48 Dirty Little Secrets Cryptographers Don't Want You To Know

Channel:
United States All Hacking Cons
Subscribers:
6,570
Published on ● Video Link: https://www.youtube.com/watch?v=7guJpjLRUeQ


Duration: 50:58
15 views
1

Over the past year, more than 10,000 people participated in the Matasano crypto challenges, a staged learning exercise where participants implemented 48 different attacks against realistic cryptographic constructions. In the process, we collected crypto exploit code in dozens of different languages, ranging from X86 assembly to Haskell. With the permission of the participants, we've built a "Rosetta Code" site with per-language implementations of each of the crypto attacks we taught.

In this talk, we'll run through all 48 of the crypto challenges, giving Black Hat attendees early access to all of the crypto challenges. We'll explain the importance of each of the attacks, putting them into the context of actual software flaws. Our challenges cover crypto concepts from block cipher mode selection to public key agreement algorithms. For some of the more interesting attacks, we'll step-by-step the audience through exploit code, in several languages simultaneously.
PRESENTED BY
Thomas Ptacek, Alex Balducci


Black Hat - USA - 2014 Hacking conference
#hacking, #hackers, #infosec, #opsec, #IT, #security



Other Videos By All Hacking Cons


2022-01-03The State of Incident Response by Bruce Schneier
2022-01-03Sidewinder Targeted Attack Against Android in the Golden Age of Ad Libs
2022-01-03Smart Nest Thermostat A Smart Spy in Your Home
2022-01-03Thinking Outside the Sandbox Violating Trust Boundaries in Uncommon Ways
2022-01-03Why Control System Cyber Security Sucks
2022-01-02The Networked Security State Estimation Toolkit
2022-01-02Cybersecurity as Realpolitik by Dan Geer presented at Black Hat USA 2014
2022-01-02BadUSB On Accessories that Turn Evil by Karsten Nohl Jakob Lell
2022-01-02Finding and Exploiting Access Control Vulnerabilities in Graphical User Interfaces
2022-01-02Data Only Pwning Microsoft Windows Kernel
2022-01-0248 Dirty Little Secrets Cryptographers Don't Want You To Know
2022-01-02Defeating the Transparency Feature of DBI
2022-01-02Fingerprinting Web Application Platforms by Variations in PNG Implementations
2022-01-02802 1x and Beyond
2022-01-02From Attacks to Action Building a Usable Threat Model to Drive Defensive Choices
2022-01-02Bitcoin Transaction Malleability Theory in Practice
2022-01-02A Journey to Protect Points of Sale
2022-01-02Extreme Privilege Escalation on Windows 8 UEFI Systems
2022-01-02Babar ians at the Gate Data Protection at Massive Scale
2022-01-02Exposing Bootkits with BIOS Emulation
2022-01-02Attacking Mobile Broadband Modems Like a Criminal Would


Tags:
data
hacker
security
computer
cyber
internet
technology
hacking
attack
digital
information
hack
online
password
code
web
concept
network
scam
fraud
malware
secure
criminal
phishing
software
access
safety
theft
system
firewall
communication
business
privacy
binary
account
spy
programmer
program
spyware
hacked
hacking conference
conference
learn
how to
2022
2021
cybersecurity
owned
break in
google
securing
exploit
exploitation
recon
social engineering
Thomas Ptacek
Alex Balducci