HITBSecConf: Supervising the Supervisor: Reversing Proprietary SCADA Tech

Posted on Posted in Hacker News, SecConf

SCADA (Supervisory Control And Data Acquisition) can be found in the core of many critical infrastructures, such as nuclear plants, water distribution circuits or alarm systems. This presentation is a security study on recent, proprietary and state-of-the-art SCADA technologies. We will focus on the methodology we followed to reach our goals, as well as on […]

HITBSecConf: The Windows Phone Freakshow

Posted on Posted in Hacker News, SecConf

The Windows Phone Freakshow is coming to town! Attendees will enjoy a great show of genuine (i.e. real world) and unique (i.e. previously undisclosed) exemplars of “freak code” in Windows Phone apps. During the talk, we will discuss a showcase of insecure examples of vulnerable code, which have been collected during our recent contribution to […]

HITBSecConf: illusoryTLS: Impersonate, Tamper, and Exploit

Posted on Posted in Hacker News, SecConf

The entire X.509 PKI security architecture falls apart, if a single CA certificate with a secretly embedded backdoor enters the certificate store of relying parties. Have we sufficient assurance that this did not happen already? This talk explores this scenario from both an experimental and speculative point of view. From the experimental standpoint, the talk […]