Adventures in Paranoia with Sinatra and Sequel

A session at MountainWest RubyConf 2013

Thursday 4th April, 2013

4:45pm to 5:15pm (MST)

This session is a jolly romp through the realm of practical data privacy using pure Ruby. We'll start by looking at how to obfuscate data using Ruby's OpenSSL bindings, exploring the possibilities of symmetric and public key cryptography as well as the role of hashing algorithms.

Once the basic principles have been established we'll turn our attention to designing databases with a strong privacy component, using Sequel to demonstrate how encrypted keys can be used to support privacy in the relational model. There will be some meta-programming involved which should also be of interest to ActiveRecord users. This will naturally lead into a brief discussion of the seeming difficulty of searching encrypted data along with a strategy for making this practical.

We'll round out the session by turning our attention to the transport layer with a simple scheme for securing web application sessions using a custom Rack middleware.

The discussion will be backed by code examples inspired by real-world systems.

About the speaker

This person is speaking at this event.
Eleanor McHugh

English(iNTp, hacker, author, physicist, musician, libertarian, goth, christian, tory, LgbT) = Human(superior, sociable, contrarian, neophile)

Coverage of this session

Sign in to add slides, notes or videos to this session

Tell your friends!


Time 4:45pm5:15pm MST

Date Thu 4th April 2013

Short URL


View the schedule



See something wrong?

Report an issue with this session