a private security event for friends Bern 2008-10-17 2008-10-19 3 0.7 11:00 00:30 19:00 01:00 Talk misusageofcisco or, why a Cisco Device can be evil Talks Lecture English New Features in the Cisco Router, like TCL, can be used for portscaning from a router, or writing a Mail-Spam-Bot. With EEM you can create a Rackdoor Monitoring and Logging system, or integrate portknocking for execute a config change. Some combination of IOS commands and TCL scripts generates new posibilities for doing Abuse things on a Cisco Router. Christoph Weber 21:00 01:00 Talk kkrxnk Cryptographs in the Early Middle Ages Talks Lecture English In the scriptoriums of the early Middle Ages cryptographs were liked very much and spread. There was a big number of codes which can be summarised systematically, nevertheless, on few procedures. Substitution codes were prevailing. Their deciphering does not pose many problems to us. Mysteriously they appear to us because her purpose is not clear. The paper offers a small overview about the medieval cryptography, in particular in the area of the historical tradition of German language and discusses functional questions of the attractive phenomenon. Andreas Nievergelt 17:30 00:30 Lounge dooropenfriday Orga Other English Let's start 0sec 2008. We open our doors at 17:30. 0sec orga team 18:00 01:00 Lounge welcomeapero Orga Other English 0sec orga team 13:00 01:00 Talk nontechnologyhack Talks Lecture English Seen the movie "catch me if you can"? Can this happen? Hacking does not always require technology. This presentation will focus on true hacks within companies where human ingenuity (or stupidy) allowed fraud. 3 to 4 cases will be explained (time permitting and all names will be with-held). This presentation is aimed at being a mind-refresher for delegates who focus mostly in technology. Federico Pagiola 15:00 01:00 Talk breakcryptosystems Talks Lecture English In this overview talk we focus on the question "What is a secure encryption scheme?". We shall start with a discussion of classical encryption schemes, and see why they are insecure. Based on these examples we develop an intuitive notion of secure encryption. We then formalize this intuition and discuss the notion of "IND-CPA security", which is a widely accepted definition for "secure encryption" in the crypto community. We shall see that - under certain assumptions - AES based symmetric encryption schemes can be mathematically proved to be IND-CPA secure. Finally, we discuss what these rather theoretical security considerations mean in practice. In the course of this discussion, we give an overview of side channel attacks, such as, timing and power analysis attacks. Endre Bangerter 17:00 01:00 Talk warstories Talks Lecture English Antitrust, Standardisation, United Nations - the battle for legal and political dominance over technology and markets has become increasingly fierce. Georg Greve has been involved in several of the recent clashes and will give an insight into what has taken place, which interests are at stake, and how this affects most people working in technology. Georg C. F. Greve 18:30 01:00 Talk endofinternet Self replicating malware on home routers Talks Lecture English This talk is about devices that close to everybody has in their homes and offices. So called Soho (Small home and office) routers have become extremely popular in the last few years. While the good guys where busy trying to prevent malware from infiltration their desktop systems, the bad guys had gone one step ahead of the game and started to experiment with these devices. Close to nobody pays attention to the security of their routers and why should they. These mystical devices have always been protected thru security by obscurity. This Talk is not about how to reverse engineer routers, or how to get the best possible security out of the original firmware. This is the real stuff. Participants will learn the fundamental basics how routers can be taken over. After a few practical examples we will then move into the field of malware. -- Self spreading of corse This talk will give the participants not only a fundamental knowledge of soho router hacking, but also a idea about future threats and the ongoing research in this very interesting field of it security. Note: The preview may read a bit boring - but when it comes down to the presentation and the materials involved -- then you don't want to miss it ;) naxxatoe 22:00 01:00 Talk rainbowtablesexplained Talks Lecture English What are rainbow tables exactly, how do they work, what are they good for? Without going into the detailed math, we'll try to understand rainbow tables and how their parameters can be tuned. We will also explore what systems can be subjected to attacks by rainbow tables. Finally we will show a new development, dictionnary-based rainbow tables, which we will demo with oracle password hashes. Philippe Oechslin 23:30 01:00 Talk coreboot Talks Lecture English The BIOS and it's successor EFI are considered by many to be the final frontier for open source software in commodity PCs. This talk describes the BIOS replacement coreboot and the projects surrounding it. The closed nature of traditional firmware is starting to cause concern even on the government level, as awareness for BIOS malware risks is increasing. The presentation describes coreboot, supplementary tools such as buildrom, flashrom, superiotool and nvramtool, and some popular payloads that combine with coreboot to make up the firmware: FILO, EtherBoot, SeaBIOS, Memtest86, tint, Linux, coreinfo, bayou and libpayload featuring tinycurses, which can turn simple applications into instant-on appliances. Finally there will be a demonstration of coreboot running on hardware. Peter Stuge Carl-Daniel Hailfinger 12:00 00:30 Lounge dooropensaturday Orga Other English Let's continue the fun and start the second day of the 0sec. 0sec orga team 19:30 02:30 Lounge lunch Orga Other English 0sec orga team 13:30 01:00 Talk develdestroyhw Talks Lecture English Designing commercial electronical circuits always forces compromises between several contradicting natural laws and, to prevent the developer from being bored, further constraints are imposed by economical requirements. The Unholy Alliance of short time-to-market, low costs, slips of the mouse and contradicting design rules causes weaknesses in the hardware that can easily be exploited by programmers and users. We will examin this on circuits using the fieldbus ARCNET. Nikolai Eichbauer 12:30 00:30 Lounge dooropensunday Orga Other English Heading towards the last day of the 0sec ... sunday starts. 0sec orga team