Network Security & Hardware - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Black Hat, Back with the Hackers



 By: Lisa Vaas
2007-02-21
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


  Table of Contents:
  1. Black Hat, Back with the Hackers
  2. ' More Presenters '

Rate This Article:
Poor Best
Black Hat, Back with the Hackers
( Page 1 of 2 )

Opinion: Vista's not headlining this time at the hackers' confab, but maybe, just maybe, we'll see a challenge to snap the encryption on Vista's hardware chip.Whats in store for Black Hat Feb. 28-March 1?

Weve got digital forensics—will Jim Christy, forensics expert to the DOD, challenge attendees to break the encryption of the hardware encryption chip used by Vista? Maybe—stay tuned, because he tells me theres definitely going to be some kind of challenge!

Then weve got new and better ways to snap your favorite database into itty-bitty pieces, including NGSS David Litchfield presenting on Advanced Oracle Attack Techniques.

David tells me were going to be hearing about new Oracle attacks that didnt even make it to his most recent book, "The Oracle Hackers Handbook." That includes such sins as advanced PL SQL injection, exploitation, cursor snarfing, defeating virtual private databases and indirect privilege escalation.

For all you data seepage fans, theres Errata, with CEO Robert Graham set to show use of a tool theyve cooked up to pick up all the supposedly trivial data youre seeping wirelessly or even wiredly—along with how it can be used for corporate espionage and other fun hobbies.

Meanwhile, Dr. Jose Nazario, Senior Security Engineer at Arbor Networks, is going to share lessons learned from trailing botnet attacks. All this and more, more, more!

But before we delve into the details I shamelessly weaseled out of presenters, heres the conference lineup you can see for yourself. Now, this isnt the big Vegas Black Hat in July—this is the smaller DC one (Arlington, Va., actually), focused on government and enterprise issues.

Resource Library:
That means weve moved away from pure Vista, pure rich-sponsor Microsoft, back to the basics: hardware/sub-OS, enterprise impact, software security and binary analysis, and forensics (thats what Jim Christys doing, with the opening keynote, "Cyber Crime and the Power of Digital Forensics."

You might remember that the last big Black Hat was pre-Vista, and it was more or less pure Vista.

This time around well see much fewer pure Vista sessions, one exception being Symantec Research Scientist Ollie Whitehouses two-part session on GS (a compiler option introduced in Visual Studio 2002, used in some binaries in Windows Vista 32-bit as a defensive mechanism) and ASLR (Address Space Layout Randomization) in Vista.

The second section deals with ASLR implementation in Vista, about which Symantec promises "some surprising results." That sounds a bit too tantalizing to pass up, so stay tuned to Security Watch to hear what those surprising results might be.

I chatted with Jim Christy—the director of Futures Exploration for the Defense Cyber Crime Center, responsible for the research and development and test and evaluation of forensic and investigative tools for the DOD Law Enforcement and Counterintelligence organizations—about his keynote.

His presentation will be similar to his last Black Hat presentation, as he tries to get across how ubiquitous digital forensics are today, as well as how desperately we need law enforcement professionals trained in the techniques of digital forensics—techniques that are now recognized and regulated internationally.

Hes also after the private sector to come up with better tools to struggle through the oceans of data people like him encounter during investigations into child porn, phishing, computer intrusion and just about any flavor of crime nowadays.

That gets us back to his challenges. And back to Vista. During his last presentation, Christy threw out this challenge to the audience: Come up with a way to read data over a CD thats been physically broken into pieces. To date, the center has received solutions from 11 teams. This year hell throw out another challenge. He hasnt figured out what that will be yet, but Vista and hard drive encryption could be the theme.

"Vista is a major challenge for security purposes," he told me. "Now, it matches your data to the motherboard on the computer. Theres a chip on board that will do hardware encryption. For law enforcement, it will change how we do forensics. If a hard drive is encrypted and we get a dead box … it will remain dead unless you have the key to get into it. … Were being told by government agencies and Microsoft that you cant break the encryption. Obviously, thats going to be one of our challenges. We want somebody to break that puppy for us."

Errata CEO Graham, for his part, is looking to drill into some enterprise skulls how seemingly trivial information can be used quite satisfactorily by hackers. This is data seepage were talking about: the exposure of data that seems innocent. That differs from data leakage: i.e., sensitive information that companies know they dont want to have stray away.

A recent example of data seepage is how reporters found out about the Iraq war before it happened. Namely, they managed to extract information about the rate of pizza delivery from workers at pizza shops near the Pentagon. Lots of intense meetings, lots of pizzas.

An example of digital data seepage closer to enterprises hearts would be this scenario: Your CEO is in the airport lounge. She was previously logged in to the companys network. When she sits down for a drink, her chatty laptop starts looking for access points so that it can reconnect.

A hacker with the right tools could find out where shes been, physically, by looking at the access points shes trying to connect to. An eavesdropper could map the corporate network and within moments build up a complete picture of who this person is by monitoring the wireless network, Graham told me.

The answer? It isnt a question of a silver-bullet security product, nor is it a question of user behavior modification. The problem is that activities such as reconnects are happening automatically, Graham said, with users being unaware of whats happening.

"Its more a tradeoff," Graham told me. "You have the ease of use of the laptop, with things happening automatically, versus making the laptop harder to use."

Graham will be demonstrating how the data eavesdropping can be done, and hell be showing just how much eavesdroppers can find out.

Next Page: More presenters.





  Reader Comments: Black Hat, Back with the Hackers
>>> Be the FIRST to comment on this article!
 


 
 
>>> More Network Security & Hardware Articles          >>> More By Lisa Vaas
 


xr㶲(;; Yڦ(RW#Mɶ<֊dyYq&U(S$IϮO7t$_&%l4ݍF޻$t0 :ܢdC3齿O$wmL9P[Ϡ^=WZj:@a5˜Nzq@^cFwD%x_@jO @.Rs2 j99&ԗ7'x2 X- 8kzZC'Ajw-Z P8"X.{D~, DuXqLǎH;*#'x8Ӽi/DaOXHz5"x<&J;^7;z~;B 1V9`TK]K{<"#oAUD25v!6^ @^c\ȁy4 *YNrDFL$j؁E$ӤRcf=9Qw^C]ݱR,RE͌i:gj5[gb}ױ}ǣ.&$gtjL_FB$fR[8=/yydPt[dq=ɲf g3nmަ[ǪR.BX-U cx>oچs[=0q*sܼϿ;aپʑGA GfmGkh[Nv^ԢzCm^}ju:Q@:is,ȯwD_"0QYTY|-D'Y_']>o VqW-âZPb٥v'Y̮gfVҘ gE)"['3ҺN/Nۭsdo̲5<jUU* j vb#?ޙ:WkYO{}#+|v5 0\6:jo~vO|3Q&ںa#jCIɽGfw:|"޺xi$7SY>_.0dio,Yn]H.)żM|Y|ěy#0ri4(=M8Zujt+UykQ 43@_x0FD57Sf4Ms,egy0AM)61rGv!fByP:&,)|YB* bԤrݢPP3nSB!ތE5 @ L^0i|V835Cuӹݰ=Wԇ9[ϩ`IE 6&6P6}l2w9;-L&w& 0`D+л#i`y1&բ !Tgxhs-w= } o  iL L<ģ\>Ԇ.q<ɜ+) L@X "D% T h4A'EENNmbo$?LHX)Vpp(ݞH8gڹLX.QY,p[/ ͙JRdQU Q="`&Qea*0pRx5Vn/jc٦By^ Y$!OY JA=E^?uw2MҶǞ}2`.1 7R'>~Xz /M݄Is¦uSdjM=@3~ ~2ۇ-}آ&5mmf0&B13 =gƠ'_u˙PK hL©(9 }Y9&2|k۬ ̙> .z*Hp0ѿy6yBfOx;r+kF3UʝW.NrB@-T_%YX X`~w LRd8uf6I :3Xh8G/C4ʡz ei[I%ͺ7Ru-zց$l Ұ.R.Y![r5}a׼6FYR^RKHD,Pc/ò=cM2&Ioۡc#CMܟjwXU.*rpd2ljeVUR+J}sf8 , J; )mT.mT^GΧީyд "w=: 7S-`cw@~f:s?&نdpܩD80V2PaI*5E]13R%\T2.Q &V,'`#z.#NWɅc=\SҢZ^S˦4Hq6ϯ[- VUu>8`CLmRǦE}B5ߴӞWH>Z3^ClX)1I 6D ȸau-`by;gS]WָqH8CL)iM~VӈPU*1"Y4/V `k/{OQ̩DkJc\CMКy]֙32-Rzz|pE% WlB%)` N ҧ|h:|#X& ,w\d ]`Аm!X` TUS/V_LQ0(TKnQE^~~ VKŴhT{}Sː 0gted-> IZ+k՘frE)WKJZ9 _VsTG"MTN_⬯=q̻S ?ӇQo?`>sy >{Vv0eC>yL Z<5}˰"U ӕ ~>V:6ʼnGG =q?@TEe¹5`Qеa=ECf0% H*7hІ{eg곥PtwXN vG>k-4sF[dE.zԴ'*5P6>*0GnG=WK$X]j}u:¾_YYWc7{)h"QkFFdDtΈ#6RPϘT<˯!G8՞oF* ϛ=G$1*@7Z 3ӫe4 "#ΤMnU)XW>NA7gZu"JL7Ϧ<s;D< Ur=_gyG vr?n206Nm/POﺢD_0 d&T~#\yYRfl|g^a+w]9Se>c'ßaƚ_AFp5xf==M/&lAn}+琩osC/ wܒ; k@X;V-(7ϙT0p2Y=u lYP=d|m6Sթ4D6svN{R3̍e?f#ÄovY(*"X5 Z_A3FɁ㚺/ksO3~N<͠1p Fu<1{HZFR4j BoEn,: /6" ޜbl[ e|פrX+Gs;"ʌg b|q{q>'F{lj+jBg\yp0Ns-$NM6fƺ}`}` YV|ejMRԞE'L40|G.CGTTFogA"7S[U5c:ɹT)j b[-W+>"]0!`T=({EO"p?lV* rF2R@BRF$d1~l'߾b[D h‚'Tn\'GWƒ"Eq D` oP[/I6S0:;b}G$%}w>\{mw>&~l?<aa=&A"`}݇/5.i_Y#R>&*u6?p-z_Uރ6 `i4~{L]qF7ĽE j/?HYu>#4-odhhIo0unCR|I})ci_$1AJ`&1MiRB'T5˓$/+IYO)Eqhd*꒐~*~(h&'ءXҡ۳_5/'8 $O krwisq/Psyx2kI85(A 'B}$Xyϓg+y5EY-.*$'?vb'%6 T Tz@0Hr\|){~U9q=ͷv"ϓ{~\[5("Ә ucAIeNx>HАݙ-p溟8#M LwFFC\fo ׾v/; ?--8cPXSω%٘&BEW5ln$rYpJe_.SǔW> @ƽb[]0d&'zvA Js[gȞx~K7跷bRR?C?|}& ~W*];PI9w뻿~=Ҳ(r_&ZDNqw5Q {qI%.x݉W%0.ՁK59I3 ;= ׂb>8f?(`%M]8g%d񔷰,m(0rMYk5h}F㽄'|"LDx$'iȂc p/E#cyj>r0,S4'(}'ILp N8T0w^B4%gAWAgILF L9 _8Yn!P74t T5 gqikJS!&rē葘C()aYf^i1#ӏֹz^{xEXIf*qCHI_̓p&%KR$埇]q!q/b D*'r(0[޶B*a)q6z{X{LX#TbZșR/եb# ؄й>g/^?ʞŐrtS"2EOEHحmBop]RI9|<VKU4f,*R! ʰcor&k'RM߇83v{VJ9l"`$Ml"`%RHgФwwgJUٖ)OgJJahłkAXgf :ƭqwO$B*jpQ͝6+ v m= <_^ !kcs'hʶLSzq+y ѓZЊKfϥ$XjòlnP"$Aq Y-Tb"Z! Z<[!^!A}WeKM &C7Gs+j>P8̈́FN,Ҁ\LBF4GJ5i B'P¦ '!t _Ō ,4kjK1)qN;g)O3hlVg0}y=JPSܹP\VTFq`KN<'NB_B2=4gcŗ'\řђܲ/BjxlΑ0W.SLSYC"!,UQم7thkT Dk0yfY J׻876g{J^X73^ J7>JmjRE=k=E1_O_y~{ꗙUteuGo9>kRpo>p`}yRo̜\uPtg}oX݂&`1,%.AG%Z4Aalt/xM!zbijWSЭ3-l&u k4 6Ei4O8|IÊGf3x1P뼥%ݥ<45T_4K"JJ,(?ؚc~%͂ۄfbOZiP· _ȢM?i@ɰs5g$ rls]9^Լs@H `'r nl[K{VA'f{0(htm>q p,i'Z@Olх-zت{'MTm.8ϹEh F*{\ @OBwu/Bd`.d>1kQo7m{}"7⺾4֕|iV=~@]-FR '\-v/O/휋SutK3ʬ\8. ܕc2:"A"# "UG>nZcS^0_Kx^?~8\co^f\7 2-v/OXVjY>L;#btş-z6\ŕq V[j\5p_5rB/08r_|kvSDLE6yB(=^@-`^'d;6qLHJ~P}Aͽ=V4YI nY[`}XE 0m5mYޣ3vRĽ*eX 5}5'wҾw>nZp[yG¡YKj|!&cXJD`dSSD2J6L_h` >D8-'bA|`߱1g*pxS? _]/㥾^VxmոIe^e-'It'ʹeX,hILÑBu}0ǜ#tŒh4OQަkwT1P=G?ÁZ;(X67-g+h崍V9T:G| ?EWeJU6^ۏos? bu+]TU|5ѱ '*>dؤ FPYݣAˢ{UTDNtQ"PPVôLN]Y a C^( #-=%1W{=c8Gc4VƵ5ŚxY K16J-9"G@Ÿ *$E/]^|U~8. dP>bKfRlty[K]em.951E!^Frc%5VՒxzz_@tAk-b ".˘xf@]3&^ME*ނ0HuP\eb UP+$h9+ŨtucsS!Vy b,o7w"J~6տ4,\ <\πTnUw=jh DVݤJd m[XOhwW;ڻhZ+)`td"CFU3E]s§fD9ma?]|J<{ @>+pS CR,6$Aeȃ5T?0м~#n+j8ȚX;t(J fZ,ݟ}wS 7d߄^P> :{ћbR=P[`8'6w_ 6a^zGZq1IG^ >xAfaX4"&s'ُp{S8.lȂU"Ba,c+pD['鍀I+62sjDl/ /uhݴZ?#?4rٺwZA뺏Vu03{G\o|J7o9fkH sK>-뭛/B,"ۗ'0枩S-1Șh MQ VHxDɹ~3&YBE< ,i  YC) Q?9,>I@ Ӕc:00Yr\N1tEOcZ|"1^#&3( 9 @b~Hgxt:PeEt037 j![C P?1js#% 9*[,af4:`F"򽉑0us1ssRC´vxT+mB<䱤Pl <'<,M3MO_} =B\㢽}k2v~i_f ?3?Cɀ]1>]7]͂fз fЧ f .g7?QF/3 ?e_@EF?](f^f%e\]f_e?=/ rqWU?Ӈ3߇3?d(e}G௏ ?eC>eSn&&oon2/9IR< 9k^K$kdK"*SV9,.3VDjq&R2#s"q6Gc_%Üf1'a(c#h cHO8ѭ=2\-}#]~̬((G@Kn vu;Gj0[W_zP[LԸ²GpoQV" #<5 Lg<}ZqzPg~u{= :!fgxb^d,1+x}s&pN!3J81|fZ g8 !rPWCtJ ۘs;ބ]<Ԍn@R'9w>*%U-)UTj%wwr.Y〈{E\I0jpX.U&K=# .=m^t f 5ϡ'!pC>fJ5Gk(xxmE.x_tmBfp-y|ygu~o2P e +7 J,5{sЫD@.^s/7q) ߄`-kD҃yhp䣿 |Q8Ss#ӄwY"DӸhlգ{wh9ĉiSr O?g)b|337dKdp!gB-ҋKt^THaD˺UDB`u jϗ5:aKƈ DUKIn_!6#-Erly޻ l>`X5RǬy@ӟ}GQ!r>E>*^&Ńq`a\m8WHL{ /x 7n4FȊqM HTe_H' ЫA|>/޺}hd1Ak+P<ՍP/DBlvKz_1Ӟ?d=A9?`&<«ÄVg@GJ =4v$ѓ]Q`8'ny](gaOwbUwܢ,?hPxUE0H$=Cf Kq=GcБ_kkb?hȲ܋V331F#qyU p+eC[gI2T~kF=*P=eZPO= n",ݤd/+2b%m=HYUҎ_ϒ. $Cb9G8]! MAE`A]|eDws"Tt r!,MM/x/;"5 m'#84B> |Ez?X \ cwHVLt>;OulםW 2,~޴ë%:Ɛ=-)0p,\ftOG#6CF|eKoy|w!zQ[`+Lܧ-  `⎈meiV9DR*,D&f , ~sf_ZQh~0r"#<[_ڵlAt[] E heӕx" 7]!Kb C>`]R>ŔK.)tO]ደCNt3NE7k,^zXٿ"P9NRjãÍ ,ck-ԭ<P0_CA&?cu]nFQa#]QaWn uywwy{!**kW4* kwxuvu2^GB Ln3m^^kti( aaXeS1#'@n0\|߰H d9[\O^م53\j/YH~> \99.@OI"cXM1}aE|iOR<'\]+ Sq||.˛By޻HnTO34[;?oۿˌhT*.㉋oZŧN:?#KoyI׽gRXBYzhI:VH]5ڗ񲞽P0ECh⍿c014ߛiVA$摝7y@ƢI:6p09,jŭ.{g;a+b(1lS2F4K_hjJlxTɉY0oǝF6̈́ В^&ŮvbecPQ+