Changes between Version 6 and Version 7 of RolePlay


Ignore:
Timestamp:
Apr 13, 2008, 6:41:25 PM (12 years ago)
Author:
Jamie McClelland
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • RolePlay

    v6 v7  
    33= Security demonstration =
    44
    5 For this demonstration we'll need a bunch of volunteers. 
    6   * 2 people on opposite sides of the room, mail provider X and mail provider Y.
    7   * 6 e-mailers:
     5For this demonstration we'll need a bunch of volunteers.
     6 
     7  * 2 people on opposite sides of the room, Mail Provider X and Mail Provider Y (each volunteer gets a sign identifying them and tape so it can be taped to their chest)
     8
     9  * 6 e-mailers. Each e-mailer is handed a sign with their email address on it. In addition, they are all handed a half-sheet of paper to write a message and their directions (see below). People B - E are handed envelopes.
     10
    811   * A@X.com
    912   * B@Y.com
     
    1215   * E@X.com
    1316   * F@Y.com
     17
    1418We can add more folks if we want more successfully sent messages.
    15   * 1 "You've got mail" person.
    1619
     20[A presenter should be chosen to play the role of the police (and will have a sign saying "Policy" taped to their shirt).
     21 
    1722== Instructions/demonstrate the "mail sending" ==
    1823
     
    2631directions they're given and not decide to send e-mail via paper airplanes etc.
    2732
    28 Normally, we don't see this process, so I'm going to ask person B-F to leave the
    29 room. The "You've got mail" person will tell you to come in
    30 when it's your turn to check your e-mail.
     33Person A starts by sending a message (sending a message means writing it down and then reading it aloud for everyone in the room to hear. When it reaches the mail server for person B, person B is invited into the room and is handed the message. They read the message out loud.
    3134
    32 People B-F are handed written instructions (see below) and leave the room.  Everyone's instructions have a note at the top asking them to please not share their instructions with others.
    33 
    34 Person A starts by sending a message (sending a message means writing it down and then reading it aloud for everyone in the room to hear (but not for the recipient, who is out of the room). When it reaches the mail server for person B, person B is invited into the room and is handed the message. They read the message out loud.
    35 
    36 Then, person B sends their message and this continues until everyone has returned to the room.
    37 
    38 As each person sits down after sending their message, we ask them to please not say anything to the folks who check mail after them.
     35Then, person B sends their message and this continues until all messages are sent.
    3936
    4037== Scenarios ==
     
    4239=== Person A ===
    4340
    44 ''Instructions'' Send a message with a short incriminating phrase of your choosing to person B.  If
    45 you can't think of one, use "I bought the dynamite."  When you're done, have a
    46 seat.
     41''Instructions'' Send a message with a short incriminating phrase of your choosing to person b@y.com.  If you can't think of one, use "I bought the dynamite." 
    4742
    4843''Action'' Email is successfully delivered
     
    5146
    5247
    53 ''Instructions'' You're expecting a message about an upcoming action.  Write a message telling your
    54 companer@ C when you'd like to plan a scouting run.  Plan it for nighttime some
    55 time in the next week.  Send it when you get an e-mail from person A.  After you
    56 send your e-mail, have a seat in the room.
     48''Instructions'' You're expecting a message about an upcoming action from a@y.com.  After you receive it, write a message telling your companer@ c@x.com when you'd like to plan a scouting run.  Plan it for nighttime some time in the next week.
    5749
    58 ''Action'' Police ask a router to hand them the message when it comes to them, take a
    59 picture of the message
     50''Action'' Police ask a router to hand them the message when it comes to them, take a picture of the message.
    6051
    6152=== Person C ===
    6253
    63 ''Instructions'' You are planning an action.  You are expecting a message from person B about a
    64 scouting run in the next week. 
     54''Instructions'' You are planning an action.  You are expecting a message from person b@y.com about a scouting run in the next week. 
    6555
    66 Write a message that says, "We'll do the action on the night of _ _ ."  When you
    67 get the message from person B, fill in a date a few days after the date of the
    68 scouting run and put it in the envelope, which represents encryption.  Put the
    69 address of person D and a subject on the outside of the envelope and send your
    70 e-mail.  After you send it, have a seat in the room.
     56Write a message that says, "We'll do the action on the night of _ _ ."  When you get the message from person b@y.com, fill in a date a few days after the date of the
     57scouting run and put it in the envelope so it can't be read by the policy.  Put the address of person d@y.com and a subject on the outside of the envelope and send your e-mail.
    7158
    72 ''Action'' Police say out loud: Hm. I can't read this message because it is encrypted! However, that won't stop me from replacing it with my own encrypted message that says, "The action is on.  Scouting run on Monday at noon."
     59''Action'' Police say out loud: Hm. I can't read this message because it is encrypted! However, that won't stop me from replacing it with my own encrypted message. I know from the last message that they are planning an action. I'm going to mess with the action by replacing it with a message saying it is cancelled.
    7360
    7461=== Person D ===
    7562
    76 ''Instructions'' You are planning an action.  You are expecting a message from person C about when
    77 the action should take place.
     63''Instructions'' You are planning an action.  You are expecting a message from person c@x.com about when the action should take place.
    7864
    79 Forward that information to person E.  Put a note at the top like, "FYI, here's
    80 the info." Make sure to encrypt the message by putting it in an envelope.  Put the
    81 address of person E and a subject on the outside of the envelope  Also, sign the
    82 envelope with your name across the flap so they know the message came from you.  After you send the message, have a seat in the room.
     65Forward that information to person e@x.com.  Put a note at the top like, "FYI, here's the info." Make sure to encrypt the message by putting it in an envelope.  Put the address of person e@x.com and a subject on the outside of the envelope  Also, sign the envelope with "d@y.com" across the flap so they know the message came from you.  After you send the message, have a seat in the room.
    8366
    84 ''Action'' I still can't read it, and it appears to be signed. But, what's to stop me from replacing it and signing it mysefl?
     67''Action'' I still can't read it, and it appears to be signed. But, what's to stop me from replacing it and signing it myself?
    8568
    8669=== Person E ===
    8770
    88 ''Instructions'' You are planning an action.  Person D will forward the info on the action to you.  You should forward it to person F.
     71''Instructions'' You are planning an action. Person d@y.com will forward the info on the action to you.  You should forward it to person f@y.com.
    8972
    90 Make sure to encrypt the message by putting it in an envelope.  Put the
    91 address of person F and a subject on the outside of the envelope  Also, sign the
    92 envelope with your name across the flap so they know the message came from you.  After you send the message, have a seat in the room.
     73Just before you write your email, write your signature (sign: e@x.com) on a piece of scrap paper and give it directly to person f@y.com (get up out of your chair if necessary) and say: "Here's my signature. Keep it so if you receive an email from me, you'll know it's really me."
    9374
    94 Once everyone else (except you and person F) have entered the room, write your signature on a piece of scrap paper and give it to person F and say: "Here's my signature. Keep it so if you receive an email from me, you'll know it's really me."
     75When it is time to send your message, make sure to encrypt the message by putting it in an envelope.  Put the address of person f@y.com on the outside of the envelope  Also, sign the envelope with "e@x.com" along the flap so they know the message came from you.
    9576
    9677''Action'' Same as before - police switch out envelope, but with bad signature.
     
    10081As the last person, you won't be sending e-mail, just receiving. 
    10182
    102 However, just before person E enters the room to check e-mail, have an in-person meeting with person E.  Ask them to write their signature for you.
     83However, before receiving your message, person e@x.com will hand you their signature. 
    10384
    104 When you receive the email from Person E, be sure to compare the signature
     85When you receive the email from Person e@x.com, be sure to compare the signature to make sure it's the correct one.
    10586
    10687''Action'' Compare signature and they don't match