We’ll be with the Aerospace Village and MarSec at the ICS Village, so come and say Hi.
There’ll be simulators, learnings, and good conversation.
Talks
Talk: Maritime security – TBC
Friday 9 Aug – 12:00 – 12:30
Maritime Village
Speaker:
Andrew Tierney
Talk: Abusing Windows Hello Without a Severed Hand
Friday 9 Aug – 15:00 – 15:45
L1 – HW1-11-02 (Track 2)
Speakers:
Ceri Coburn Red Team Operator and Offensive Security Dev at Pen Test Partners
Dirk-jan Mollema Security Researcher at Outsider Security
Windows Hello is touted by Microsoft as the modern de facto authentication scheme on Windows platforms, supporting authentication and encryption backed by biometrics. In a world that is quickly accelerating towards a passwordless existence, what new threats do we face in this complex landscape?
We will take a deep dive into the inner working of Windows Hello. Via the release of a new tool, it will be demonstrated how an attacker on a fully compromised Windows host can leverage secrets backed by Windows Hello biometrics without needing the biometric data that protects them.
We will also show how the hardware protections of Windows Hello and its accompanying Primary Refresh Tokens can be defeated, making it possible to use Windows Hello for identity persistency and PRT stealing, in some cases even without Administrator access on the host.
Talk: I am still the Captain now!
Saturday 10 Aug – 12:00 – 1:3:00
Creator Stage 2
Speakers;
Paul Brownridge and Andrew Tierney
Taking remote control of ships engines, helm, azipods, ballasting, and plenty more.
Talk: GPS spoofing: it’s about time, not just position
Saturday 10 Aug – 12:30 – 13:00
Creator Stage 3
Speaker:
Ken Munro
Talking to pilots and operators, an important aspect of GPS spoofing and jamming is being missed from the narrative in the media. We know about position spoofing, that’s a given. What doesn’t appear to be getting much attention is the effect of time spoofing.
The most significant of these is an incident where time was spoofed a significant period into the future. This caused all digital certificates on board an aircraft to become invalid and caused all electronic communications to fail. As GPS clocks have protection against time being rolled backwards, but not forward, the aircraft was grounded for several weeks for systems to be reflashed and the clocks to be reset,
Coarse time spoofing could therefore ground entire fleets. We’ll discuss this and potential mitigations. If time allows, we could touch on conventional RF navaids and their exposure to similar attacks.
