353C videos online or streaming soon…

December 28, 2018 ~ hucktech ~ Leave a comment

Lots of stuff is happening at CCC…

https://streaming.media.ccc.de/35c3/

Join our "Christmas Carol: The Spectres of the Past, Present, and Future" with @lavados @misc0110 @mlqxyz. Come see it at 8:50pm in room Clarke or join in online at https://t.co/VsYO6RbnCJ #spectre #meltdown #foreshadow #l1tf #35c3 pic.twitter.com/YXSRtwGROB

— Claudio Canella (@cc0x1f) December 28, 2018

Modchips of the State has been released on https://t.co/NWTIGxyqR7 and YouTube https://t.co/4ClcOStxie https://t.co/YSl4z852Wr

— c3voc_releases (@c3voc_releases) December 28, 2018

Our (@nedos, @cryptotx and me) https://t.co/ig09vBWwGC talk at #35c3 can now be watched here: https://t.co/6kKc8XyKtO

— Thomas Roth (@StackSmashing) December 27, 2018

.@qrs's #35c3 talk is up: a Proof of Concept of the Bloomberg/Supermicro BMC supply chain attack: https://t.co/iUQwQ3jkQG

I have to say that was (un?)surprisingly easy, but props to @qrs for all that research.

— chris #35c3 (@hugelgupf) December 28, 2018

CCC schedule published

November 28, 2018 ~ hucktech ~ Leave a comment

CCC has talks on: Open Source Firmware, Sednik UEFI malware, LibreSilicon, Self-Encrypting Drives, and more!

CCC talks are out https://t.co/aGieAIahLy pic.twitter.com/HfCmRfWer8

— Joseph Cox (@josephfcox) November 28, 2018

https://halfnarp.events.ccc.de/

Trammell’s CCC LinuxBoot presentation, annotated transcript uploaded

January 2, 2018 ~ hucktech ~ Leave a comment

Annotated transcript of my #34c3 firmware security talk, "Bringing Linux back to the server BIOS with LinuxBoot": https://t.co/0WQJ5DVboP pic.twitter.com/o239xkKqeV

— Trammell Hudson ⚙ (@qrs) January 2, 2018

LinuxBoot at 34c3

This is an annotated transcript of an overview talk that I gave at 34C3 (Leipzig 2017) entitled “Bringing Linux back to the server BIOS with LinuxBoot”.

https://trmm.net/LinuxBoot_34c3

https://media.ccc.de/v/34c3-9056-bringing_linux_back_to_server_boot_roms_with_nerf_and_heads

CCC videos uploaded

December 29, 2017 ~ hucktech ~ Leave a comment

Once again I want to thank #34c3 organizers for streaming and video archives available almost immediately.
With 4 parallel talks, something have to be missed, and getting a video of a missed talk right away helps a lot.

— Nikolaj Schlej (@NikolajSchlej) December 29, 2017

Re: CCC: https://firmwaresecurity.com/2017/12/26/intel-me-at-ccc/

the videos are already uploaded! Thanks, CCC staff!

https://media.ccc.de/b/congress/2017

Intel ME at CCC

December 26, 2017 ~ hucktech ~ 1 Comment

It appears PTSecurity may have a GUI Debugger for Intel ME??

The “Minix Inside” stickers look great, click on the tweet from frdnd.

Hoping CCC staff does the great job they do ever year and get the videos for these events online quickly! 😉

What about a GUI when debuging Intel ME? If you are intrigued visit our talk at #34c3 (https://t.co/6kHIOuRYJ9) #IntelME #JTAG pic.twitter.com/D9oMGVbX0g

— Mark Ermolov (@_markel___) December 25, 2017

https://twitter.com/frdnd/status/942984718613610496

It seems I forgot to announce it here, so here goes: I'll be speaking at 34c3 in Leipzig with Nicola Corna on Intel ME https://t.co/cJjA7mxhd1

— Igor Skochinsky (@IgorSkochinsky) December 25, 2017

https://fahrplan.events.ccc.de/congress/2017/Fahrplan/events/8762.html

https://fahrplan.events.ccc.de/congress/2017/Fahrplan/events/8782.html

PS: Of course, this isn’t all that is happening at CCC. There are multiple other interesting talks, eg:

I'm looking forward to talk about "Public FPGA based DMA Attacking" at the 34th Chaos Communication Congress #34c3 😀 https://t.co/jLttOyrA8V

— Ulf Frisk (@UlfFrisk) November 20, 2017

Remaining CCC talks online

December 29, 2015 ~ hucktech ~ Leave a comment

I wish all conferences had AV teams as good as CCC!

https://media.ccc.de/b/conferences/camp2015

There are about a dozen hardware-related talks, and many of the other talks look useful. Especially this one:

Better recording of my TPM/boot protection presentation: https://t.co/LCUEHceXV0 #32c3

— Matthew Garrett (@mjg59) December 29, 2015

Making it easier to avoid low-level compromise, and why you’ll still lose
Matthew Garrett
https://media.ccc.de/v/32c3-7343-beyond_anti_evil_maid#video&t=0

CCC day1 videos online

December 28, 2015 ~ hucktech ~ Leave a comment

CCC’s media team is great! Their videos are already online, for day 1. Lots of interesting videos to watch, if you’re not in Germany, including Joanna on the stateless laptop and Trammel on Thunderstrike!

Videos of #32C3 talks (day1 already up):https://t.co/L9Wz1FuZMU

— TROOPERS Conference (@WEareTROOPERS) December 28, 2015

https://media.ccc.de/c/32c3

Towards (reasonably) trustworthy x86 laptops
Joanna Rutkowska
https://media.ccc.de/v/32c3-7352-towards_reasonably_trustworthy_x86_laptops#video

Thunderstrike 2
Trammell Hudson
https://media.ccc.de/v/32c3-7236-thunderstrike_2#video

Hardware/Firmware security at CCC!

December 14, 2015 ~ hucktech ~ Leave a comment

There are likely other presentations at CCC that’re worth attending, but here are two that you MUST ATTEND, if you’re going to CCC:

Joanna Rutkowska
Towards (reasonably) trustworthy x86 laptops
Can we build trustworthy client systems on x86 hardware? What are the main challenges? What can we do about them, realistically? Is there anything we can? In the first part we will take a look at the security problems we encounter on modern Intel-based x86 systems, specifically on laptops. In the second part we will discuss how most (all?) of these problems could be addressed, with just minimal hardware modifications realizable by laptop OEMs.

Matthew Garrett
Beyond Anti Evil Maid: Making it easier to avoid low-level compromise, and why you’ll still lose
In 2011, Joanna Rutkowska unveiled an easy-to-use tool for mitigating many attacks on system boot chains by using the TPM – the Anti Evil Maid. Unfortunately the implementation was difficult to incorporate into normal system boot in a secure manner – anybody able to observe a user could recreate the secret. This presentation describes a method to allow systems to prove their identity to the user without making it trivial for attackers to mimic a secure boot and extract secrets from the user, and why the state of modern hardware means this may still not be enough. A correctly implemented Trusted Boot solution makes it possible for systems to prove to other systems that they have booted with the expected boot chain. The Anti Evil Maid technique took advantage of this to encrypt a secret with the TPM in such a way that a system whose firmware or bootloader had been compromised would no longer be able to decrypt that secret. Unfortunately, the use of a static secret makes it easier for an attacker to mimic a good boot – as a result, a sufficiently motivated attacker could circumvent Anti Evil Maid and convince the user that a compromised system was in a good state. This presentation describes the use of shared trust between the system and another device, making it significantly more difficult for an attacker to mimic a trusted boot. It includes a description of the implementation of Trusted Boot support in Free operating systems on modern UEFI systems, how this can be tied into sharing trust between multiple devices and the limitations that may still permit state-level actors to compromise these techniques.

https://events.ccc.de/congress/2015/
https://events.ccc.de/congress/2015/Fahrplan/events/7352.html
https://events.ccc.de/congress/2015/Fahrplan/events/7343.html

I'm also hugely looking forward to @rootkovska's presentation: https://t.co/gUdRXvrzXD

— Matthew Garrett (@mjg59) December 12, 2015

I'll be talking about using TPMs to go beyond Anti Evil Maid at #32C3 at 11:30 on the 29th: https://t.co/JyrIsGlTdk

— Matthew Garrett (@mjg59) December 12, 2015

Trammel speaking on Thunderstrike2 at CCC

November 18, 2015 ~ hucktech ~ Leave a comment

Trammel Hudson will be speaking at CCC on Apple Thunderstrike2:

I'll be presenting the Thunderstrike 2 Apple EFI firmware vulnerability at #32c3 in Hamburg! https://t.co/uDjvHJDEUB pic.twitter.com/SYNUHvnhq8

— Trammell Hudson ⚙ (@qrs) November 17, 2015

https://events.ccc.de/congress/2015/wiki/Main_Page

https://trmm.net/Thunderstrike_2