Abstract: The talk covers the security and privacy of FIDO2, a standard and pervasive authentication technology. We focus on CTAP, an application layer protocol used during second-factor or single-factor authentication by a FIDO2 Authenticator and a FIDO2 Client, like a Yubikey USB/NFC dongle and a laptop. We uncover two new attack classes on CTAP called
Abstract: Olvid is a French messaging app with over 200,000 users, including high-risk users such as members of the French government. Despite bold claims positioning Olvid as the most secure messenger in the world and its important user base, limited independent analysis has been conducted on its security. Here we present our work, which takes
Abstract: Race conditions arise when multiple threads attempt to access a shared resource without proper synchronization, often leading to vulnerabilities such as concurrent use-after-free. To mitigate their occurrence, operating systems rely on synchronization primitives such as mutexes, spinlocks, etc. In this paper, we present GhostRace, the first security analysis of these primitives on speculatively executed
Abstract: You’ve probably already heard the story: we got contracted to analyze a bunch of trains breaking down after being serviced by third-party workshops. We reverse engineered them and found code which simulated failures when they detected servicing attempts. We presented our findings at 37C3 and then an update of the story at 38C3. This
Abstract: TEE implementations on RISC-V offer an enclave abstraction by introducing a trusted component called the security monitor (SM). The SM performs critical tasks such as isolating enclaves from each other as well as from the OS by using privileged ISA instructions that enforce the physical memory protection. However, the SM executes at the highest
Abstract: The security landscape of satellite systems has undergone a significant transformation in recent decades. With thousands of satellites launched annually, space-based infrastructure has become increasingly critical for communication, observation, and scientific measurement. However, this growth has also been accompanied by a decrease in the barrier to entry for attacks, driven by the widespread availability
Abstract: Embedded and IoT devices are becoming increasingly widespread, often supporting safety-critical operations. However, these devices typically lack the advanced security features of more powerful systems due to cost and energy constraints, making them vulnerable to software-based attacks. To address this, Control Flow Attestation (CFA) has been proposed as a cost-effective method to detect control
Abstract: Driven by recent advances in large language models (LLM), generative AI applications have become the dominant workload for the modern cloud. Specialized hardware accelerators, such as GPUs, NPUs, and TPUs, play a key role in AI adoption due to their superior performance over general-purpose CPUs. AI models and the data are often highly sensitive
Abstract: Modern messaging applications such as iMessage, Signal, and WhatsApp encrypt their users’ messages using cryptography that provides strong security guarantees. All these security guarantees are void, however, when inauthentic keys are used. For years, the only option to authenticate your peers’ keys was to compare safety numbers in-person, which was rarely done in practice.
Abstract: A flurry of DoS vulnerabilities have been recently disclosed in DNS, many of which enable an attacker to overload victim DNS servers by sending only modest volumes of requests that trigger large amplification effects. This talk starts with our systematic investigation of such vulnerabilities. By establishing a taxonomy of amplification primitives intrinsic to DNS