|COOKIES: By using this website you agree that we can place Google Analytics Cookies on your device for performance monitoring.|
In-depth crypto attacks: "It always takes two bugs"
If you have a question about this talk, please contact Laurent Simon.
Abstract: Real-world cryptographic systems rarely meet academic expectations, with most systems’ being shown “insecure” at some point. At the same time, our IT-driven world has not yet fallen apart, suggesting that many protection mechanisms are “secure enough” for how they are employed.
This talk argues that hacks with real-world implications are mostly the result of being able to break security assumptions on multiple design layers. Protection designs that focus on a single security function and neglect complimentary layers are hence more prone to compromise.
We look at three widely deployed protection systems from the cell phone, automotive, and smart-card domains and show how technology abuse arises from the combination of best-practice deviations on multiple design layers.
Bio: Karsten Nohl is a cryptographer and security researcher with a degree in Computer Engineering from UVa. Karsten likes to test security assumptions in proprietary systems and typically breaks them.
This talk is part of the Computer Laboratory Security Seminar series.
This talk is included in these lists:
Note that ex-directory lists are not shown.
Other lists6th Annual Cambridge Technology Ventures Conference - June 11th Kettle's Yard ARTcrowd FERSA (Faculty of Education Research Students' Seminars) 2010-2011
Other talksDr Alessandra Mortellaro - TBC (Human caspase-4/5 role in inflammasome activation) New trends in cardiac valve and cardiovascular modelling Cafe Synthetique: Are synthetic biologists engineers, tinkerers or hackers? Health Economics @ Cambridge seminar: Why is socioeconomic disadvantage associated with obesity? Local Analogs for High-redshift Galaxies: Interstellar Medium Conditions and Metallicities in High-redshift Galaxies Summer Cactus & Succulent Show