This session will be a lecture on basic operational security with heavy emphasis on threat modeling. There is a significant amount of material out in the world that discusses specific threat mitigations (such as "use Signal, use Tor"), but OpSec is not a one-size-fits-all discipline. Many users may be actively harmed by certain advice, and many others may be left exposed because they are edge cases. We will include concrete cases of applied security and walk through them as instructional exercises. The goal isn't to teach participants to memorize security advice, but to learn how to threat model and think critically on their own."
This is a Learning Forum session.