Slashdot Mirror

← Back to Stories (view on slashdot.org)

Controversial Security Paper Nixed From Black Hat

Posted by Zonk on from the keep-it-under-your-hat dept.

coondoggie writes us with a link to the Network World site, as he tends to do. Today he offers an article discussing the cancellation of a presentation which would have undermined chip-based security on PCs. Scheduled during the Black Hat USA 2007 event, the event's briefing promised to break the Trusted Computing Group's module, as well as Vista's Bitlocker. Live demos were to be included. The presenters pulled the event, and have no interest in discussing the subject any more. "[Presenters Nitin and Vipin Kumar's] promised exploit would be a chink in the armor of hardware-based system integrity that [trusted platform module] (TPM) is designed to ensure. TPM is also a key component of Trusted Computing Group's architecture for network access control (NAC). TPM would create a unique value or hash of all the steps of a computer's boot sequence that would represent the particular state of that machine, according to Steve Hanna, co-chair of TCG's NAC effort."

16 of 144 comments (clear)

  1. Reason for pull? by gravos · · Score: 4, Interesting

    So, did they pull because they had a problem with the demos at the last minute, or is there a more sinister conspiracy-type explanation for this retraction?

    --
    This game will waste your life. Don't clicky!
    1. Re:Reason for pull? by Baron_Yam · · Score: 4, Interesting

      I would definitely be very interested to find out if it is a case of the presenters discovering they hadn't really done what they claimed, or if they folded under threat of litigation.

      This is interesting enough geek news that I expect some tech journalist somewhere will follow up on it.

    2. Re:Reason for pull? by j0nkatz · · Score: 5, Funny

      Who cares???

      It's iPhone Day!!!

      --
      Don't mod me, bro'!!!!
    3. Re:Reason for pull? by PoliTech · · Score: 4, Insightful
      As for why they cancelled the presentation, last year Cisco sued Black Hat conference organizers after a security researcher demonstrated a method for running unauthorized code on a Cisco router. That, or there was a deal made.

      My question is why would anyone place their information security "Trust" in MS BitLocker, or Indochinese hardware (TPM chips) that likely already contain built in backdoors for John Law, and corporate drones?

      Open Source Full disk encryption is fast and free, open source Firewalls and process restricting software are available for those who just can't resist getting infected with the latest malware. Most Open Source security software developers are likely NOT under the control of Big Brother in any form, be it corporate drones or big government fascists.

      So while I'm a little disappointed that the Back Hatters decided to forgo the presentation of cracking TPM, since it was never trustworthy or secure to start with, and since anyone serious about security would never use such a faux security scheme at the outset, cracking TPM and "Trusted Computing" was only a curiosity anyway.

      The "Trusted Computing Initiative" is simply a way to provide vendors "Plausible Deniability" and to limit liability for allowing exposed data, nothing more.

    4. Re:Reason for pull? by WED+Fan · · Score: 4, Insightful

      Or, perhaps, like in science, they discovered a flaw in their own methodology that rendered the presentation pointless. It does happen. How many times has someone yelled eureka, only to have some genius say, "Uh, Bob, you still have the machine plugged into the grid, it's not under its own power"?

      --
      Politics is the art of looking for trouble, finding it everywhere, diagnosing it incorrectly and applying the wrong fix.
    5. Re:Reason for pull? by computational+super · · Score: 4, Insightful
      As for why they cancelled the presentation, last year Cisco sued Black Hat conference organizers after a security researcher demonstrated a method for running unauthorized code on a Cisco router.

      And still there are people, even here on Slashdot, who insist that anonymous speech is not a precondition for free speech.

      --
      Proud neuron in the Slashdot hivemind since 2002.
  2. How could a presentation "undermine" security? by benhocking · · Score: 5, Insightful

    If the chip is secure, then no mere presentation can undermine its security. If it's not secure, then there's no security to undermine. Don't shoot the messenger.

    --
    Ben Hocking
    Need a professional organizer?
    1. Re:How could a presentation "undermine" security? by AP2k · · Score: 4, Funny

      ...Or kick him down a well.

    2. Re:How could a presentation "undermine" security? by BunnyClaws · · Score: 4, Insightful

      Agreed. Another possibility is that one of them discovered a flaw with their method. Eleventh-hour bugs right before demos are the most evil ones of all.

      Ding! Ding! Ding! This more than likely is the case. What is more likely to happen? These guys getting silenced and quietly removing their presentation or these guys figuring out they were wrong and quietly removing their presentation. If there was a threat from the company there would have been a leak about the reason for pulling the plug on the presentation. More than likely the presenter discovered a flaw and quietly pulled the plug.

      --
      "Anything tastes good if you deep fry it."
    3. Re:How could a presentation "undermine" security? by Overzeetop · · Score: 4, Insightful

      How about -$100,000 and possible jail time? Not an unusual price for a criminal investigation, say, for a DMCA violation. These guys really do play hardball, and if you're lawyer agrees with their lawyers, you'd have to have quite a set to go to a public forum where the authorities are waiting for you to finish your talk so they can take you downtown, along with your presentation as proof to turn over to the DA.

      Not saying it's right...but there are both carrots and sticks, and I have no doubt they are both used.

      --
      Is it just my observation, or are there way too many stupid people in the world?
  3. Interesting meta-commentary by WalterGR · · Score: 5, Interesting

    coondoggie writes us with a link to the Network World site, as he tends to do.

    (emphasis mine.) Interesting. First time for such meta-commentary by a slashdot editor? I don't think we ever saw the same for one of Roland Piquepaille's many submissions...

    --
    The Online Slang Dictionary
  4. Now crackers will have an advantage... by denis-The-menace · · Score: 4, Insightful

    Now crackers will have an advantage and the rest of us will be blind-sided.

    I don't like the whole [trusted platform module] (TPM) because we consumers are are not trusted in the whole scheme.

    But for the few us techies that get this P.O.S. "security" system foisted upon them by their clueless/soldout management, wouldn't be nice to be able to explain why the hacker(s) got through the night before?

    --
    Obama's legacy: (N)othing (S)ecure (A)nywhere and (T)error (S)imulation (A)dministration
  5. Conspiracy shmiracy by packetmon · · Score: 4, Insightful

    Yanked why? ... Maybe because security experts have already exposed *stolen/old/re-hashed concepts* and they didn't want to be embarrassed...

    --
    Infiltrated dot Net
  6. So really... by Seraphim_72 · · Score: 4, Funny


    ...more of a dark gray hat then.

    --
    Slashdot, where armchair scientists get shouted down and armchair theologians get modded up.
  7. DMCA anyone? by TheSciBoy · · Score: 5, Insightful

    My guess is that they could not go to the US from fear of being arrested for breaking the DMCA/some other law. I for sure wouldn't go to the US under any circumstances with information on how to defeat any kind of security.

    Security by obscurity still seems to be the mantra.

    --
    Badgers, we don't need no stinking badgers! - UHF
  8. Nitin and Vipin Kumar are the creators of VBootkit by I)_MaLaClYpSe_(I · · Score: 4, Informative

    Nitin and Vipin Kumar are the creators of VBootkit and they were covered previously on Slashdot here: VBootkit Bypasses Vista's Code Signing.