diff options
author | kwadronaut <kwadronaut@leap.se> | 2016-12-28 13:17:33 +0100 |
---|---|---|
committer | kwadronaut <kwadronaut@leap.se> | 2016-12-28 13:17:33 +0100 |
commit | d2bed16492b4816422f4807e7d6adf20c70c3ea4 (patch) | |
tree | 249956889c874c1e76f6066f6f27d6ee39dcde8b | |
parent | 20c69280c3585533f4676fe991a2779df179f8bc (diff) | |
parent | cf3723c456fc161f552e03ae7b7e1c58e7b93e69 (diff) |
Merge branch 'master' of ssh://leap.se/leap_presentations
-rw-r--r-- | platform-overview/slides.md | 129 |
1 files changed, 129 insertions, 0 deletions
diff --git a/platform-overview/slides.md b/platform-overview/slides.md new file mode 100644 index 0000000..584e195 --- /dev/null +++ b/platform-overview/slides.md @@ -0,0 +1,129 @@ +#HSLIDE?image=https://rawgit.com/leapcode/leap_presentations/master/rgsoc2016_leap_overview/images/kid-jumping.png +<!-- +TODO: + +- Could need some CSS polishing: https://github.com/gitpitch/gitpitch/wiki/Slideshow-Custom-CSS +--> + +# LEAP Encryption Access Project + +## LEAP Platform Overview + +#HSLIDE + +## LEAP Platform + +- A toolkit to make it easy for you to run a federated service provider. + +#HSLIDE + +# LEAP Platform + +- Configuration Management using puppet +- Installs and configures the servers +- leap_cli is the tool to deploy to the servers +- Provider confiduration is stored on admin laptop + +#HSLIDE + +# LEAP Platform Example: Setup single node email provider + +``` +sudo gem install leap_cli +leap new example --domain example.org +cd example +leap add-user --self +leap cert ca +leap cert csr +leap node add raspberry \ + services:couchdb,webapp,soledad,mx ip_address:1.1.1.3 +leap init node +leap deploy +``` + +#HSLIDE + +# LEAP Platform: Install and configure the server(s) + +- Email: Postfix, spamassassin, clamav +- Database: couchdb, stunnel +- Webserver: apache +- Encrypting remailer: leap-mx +- Synchronisation: soledad +- Account management, issue tracking: leap-webapp +- Firewall: shorewall +- Monitoring: nagios, check_mk +- ... + +# HSLIDE + +## Server-side techstack + +- PLatform: Puppet +- leap_cli: ruby +- leap_web: Ruby on Rails +- leap_mx, soledad: Python Twisted + +#HSLIDE + +## Soledad + +- Acronym for "Synchronization Of Locally Encrypted Data Among Devices" +- Searchable client-encrypted synchronized database + +#HSLIDE + +## Bonafide + +- Secure user registration +- Authentication +- Password change +- etc. + +#HSLIDE +## Current Services: VPN + +- Route all your internet trafic through an encrypted channel. +- Prevent eavesdropping (thiefs in the public network, police, ...). +- Circunvent internet censorship. +- Prevent leaks (DNS, IPv6, ...). + +#HSLIDE + +## Current Services: email + +- End-to-end encryption using OpenPGP. +- Automatic key discovery and validation. +- Service provider has no access to user data. +- Strong protection for metadata, whenever possible. +- Cloud synchronized for high availability on multiple devices. + +#HSLIDE + +## LEAP Webapp + +- API for user authentication +- Help Tickets +- User Management +- Payment processing +- Customisable + +#HSLIDE + +## LEAP Webapp Main Page + + + + +#HSLIDE + +## LEAP Webapp Account Management + + + +#HSLIDE + +## LEAP Webapp Ticket System + + + |