0sec09 - 1.0
0sec 2009
a private security event for friends
| Speakers | |
|---|---|
|
Philippe Oechslin |
| Schedule | |
|---|---|
| Day | 2 |
| Room | Talk |
| Start time | 16:30 |
| Duration | 01:00 |
| Info | |
| ID | 28 |
| Event type | Lecture |
| Track | Talks |
| Language | English |
Exposing Crypto Bugs through reverse engineering
Breaking good crypto is hard, but so is programming crypto correctly. The easiest way to break a system is thus often to reverse engineer the crypto and to find the bugs. We will demonstrate this with three systems that were broken in our audits:
- The FIPS 142-3 level 2 certified MXI stealth USB key (before it got patched)
- A version of the E-capsule private safe from EISST
- Data Beckers now defunct Private Safe software