Event to be held at the following time, date, and location:
Tuesday, August 14, 2018 from 6:00 PM to 9:30 PM (CDT)
|
6:00-6:30 - SecKC 101 - Welcome to SecKC & - SecKC Open Source Intel Briefing including DEF CON recap
6:45-7:30 - The Art of Detection
Matt Clemons
Labbing up some popular attack tools and defending against them. Gathering indicators of compromise and making them actionable.
7:45-8:15 - Privilege Escalation in Mechanical Master-Key Systems
Arden Meyer @DSM_Locksport @SecDSM @that_guy_ego
The mechanical pin and tumbler locks we use on our homes, schools, and businesses have not changed much in over 100 years. Sure, there have been some exotic new designs but most are just not fiscally feasible compared to their relatively minor improvements (if any) in security. A feature desired on large scale deployments is called Master Keying, which allows for many unique key/lock combinations while supporting multiple permission levels commonly referred to as "janitor keys" or "security keys" that can open multiple locks. While these systems are still in use around the globe in medium-to-large scale businesses, schools, and government buildings, they are also susceptible to what some consider to be the original privilege escalation attack. We will talk about an optimization attack against the most common master keyed lock systems in use today, reducing the potential attack surface from 1,000,000 permutations for an SC4 keyway system down to 42 steps to find the highest privilege key.
Share this event on Facebookand Twitter.We hope you can make it!Cheers,SECKC |
0 Response to "August 14: SecKC Monthly Meeting - DEF CON recap - Art of Detection - And More"
Post a Comment