27C3: Chip and Pin is broken

Smart cards have gradually replaced magnetic strip cards for point-of-sale and ATM transactions in many countries. Customers authorize a credit or debit card transaction by inserting their card and entering a PIN into a point-of-sale terminal; the PIN is typically verified by the smart card chip, which is in turn authenticated to the terminal by […]

27C3: Reverse engineering the MOS 6502

The MOS 6502 CPU, which was designed in 1975 and powered systems like the Apple II, the Atari 2600, the Nintendo NES and the Commodore 64 for two decades, has always been subject to intense reverse engineering of its inner workings. This talk by Michael Steil presents the way from a chip package to a […]

Breaking SSL on embedded devices

Developers use embedded devices all the time, often without implementing security measures. When they do, they often rely on SSL. As revealed by the LittleBlackBox project there exists a collection of thousands of private SSL keys extracted from various embedded devices. These private keys are stored in a database where they are correlated with their […]

Roadmap to reversing the Xbox 360

Bunnie Huang (Bunnie’s Blog) reverse engineered the Xbox 360 and had been called as an expert witness in a case (USA v Crippen) charging violations of the criminal provisions of the Digital Millennium Copyright Act (DMCA). The case was dismissed after the first witness testified, so in order to publicly summarize the technical facts on […]

Hacking RGB Christmas lights

Deep Darc has successfully reverse engineered the operation of a 50-light set of GE multicolor Christmas lights. His work involved snooping the protocol used on the LEDs data bus line and exploration of the remote control unit, resulting in source code allowing control of the display of colors and patterns by an Attiny13A. Via Wonderhowto.

HVR-1600 Performance and Reverse Engineering

Check out this epic battle between man and I2C EEPROM. Devin wanted to fix a bug in the Linux driver for his HVR-1600 TV tuner card. He suspected that the Linux driver didn’t configure the board correctly, so he sniffed the I2C-based configuration traffic under Windows with a Saleae Logic. There’s a great overview of […]