BEGIN:VCALENDAR
VERSION:2.0
PRODID:Data::ICal 0.24
BEGIN:VEVENT
DESCRIPTION:   'Title: High Intensity Deconstruction: Chronicles of a Crypt
 ographic\n   Heist\n   When: Friday\, Aug 9\, 11:30 - 12:45 PDT\n   Where:
  LVCC West/Floor 1/Hall 1/Track 4 - [1]Map\n\n   Description:\n\n   Introd
 uced in 2011\, HID Globalā€™s iCLASS SE solution is one of the\n   worldā€
 ™s most widely-deployed Electronic Physical Access Control\n   platforms. 
 HID's iCLASS SE Readers are ubiquitous in electronic\n   physical access c
 ontrol and used in most government agencies and\n   Fortune 500 companies.
  The readers can be easily seen and identified\n   in almost every form of
  mainstream media. Almost 13 years after iCLASS\n   SEā€™s introduction\, 
 ground-breaking research and technical exploits\n   will be disclosed publ
 icly for the first time.\n\n   In this talk\, we detail the process by whi
 ch we reverse engineered the\n   complex hardware and software chain of tr
 ust securing HIDā€™s iCLASS\n   SE platform.\n\n   Over a seven-year resea
 rch period\, we analyzed hardware\, firmware\, and\n   software elements t
 he ecosystem\, uncovering an unfortunate series of\n   pitfalls and implem
 entation defects. These flaws culminated in an\n   attack chain that allow
 ed for the recovery of sensitive cryptographic\n   key material from secur
 e elements\, which have received CC EAL 5+\n   accreditation. This chain r
 esulted in revealing some cryptographic\n   keys to the kingdom.\n\n   Fin
 ally\, we provide comprehensive guidance on technical and\n   operational 
 mitigations for end customers to identify practical risks\n   and reduce i
 mpact.\n\n   Inspirational (research done on previous generation system)\n
 \n     * Heart of Darkness - Milosch Meriac [2]link\n\n     * Dismantling 
 iClass and iClass Elite - Garcia\, de Koning Gans\,\n       Verdult\, & Me
 riac [3]link\n\n   Speakers:Babak Javadi\,Aaron Levy\,Nick Draffen\n\n   S
 peakerBio:  Babak Javadi\, Founder at The CORE Group\n\n   Babak Javadi is
  the Founder of The CORE Group and Co-Founder of the\n   Red Team Alliance
 \, a covert entry training and certification body. As\n   a professional r
 ed teamer with over a decade of field experience\,\n   Babakā€™s expertise
  includes a wide range of disciplines\, from high\n   security mechanical 
 cylinders to alarm systems and physical access\n   control platforms. Baba
 kā€™s community contributions include the\n   co-founding of The Open Orga
 nisation of Lockpickers (TOOOL) where he\n   served on the Board of Direct
 ors for over 13 years.\n\n   SpeakerBio:  Aaron Levy\, Lead of Security En
 gineering at Clover\n\n   Aaron Levy is an independent security researcher
  that was credited in\n   the discovery of CVE-2018-10897 and CVE-2019-116
 30. In his day job\, he\n   leads Security Engineering for Clover\, a Paym
 ents and Point of Sale\n   company that is a subsidiary of Fiserv.\n\n   S
 peakerBio:  Nick Draffen\, Product Security Architect\n\n   Nick Draffen i
 s a Product Security Architect\, focusing on the\n   protection of laborat
 ory instruments and their software. Outside of\n   work\, he dives into re
 search\, reverse engineering\, and hardware\n   hacking\, leveraging his t
 echnical expertise to both build and break\n   things. He is a member of t
 he Security Tribe and volunteers with the\n   RF Village\, creating and ov
 erseeing challenges for the RF CTF at\n   various security conferences. Al
 ways eager to lend a helping hand\, he\n   is known for his ability to pul
 l just the right tool from his\n   extensive bag of tricks.\n\n   '\n\n   
 1. #LVCCW_Level1_Hall1\n   2. https://get.meriac.com/docs/HID-iCLASS-secur
 ity.pdf\n   3. https://www.cs.bham.ac.uk/~garciaf/publications/dismantling
 .iClass.pdf\n\n\n
DTEND:20240809T194500Z
DTSTART:20240809T183000Z
LOCATION:DC - LVCC West/Floor 1/Hall 1/Track 4
SUMMARY:High Intensity Deconstruction: Chronicles of a Cryptographic Heist
END:VEVENT
END:VCALENDAR