a private federation securely (matrix-conf-2025)

Chaos Computer Club - recent events feed

المحتوى المقدم من CCC media team. يتم تحميل جميع محتويات البودكاست بما في ذلك الحلقات والرسومات وأوصاف البودكاست وتقديمها مباشرة بواسطة CCC media team أو شريك منصة البودكاست الخاص بهم. إذا كنت تعتقد أن شخصًا ما يستخدم عملك المحمي بحقوق الطبع والنشر دون إذنك، فيمكنك اتباع العملية الموضحة هنا https://ar.player.fm/legal.

6d ago 22:05

MP4•منزل الحلقة

The French government has deployed a private Matrix federation for French civil servants called Tchap. Currently this federation has about 300 000 monthly active users and its usage is growing constantly. Today our federation is closed and we would like to be able to connect with other public French Matrix nodes (local authorities for instance), and also other European countries. We should implement measures to ensure that the federation remains resilient against potential attacks, both technical (e.g., DDoS, data interception) and organizational (e.g., unauthorized access, insider threats) : - How can we restrict the servers we wish to communicate with? How can we be sure that we are actually communicating with them? Since TLS can be vulnerable to man-in-the-middle attacks by state actors, we can't rely on it entirely. - How can we trust the identities of users from external deployments that we don’t control? - How can we limit the interactions that external users can have with users from our federation? We spent a lot of time thinking about this and now have a plan that looks legit, and that we are currently implementing. I'm sure you want to know more about it, right? In this talk, we will share the approach we’ve taken to address these challenges and we will present the architecture we designed. Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://cfp.2025.matrix.org/matrix-conf-2025/talk/WWAVBQ/

3378 حلقات

#Technologie #Ccc Congress Hacking Security Netzpolitik #CCC media team #Video