Beyond Honeypots: Privacy, Security, and the Future of Distributed Webs

In this episode of Terms of Service, host Mary Camacho interviews Liz Steininger, CEO of Least Authority, to discuss privacy, security, and decentralization in the tech space. They explore the principles of least authority, the challenges of security in blockchain and Web3, and the delicate balance between convenience, transparency, and privacy. Liz shares insights into security-by-design, user empowerment, and the journey of implementing zero-knowledge proofs.

Key Takeaways

• The principle of "least authority" minimizes access to prevent vulnerabilities in tech systems.
• Transparency vs. privacy: striking a balance is key to user trust and security.
• Zero-knowledge proofs (like those explained in the MoonMath Manual) offer powerful tools for encryption without sacrificing usability.
• Distributed systems reduce the risks of centralized honeypots but increase the responsibility of endpoints for security.
• Marketing can overshadow security concerns in blockchain projects, highlighting the need for better industry standards.

Topics Covered / Timestamped Sections

• 01:15 - Introduction to Liz and Least Authority’s mission of "security and privacy for all."
• 02:40 - Origins of the company and the principle of least authority.
• 08:52 - Decentralization and its impact on user agency and security.
• 10:40 - Common misconceptions about internet security and privacy.
• 19:32 - Designing security that balances user convenience with effectiveness.
• 23:00 - The MoonMath Manual and its role in democratizing zero-knowledge proofs for developers.
• 35:11 - Evaluating blockchain projects: signals for trustworthy security practices.
• 42:50 - Liz’s "magic wand" wish for the tech industry: fostering openness about security failures.

Guest Bio and Links

Liz Steininger is an advocate for privacy and security in technology and she leads efforts to create tools that empower users while pushing for stronger security standards across the industry. Liz is the CEO and managing director of Least Authority, a leading Web3 security consulting company and builder of privacy enhancing technology products. The company focuses on cutting edge security and empowering users to control their right to privacy and they specialize in securing Web3 products, consulting and auditing for capability based security, and implementing advanced cryptography, especially zero knowledge proofs and multi-party computations.

Liz is an experienced entrepreneur, growing least authority over the last seven years. And prior to that, she was the senior program manager at the Open Technology Fund. She has over 22 years of experience in the tech industry, working on numerous projects at the edge of innovation. She has an MS in management and technology and a bachelor's degree in digital media. 

• LinkedIn Profile
• Least Authority Website
• Twitter

Resources Mentioned

• Zero-Knowledge Proofs - Advanced encryption technique enabling data validation without revealing the data itself.
• MoonMath Manual guide for creating zero-knowledge snarks with only high school math: Read More

Call to Action

Did this episode get you thinking about privacy and security? Subscribe to Terms of Service for more conversations like this, and share your thoughts with us using #PrivacyMatters and #TermsOfServicePodcast.

Credits

Host: Mary Camacho

Guest: Liz Steininger

Terms of Service Podcast Produced by: Mary Camacho & Nicole Klau Ibarra