Hi everyone,
As I have been discussing recently, we are conducting a Tor talk/digital security workshop for journalists in India in association with the Software Freedom Law Center in New Delhi. The SFLC shared the list of things they would like to be covered so I am sharing with the community to get your feedback. (This version is modified from their original version with my changes.)
Duration 2 Hours 30 Minutes
Introduction to Threats * Surveillance * Malware * Censorship
Operational Security * Passwords, Password Managers * Operating Systems * Full-disk Encryption * Browser Add-ons
Tor * Tor Browser * SecureDrop (sukhe: My idea is that we can get some news organizations in India to set up SecureDrop. I am not the right person to help them with this but at least I can get the conversation going.) * Tor on Mobile
Secure Chat * Signal
Email Security * PGP
This is the first time I will be part of such a workshop, so please share any resources or tips you may have!
Hej Sukhbir,
* Sukhbir Singh schrieb am 2017-09-07 um 16:51 Uhr:
As I have been discussing recently, we are conducting a Tor talk/digital security workshop for journalists in India in association with the Software
There is also the tor-reaches list which might be a good opportunity to get feedback: https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-teachers
Duration 2 Hours 30 Minutes
From my experience I'd say that 2,5 hours is little for the range of topics you want to cover. Usually I need around three hours to help people in setting up GPG alone. ;)
So if you only have 2,5 hours I'd say that you either reduce the number of things you want to cover or make more a lecture where you shows the tools and give advice how to handle it in a secure way.
I don't know about the specific situation in India, but here in Germany people use mainly mobile phones. So it might be a good idea to concentrate on this issue. Talk about threats, OPSEC things and secure communications.
Furthermore I often offer them to come to a second meeting with questions that arose while using all this tools. My hope is that people use it more sustainable and don't stop when a tool doesn't work like expected.
Hi Jens,
From my experience I'd say that 2,5 hours is little for the range of topics you want to cover. Usually I need around three hours to help people in setting up GPG alone. ;)
That's true, it seems like 2.5 hours is less. I don't know much about the audience -- if they have already participated in trainings like these -- but you are right, I think I should assume they haven't.
I will discuss this with SFLC and revise the timings.
So if you only have 2,5 hours I'd say that you either reduce the number of things you want to cover or make more a lecture where you shows the tools and give advice how to handle it in a secure way.
True. And I don't want to rush through things.
I don't know about the specific situation in India, but here in Germany people use mainly mobile phones. So it might be a good idea to concentrate on this issue. Talk about threats, OPSEC things and secure communications.
Yup, lots of mobile phone (Android) users. I think I will have to spend more time about mobile products than even desktop but I am waiting for confirmation to see if that's true.
Furthermore I often offer them to come to a second meeting with questions that arose while using all this tools. My hope is that people use it more sustainable and don't stop when a tool doesn't work like expected.
Thanks for the feedback. I will bring up these points with the organizers, especially the duration.
Thanks for sharing this Sukhbir, Sukhbir Singh:
Hi everyone,
As I have been discussing recently, we are conducting a Tor talk/digital security workshop for journalists in India in association with the Software Freedom Law Center in New Delhi. The SFLC shared the list of things they would like to be covered so I am sharing with the community to get your feedback. (This version is modified from their original version with my changes.)
Duration 2 Hours 30 Minutes
Make sure to take a break. I suggest a 15 minute break after the first hour.
Introduction to Threats * Surveillance * Malware * Censorship Operational Security * Passwords, Password Managers * Operating Systems * Full-disk Encryption * Browser Add-ons Tor * Tor Browser * SecureDrop (sukhe: My idea is that we can get some news organizations in India to set up SecureDrop. I am not the right person to help them with this but at least I can get the conversation going.) * Tor on Mobile Secure Chat * Signal Email Security * PGP
Like qbi said, I think this is a lot to cover in 2.5 hours, even if you only briefly touch on some of the items. If I were you I'd consider devoting the first hour to introducing the threats, passwords and password managers, Tor Browser/Tor on Mobile, and Signal, and cover each of those in enough depth to get people using them, and then reserve the rest of the time for covering the other items just briefly, and then take questions.
This is the first time I will be part of such a workshop, so please share any resources or tips you may have!
Hi Alison,
Like qbi said, I think this is a lot to cover in 2.5 hours, even if you only briefly touch on some of the items. If I were you I'd consider devoting the first hour to introducing the threats, passwords and password managers, Tor Browser/Tor on Mobile, and Signal, and cover each
Yes, I agree and I have asked SFLC why they went with that time duration but in any case, I will work with them and try to get it extended.
I will send an update to the list about the changes.
of those in enough depth to get people using them, and then reserve the rest of the time for covering the other items just briefly, and then take questions.
Thanks for the feedback!
tor-community-team@lists.torproject.org
-
Alison Macrina -
Jens Kubieziel -
Sukhbir Singh