Chaos Computer Club - SHA2017: Still Hacking Anyway (high quality webm)

Attacking OpenSSL using Side-channel Attacks (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200

Side channel attacks (SCA) gained attention in the past years. New low cost tools like Chip-Whisperer proved that these attacks are not any more a theoretical, academic risk but a real threat to the security of the embedded systems. Many cryptographic products are now being developed having this attacks in mind and countermeasures are being implemented. This is the case of the omnipresent OpenSSL, which implement protections against side channel attacks to prevent the extraction of the secret key. In our presentation, we will briefly introduce SCA to the audience and discuss later the countermeasures implemented in the OpenSSL RSA and our attack that allows us to bypass them. #NetworkSecurity about this event: https://c3voc.de

DNA: More Greatest Hits (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Part 2 of the presentation "DNA: The Code of Life" at SHA2017. This recording was made by Bart Smit and post-processed to compensate for the bad lighting conditions for the projector. The sound improves after the first few minutes. Part one of the presentation is at https://media.ccc.de/v/SHA2017-31-dna_the_code_of_life - slides and more can be found on https://ds9a.nl/dna/ about this event: https://c3voc.de

Let's hack words (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Within the framework of the "Hacking Words" writing workshop, interested participants will deal with this year's theme of the Shah2017: resilience. The creative writing principle is written for 30 minutes. There is only one motto: do not think of rules, readers, quality or your inner censor. Instead, it is about putting first ideas to paper and getting into the write flow. #Making about this event: https://c3voc.de

Lockpicking and IT Security (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

What do design flaws, implementation errors, 0days etc. look like in physical locks? #PhysicalSecurity #Software about this event: https://c3voc.de

SHA2017 Closing (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

A summary extraordinaire. #Community about this event: https://c3voc.de

Infrastructure review (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

Infrastructure talk from Productiehuis, NOC and other interested teams. #Making #Sharing #NetworkSecurity about this event: https://c3voc.de

Biometric ID cards by the billion (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

India has rolled out a 'voluntary' biometric ID card to all of its billion-plus citizens. Which is fascinating from a social, technical and fundamental rights perspective. This talk is about both intended and unintended consequences of this grand experiment, with a focus on the (implicit) assumptions we tend to make about technology. #Society #Privacy #SurveillanceState about this event: https://c3voc.de

Hackerspaces Jedi (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

We use traceroutes to explore and visualise interconnectedness between devices on the internet (specifically: RIPE Atlas probes). This talk is about exploring the interconnectedness within a country ("are local paths local"), and also about exploring the interconnectedness between hackerspaces. #NetworkSecurity about this event: https://c3voc.de

Can quantum physics break cryptography's curse? (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

The history of cryptography is a history of failures. Stronger ciphers replaced broken ones, to be in turn broken again. Quantum cryptography is offering a hope to end this replacement cycle, for its security premises on the laws of quantum physics and not on limitations of human ingenuity and computing. But, can our nascent quantum technology implement quantum cryptography securely? The talk introduces today's quantum cryptography techniques, then shows how to compromise their security by exploiting imperfections in engineering implementations. #DeviceSecurity #Science #NetworkSecurity about this event: https://c3voc.de

Lightning talks day 5 (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

about this event: https://c3voc.de

SHA2017 Badge (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

The SHA2017 Badge overview. #Making about this event: https://c3voc.de

The Fenrir Project (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

TLS can be limiting, OAuth is a (somewhat working) mess. What would happen if we redesigned things from scratch? Fenrir is a federated protocol built with both heavy security and high flexibility in mind, with lots of new and interesting security properties. #NetworkSecurity about this event: https://c3voc.de

Hack-a-ble (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

Although IoT is already embedded in our everyday lives, our security and privacy are sometime left behind for comfort and other reasons, despite the serious impact that IoT vulnerabilities may have on our digital and physical security. Bluetooth Low Energy (BLE), also known as Bluetooth Smart is the most popular protocol used for interfacing IoT and smart devices. Broadly used in the healthcare, fitness, security, and home-entertainment industries, nowadays we encounter BLE in almost every aspect of our lives (e.g. in wearables, sensors, medical devices, security products, etc.). In this lecture I will survey key security issues in the BLE protocol, as well as presenting a possible architecture for BLE Man-in-the-Middle (MitM) attack together with the related necessary equipment. In addition, will introduce some of the available tools and how they can be used to perform penetration-testing on BLE applications and will discuss possible mitigations to secure them. #NetworkSecurity #IoT about this event: https://c3voc.de

FaceDancer 2.0 (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

USB connectivity has become ubiquitous. The sheer variety of usb-connected devices— ranging from computers and game consoles to resource-constrained embedded systems— has resulted in a wide variety of vendor-specific protocols and custom USB software stacks. Being able to fuzz, monitor, mitm, or emulate USB can often be a foot in the door for working with black box systems; whether your goal is to build tools that work with existing hardware and software, find vendor interfaces or vulnerabilities to execute custom code, or to play NSA. We introduce FaceDancer 2.0, with more supported hardware, higher speeds, and advanced capabilities for monitoring and mitming USB connections. #DeviceSecurity about this event: https://c3voc.de

Parkour communications (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

Using encryption and onion routing is all fine and dandy, but both can be detected and both can, at the very least, be severely hampered or even be cut off.
However, the Internet nowadays is full of services and systems that autonomously, and continuously, send data to users all over the world.
These messages or interactions are seen as formalities and have become a blind spot, even with security minded people; they are just the fixtures of the Internet.
In this lecture I want to try and effect a change of mind when looking at these fixtures and to show ways how to hack them.
Hack them, not to pwn them or to corrupt them, but rather hack them to use as communications method when all else is either watched, broken or blocked.
Not in the same way as 'just sending a few base64 encoded tweets', but really... #NetworkSecurity #Privacy about this event: https://c3voc.de

NSFW: Di[CENSORED]s for privacy (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

History, relevance and future of penis imagery in culture. A radical way to deter hackers or just a stupid idea. Using your most private key in new and inventive ways. #Society #DeviceSecurity about this event: https://c3voc.de

DDoS attack and defense (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

In this talk you'll be given a very technical overview of DDoS and mitigation techniques; their effectiveness will be evaluated with real-life examples. #NetworkSecurity about this event: https://c3voc.de

Exploiting Twitter with Tinfoleak for investigative purposes (SHA2017)

Tue, 08 Aug 2017 00:00:00 +0200

In this talk, I will present a new version of my tool Tinfoleak, the most complete OSINT open-source tool for Twitter. I will show real examples of how to exploit the information in social networks for investigative tasks. The goal is to see, what kind of information can be extracted about a person or a location, and the purpose with which it can be used, with a live demo. Among other information, I will show useful information for security forces, private investigators, pentesters, social engineers, journalists, security analysts and anyone interested in the privacy or analysis of social networks for investigative purposes. #Privacy #Society about this event: https://c3voc.de

Building A Virtual Reality Website using A-Frame (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

A-Frame is an open-source web framework by Mozilla for easily creating VR experiences which work on all platforms. In this session you will learn to use various concepts & APIs of A-Frame and create interactive VR scenes on the web, all you need to get started is a basic knowledge of HTML & JS. about this event: https://c3voc.de

Energy Harvesting for Smart Autonomous Electronics 2 (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Converting ambient energy into electrical energy to power wireless autonomous devices instead of batteries opens up a variety of opportunities to design electronic systems that last a life time, and don't ever need maintenance. This talk discusses the state of the art in energy harvesting, focusing on light, heat, and vibrations, and elaborating new storage media such as solid state cells and super capacitors. The emphasis is on practical applications and examples rather than theory, aiming to guide the audience on the way to removing batteries from their own creations and replacing them by energy harvesters. about this event: https://c3voc.de

Commissioning methods for IoT (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Many of the things we use on a daily basis are becoming smart and connected. The Internet of Things (IoT) will improve our lives by helping us reach our fitness goals, reduce resource consumption, increasing productivity, and track and secure our assets. Many embedded developers realize the potential benefits of the IoT and are actively developing various applications, from connected home devices to wearables to home security systems. However, along with these benefits come risks. No one wants to design an application that’s prone to hacking or data theft. One of the most complicated and crucial trade-offs in IoT security is the commissioning of wireless devices onto a network. This lecture presents a review of common commissioning methods and their security tradeoffs. #IoT #NetworkSecurity about this event: https://c3voc.de

(In)discrete Music (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

In which we experiment with generative music, based on chaotic systems and cellular automata. Continuous sounds will be made using discrete systems, and discrete sounds will be made using continuous systems. #Making about this event: https://c3voc.de

"Information. What are they looking at?" (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Our barrier-free documentary "Information. What are they looking at?" takes an inclusive approach to communicating knowledge around privacy violations through mass surveillance by governments and corporations. Addressing a diverse audience our we prioritise shifting the representational power from discourse dominating white men towards the expertise of women and people of color. #Privacy #SurveillanceState about this event: https://c3voc.de

Let There be Light (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

The talk aims to be an introduction to LED lighting, how to create lighting hardware, what regulations and protocols are involved and how lighting can generally improve human wellbeing. #Society #Making #PhysicalSecurity about this event: https://c3voc.de

Car hacking: getting from A to B with Eve (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Car security is, not surprisingly, a hot topic; after all they are fast and heavy computer controlled machinery that nowadays come with all kinds of internet connectivity. So we decided to have a look at it. In our presentation, we’ll first cover some theory behind the IT-part of car architecture. We’ll discuss attack vectors and their likelihood of success, and then discuss the various vulnerabilities we found. Finally, we will combine these vulnerabilities into a remote attack. Depending on the disclosure process with the vendor, which is pending, we might be able to demonstrate the attack. #DeviceSecurity #IoT about this event: https://c3voc.de

How an intern hacked the powergrid (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

This talk focuses on the thesis assignment of Willem Westerhof. During this thesis it was discovered that a weak spot exists withing the Powergrid, allowing an attacker to perform a distributed attack using PV-installations to cause massive (nation-wide/continental) power outages. #NetworkSecurity #PhysicalSecurity about this event: https://c3voc.de

Black Hat Locksmithing (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

From thieves to prison breaks to secret tools, the murky world of the criminal locksmith is explored. It will not be a practical lesson in theft (sorry). #PhysicalSecurity about this event: https://c3voc.de

When Tech MIMICS Reality (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Many of us are reliant on the digital communication tools and reference platforms that are created by companies. These platforms - some with more users than the population of any country - are controlled by proprietary algorithms, governed through binding Terms of Services (ToS), allow for access to third-party services. This talk will take stock of six intrusive forces that exploit invasive data collection that I have coined ‘MIMICS’: Manipulation (of our feeds and search results), Indexing (of our clicks, pageviews and social graphs), Monitoring (our content consumption patterns to shape future results), Interception (of data via upstream surveillance), Censorship (through arbitrarily enforced content moderation policies) and ‘Siloing’ (which forces users to keep their data within the walled gardens of a single platform). #Society #Politics #Legal #SurveillanceState about this event: https://c3voc.de

The Hackeboy handheld game console (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Hackefuffel is a small indie game label of 8-bit-heads from Hamburg. In late 2016 we decided to build the (open) retro-gaming console we always wanted...modern hardware, but old scholl spirit, and that's when Hackeboy was born. The first prototype was built at 33c3 and it has come a long way since then. In this talk we'll show you what we've built, what worked, what didn't and what we learned on the way...and of course invite you to remix the hardware, develop your own games and of course play them! :-) #Gaming #Making about this event: https://c3voc.de

Resisting Algorithms of Mass Destruction (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

When the Australian media use the word “clusterfuck” in headlines describing a Government data-matching program that’s sending people to debt collectors, you know you have a campaign the community will connect with. Lyndsey Jackson, instigator of Australia’s #notmydebt, introduces the approach behind this collaborative social media campaign, and discusses some of the challenges, and rewards, of crowdsourced resistance. #Privacy #Society #SurveillanceState about this event: https://c3voc.de

Life Needs Internet (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

How does internet influence your life? This lecture will be about my ongoing project Life Needs Internet (2012-2017) which documents digital culture through handwritten letters. Recent letters came from Brazil, China, France, India, Ghana and Papua. All handwritten letters are translated and documented on www.lifeneedsinternet.com. Together these letters create an archaeological insight into digital culture. The audience can participate in the project by writing their own handwritten letter during the lecture. #Society #Sharing about this event: https://c3voc.de

In The Eye of the Beholder (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Capitalist underpinnings of advanced technology development threatens individual agency and the notion of self-defined identity. As we are seen by an increasing number of image capture systems, this session will discuss prospects for the degrees of control do we exert over digital representations of our bodies as vision technology becomes more ubiquitous. #Privacy #SurveillanceState about this event: https://c3voc.de

The art of creating an escape room (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

At the moment of submitting this talk there are 500+ escape rooms in The Netherlands alone. By the time SHA takes place there might be over 600. However, not all rooms are equal, and there is a vast difference in escape room experiences and quality. This talk, presented by an experienced escape room designer, will go in to all the facets of designing and building an escape room. It will show how to create the best experience for the players, the pitfalls and how to design the puzzles and puzzle flows. It will further give an insight in to the technique used behind the sound, lightning and puzzle interactions. #PhysicalSecurity #Making about this event: https://c3voc.de

Physical Penetration Testing (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Your pentesting goal: getting the data. You decide to do it physically. How to go about? #PhysicalSecurity about this event: https://c3voc.de

Weaponized Social (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

We can intentionally build and improve the sociotechnical systems of which we are a part, or we can be haphazard in the worlds we create. The things which we personally find fulfilling and useful may not hold true at scale. This talk lays a framework for approaching societal-level change through being scientifically minded and taking active steps to test and implement greater equality and autonomy while respecting both. Weaponized Social was a series of events, discussions, actions, and surrounding community over the course of 2015 used to examine the network effects of human interaction, to encourage the healthy and to deweaponize the powerful tools at our fingertips. This talk reviews the lessons we learned about inequalities and institutional violence, the processes and tools for exploiting or combatting it, and personal responsibility. #Society #Sharing about this event: https://c3voc.de

Legacy Crypto Never Dies (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

In 2012 I released a DES cracking service with Moxie Marlinspike for cracking MSCHAPv2 and quickly started seeing it being used for cracking other things besides MSCHAPv2. In this presentation we'll take a look at some of the research we've done into other widely used protocols and services that still rely on DES for security and provide an quick intro into the https://crack.sh API so you too can use this service for your own projects. #NetworkSecurity about this event: https://c3voc.de

Neuralscape Bowels (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

The idea of how to transform brainwaves in images and sounds is not new, but with the new digital technologies, it becomes more accessible. During this lecture, will be present how to get this impulses from cheap sensors, and process it with free/open source tools. #Making #Sharing about this event: https://c3voc.de

Gems are truly outrageous (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

This talk demonstrates how to make fake gemstones and related accessories using only a 3D printer and kitchen, as well as various pointers to make your own designs. #Making about this event: https://c3voc.de

Race For Root: The Analysis Of The Linux Kernel Race Condition Exploit (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

CVE-2017-2636 is a 7-year old race condition in the Linux kernel that was fixed by Alexander Popov in March, 2017. This vulnerability affected all major Linux distributions. It can be exploited to gain a local privilege escalation. In this presentation Alexander will describe the PoC exploit for CVE-2017-2636. He will explain the effective method of hitting the race condition and show the following exploitation techniques: turning double-free into use-after-free, heap spraying and stabilization, SMEP bypass. #DeviceSecurity about this event: https://c3voc.de

Computer crime and criminal law 101 (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Legal lecture on Cybercrime for non-legal-experts #Society #Politics about this event: https://c3voc.de

Cryptography beyond Encryption and Signatures (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

This talk will introduce a couple of less well known applications of cryptography. about this event: https://c3voc.de

Good is hard, but try anyway. (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

How do we know what good is. Are we creating something worth making? Are we lost in our own dogma? When do we step back and let the smoke clear before getting back to work? Important questions. Let's ask them out loud about this event: https://c3voc.de

MISP threat sharing platform (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Information sharing is a key element in detecting security breaches and proactively protecting information systems and infrastructures, but the practical aspect is often forgotten. Alexandre Dulaunoy offers an overview of MISP, a free software tool that supports information-sharing practices among communities, and shares some lessons learned while building it. Topics include: An overview of the information-sharing challenges in cybersecurity Best practices in information security The history of the MISP platform and the open source/free software community behind How the development of the free software project helps to support information-sharing practices How the platform is designed to support analysts, reversers, and ICT professionals in their day-to-day activities The ongoing projects in the MISP platform and how you can contribute #Sharing #Software #NetworkSecurity about this event: https://c3voc.de

Ethics in Technology (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

When designing technologies, networked systems, and measurements on the Internet, we must be aware of their implications and consequences for the society and participants. As engineers, scientists, programmers and other experts, we have moral obligations towards our peers, users of technologies we create, and the wider communities. In this talk I want to talk both about general ethical considerations, and specific examples of moral dilemmas that come from building the RIPE Atlas system, and conducting measurements that reveal workings of Internet infrastructure and services. #Society #NetworkSecurity about this event: https://c3voc.de

Let's stop EU copyright expansion (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200

European Commission plans are underway to introduce an extra copyright for news sites and an obligation for internet platforms to surveil all user uploads in the EU. We can still stop these dangerous plans, but not without your help. #Copyright #Politics about this event: https://c3voc.de

An academic's view to incident response (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200

A timely reaction to security incidents is without doubts important. And while the techniques of digital forensics can come pretty close to perfect for single-host systems with small hard drive capacity, things can get easily messy with 10+ systems, a mixture of operating systems & mobile devices of various brands, or gigabit network traffic that is partly encrypted. This talk contains two parts. For one, the do's and don’ts for incident response from a forensic examiner’s point of view. Is it better to pull the plug, or gracefully shut the machine down, how to capture network traffic, and what to do if the machine is still running and you’d like to image the RAM. In particular, I’ll present a few methods how to capture network traffic for small networks that don’t have a dedicated monitoring port available, and what to do with them. Secondly, a list of things that went wrong when reality kicked in and good intentions do more harm than good. This will include the problems of tool dependency for specific tasks, free log aggregation using graylog and why there is no such thing a s a free lunch, GRR and the riddle for the perfect toolchain. #NetworkSecurity #Science about this event: https://c3voc.de

Lightning talks day 4 (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

about this event: https://c3voc.de

Responsible Disclosure; How to make your school a safer place. (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

This talk is about the collaboration and Responsible Disclosure in a school environment by a high school hacker. #Sharing #Training about this event: https://c3voc.de

Regulating Law Enforcement use of Trojans (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

The complexity of implementing a policy (law) and related operational and technical procedures to regulate the uses of Trojan by Law Enforcement in a way that protect civil rights while not preventing investigations from going on with the right balance of juridical/technical implementation. #Legal #Politics #Society about this event: https://c3voc.de

Digital dissent in Latin America (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

The Internet isn't global. Only half of the world is connected to the Internet, English is still the largest language in terms of content and knowledge is increasingly privatized either through patented code (owned mostly by Sillicon Valley companies) or via obscure trade agreements pushed by the United States. How is the Internet used in Latin America to organize, resist repression and counter digital colonialism? #Society #Patents #Politics about this event: https://c3voc.de

One map to map them all (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200

The MissingMaps project started almost three years ago. Since then, all over the world people have contributed to OpenStreetMap in those areas where maps are really needed and mostly missing: right where the Red Cross and Medicin Sans Frontieres have their fieldworkers to help in disaster areas, and areas with disasters waiting to happen. During SHA there will be an ongoing Mapathon at the Maptime Village. In this talk and introduction to this international maphacking grassroot initiative will be given, along with some of the results from the project. And of course it will be presented in such a way that attendees will really love to help map the world, starting at SHA! #Community #Sharing about this event: https://c3voc.de

Ask your candidates and let everyone know about it (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

This talk will show and compare different forms of political campaigns during election times, including Free Software tools. Best methods to be used for the different forms of campaigning will be explained in a way for you to pick it up and make it work for your topic. Let's put pressure bottom-up again! #Politics about this event: https://c3voc.de

Off Grid: Disclosing your 0days in a videogame mod (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Off Grid is a different kind of hacking game, and it is fully moddable. The game logic runs on Lua under the hood, and all the computers you hack, whether desktop PCs or IoT devices are their own Lua VMs allowing modders and hackers to create their own LUA hackable devices, hacking tools, and data types. This flexibility allows anyone to model real life or cutting edge hacks in the game, so next time you find a bleeding edge exploit, why write a white paper, when you could model it in a mod and pass it on for people to play? #Games #DeviceSecurity about this event: https://c3voc.de

Get your ass (HTTP infrastructure) on TLS (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Helping participants to find the best and most secure tools and configurations to automate acquiring TLS certificates and deploying them to use. Bring your own infra ;) #NetworkSecurity about this event: https://c3voc.de

Adventures in Spearphishing: The Good, The Bad, and The Ugly (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

This presentation introduces "phishing spam", an open-source Spearphishing Toolkit, and has a surprising ending with an ethical + philosophical twist. This is the kindof story that only comes from the trenches.. #Experimental about this event: https://c3voc.de

Hardware games (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Making physical games requires a unique knack for creating robust systems. In this talk, Phoenix Perry will share some common strategies for developing DIY artists driven systems which can last through thousands of users and interactions in a museum and installation context. #gaming #hardwarehacking about this event: https://c3voc.de

Ethics in Computing (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Developments in the last few years have shown that computing can no longer be considered neutral or without morals. Most kinds of programs or services have some hidden or implicit morals in them. Especially when things are published at the Internet scale, you see clashes in what is considered morally acceptable. There have been several examples of this in the past few years: Facebook and its emotional contagion study where they tried to influence emotions of their users without telling them. Or academic researchers trying to measure censorship by tricking users into attempting to load censored webpages. There are many more of these examples. Fortunately many academic researchers have realised that this is happening and are calling for action: more ethics education in computer and data science. This is more easily said than done however, but things are moving in the right direction. This talk will discuss some recent cases to explain how computing and ethics are related. I will also describe developments in the academic and professional field on how to deal with these issues. #Society about this event: https://c3voc.de

Open networking and hardware/software disaggregation (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Open Networking or "Web scale networking" is the concept where you're no longer tied into a single vendor for a network solution. You're free to choose you're own hardware and software. #NetworkSecurity about this event: https://c3voc.de

Nerd-Wrangling 101 (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Neurodiversity is the concept that neurological conditions are variations in the human genome. Therefore Autism, ADHD, and mood- and personality disorders are considered social categories intersecting with other social categories. While "Nerd" is very broadly defined, the number of neurodiverse people within our social group is much higher than in the general population. Our social circles, our hackerspaces, our coworkers are assembled from this group. And due to these differences our groups behave differently and encounter different problems that cannot be solved with standard management 101. Working together with a team of amazing people, nearly all of whom have distinctive cognitive needs, we found that classical management and strict structures are impediments rather than support. So we hacked around them. Like you do. In this talk we introduce the concept of cognitive empathy: Being able to think into the brain of your peers even though you might lack affective ("classical") empathy. We will share how we came to new solutions in managing our team by figuring out each others' needs. This talk will be about superpowers and super weaknesses: how to manage them, utilize them, and create an interdependent band of superheroes for which the sum is greater than the parts. #Society #Community about this event: https://c3voc.de

Playing defence is complicated (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

What kind of work goes into implementing secure services? Service providers have to comply to the law, protect their users, worry about reputation, need to deal with vulnerability management, patch management and above all: business continuity. Researchers and attackers target the infrastructure for their own gain and suppliers have their own go-to-market drive which limits the amount of QA on their products. Various services are build upon existing or new foundations. They have to comply to the same company wide policies, like the security policy. In this talk I will give an insight on what goes into the technical analyses, generic preventative measures and provide example on how to use a technical oriented company wide policy to your advantage. #DeviceSecurity #NetworkSecurity #Politics about this event: https://c3voc.de

On the design of a portable secure filesystem: the crypto bits (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

In this presentation I will present the cryptographic aspects of a new secure filesystem called SEF. The goals of this project is to create a filesystem that is secure, robust and easy to understand. The goal of this presentation is two fold. One is to present cryptographic primitive that can be used to design secure filesystems as opposed to the current practice of laying encryption just below or above the filesystem. The second is to solicit feedback on the security of my design. #DeviceSecurity about this event: https://c3voc.de

The quest for algorithm diversity (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Our vision is to increase transparency behind personalization algorithms. facebook.tracking.exposed, is two things: a web browser add-on that collects the stories visible in your Facebook Newsfeed, and a website that aggregates that data from all the users who have the addon installed. Our mission is to help researchers and users assessing how current filtering mechanisms work. Personalization algorithms should be modified in order to minimize the dangerous social effects of which they are indirectly responsible and to maximize the values, both individual and social, that algorithms should incorporate. #Social about this event: https://c3voc.de

I have a dream (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

The ultimate Hackerspace; From Panopticon-prison to Hackervillage-Castle-compound #Community #Making about this event: https://c3voc.de

From Project To Kit (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

A talk outlining the process of turning a personal electronic project into a successful kit business. #Making about this event: https://c3voc.de

Silent Protest (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

Independent observers are noting a decrease in Freedom of speech worldwide. In its 2016 report, Reporter without Borders unveils a "climate of fear and tension combined with increasing control over newsrooms by governments and private-sector interests.", while Amnesty International's report on the State of the World Human Rights states that "2016 was the year when the cynical use of 'us vs them' narratives of blame, hate and fear took on a global prominence to a level not seen since the 1930s. Too many politicians are answering legitimate economic and security fears with a poisonous and divisive manipulation of identity politics in an attempt to win votes". At the same time, the United Nations Statistics Division insist on the unprecedented literacy rate achieved by Mankind globally. Human beings have more and more things to say. With this project, we present Silent Protest : a wearable DIY protest network build of inexpensive network gear and open source software. Its goal is to facilitate Freedom of Speech, enable Art sharing in countries where this Human Right is being challenged by authorities, and offer a customizable portable Anonymous Protest Network platform reliable and affordable enough to be build in third world countries and developed countries alike. #Privacy #Society #Software #Making about this event: https://c3voc.de

Blockchains for a Better World (SHA2017)

Mon, 07 Aug 2017 00:00:00 +0200

The blockchain invention allow us to take our freedom back and save the planet. This talk explains the fundamentals of blockchains, no fluffy talk and no unnecessary details. At the end of the talk you should be able to build your own stateful P2P network. We also demonstrate the Statebox system and some applications. #BlockchainTech about this event: https://c3voc.de

Cryptowars 2.0: Lessons from the past, for the present (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200

In the 90's there was a political struggle about control of the availability of cryptographic technologies. Ultimately, it was won because certain industries aligned with civil society. Or it least it appears as if it was won. Since it is back. Trump, May and Macron have all demanded backdoors. In September the European Commission is slated to come up with a proposal. In this lecture we cover the old cryptowars and focus on lessons for the near future. #Privacy #Society #Politics about this event: https://c3voc.de

Hormones and Hysteria - what every person should know (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

I'd like to discuss with your my experience with hormones and perceived hysteric behaviour and moments one feels extra vulnerable. I have researched this topic for several years and would like to share my experience with you, including the most recent scientific research.

One time asked the internet "Why am I such a Bitch?" .. so my quest started..

Because depression, mega reactions, feeling-the-whole-world-is-bad, witch-hunts, suicides, community drama and fears are sometimes more hormone related than we think.

I also found out what works for me: understanding and hacking your body, sometimes tuning small things like eating Broccoli make a difference.

I would like to share our ideas.

#Society #Hormones #Drama #Community #Biohacking #Bio #Biology #Suicides #Suicide #Women #Mensplaining #Science #Chemistry #Prisons #Psychiatry #SelfHacking #BioPunk #Self #Relationships #Love #Food about this event: https://c3voc.de

FILMS (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200

Last decades I have made 3 films with technological aspects. Since I am not a nerd, but a writer/ journalist/ filmmaker with an interest in technology, science and, I can offer SHA to show my 3 films (eventually the last one TEETH with a short lecture). For debate and for fun. You can find more about me and my work on my own company http://poppeenpartners.nl/ #Community #Robot about this event: https://c3voc.de

Cryptokids (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Talk by Henk (waag Society) and Evelyn Austin (Bits of Freedom). Cryptokids does just that. In a collaboration with Waag Society, Bits of Freedom and Network Democracy, we develop a series of lessons for kids aged ten to fourteen, in which they gain insight into the technical structure of the Internet, how data works, who is actually in charge online and why privacy matters. But more importantly, we try to empower them and provide tools for them to be more secure and to take charge of their own data when they surf the web. In this lecture we will explain the project. Why and how we started, where we are now, and what are the lessons learned. #Kids #Society #NetworkSecurity about this event: https://c3voc.de

SHOULD I STAY OR SHOULD I GO? (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Today’s tech companies have enormous power over what we can access and share, and the input we—as users and citizens—have the ability to provide is minimal. Increasingly, algorithms are being deployed to control how information is delivered to us, as well as for the purpose of moderating user-generated content. These algorithms are proprietary, created by human beings at companies that fail on nearly all measures of diversity, and accountable to few. As user-generated content platforms like Facebook and Twitter reach monopolistic proportions, it has become more difficult to “vote with our feet” (or, more accurately, our data) than ever before. This talk will examine the state of the networked public sphere, the actors determining our destinies online and, most importantly, what we can do about it. #Society #Privacy #SurveillanceState about this event: https://c3voc.de

Certbot & Let's Encrypt Office Hours (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

You’re trying to turn on https for your site for the first time. You have a certificate, but are sick of renewing it. You’ve set it up before, but now you’ve grown and want a more advanced setup. Or, you don’t need help but want to understand some of the finer points of certificate theory, use, and management. Come to Certbot & Let's Encrypt office hours to talk with Certbot developers and fellow users. No question too small or silly, no person too experienced or inexperienced to be worthy of our time. #NetworkSecurity about this event: https://c3voc.de

GNU Taler (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

GNU Taler is an online payment system that uses Chaum's blind signatures to provide robust unbreakable privacy for customers along with accountability for merchants. Taler avoids the the performance issues that plague Byzantine fault-tolerant consensus-based solutions, and is developed entirely as free software. The talk will cover everything about GNU Taler, including the cryptography, the system architecture and a demonstration. #Privacy #NetworkSecurity about this event: https://c3voc.de

Anonymous, secure and easy. You can have them all. (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

All the pieces to make encryption easy, secure and anonymous are in widespread use. Only we're not using them properly, making it difficult for the users. In this talk, Guido will show what benefits can be gained by using existing cryptographic protocols in a slightly different configuration. Doing so makes authentication easy, community building possible and truly private messaging between strangers a reality. All without requiring the users to think about cryptography. It just works. #Privacy #NetworkSecurity about this event: https://c3voc.de

Human Rights and Internet Infrastructure (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Standards bodies, infrastructure providers, internet governance organizations and operators are getting more attention nowadays, but how are these institutions impacting human rights? In this talk we'll introduce you to the slippery acronym world of the IETF, ICANN, IEEE, ITU, 3GPP, RFCs, IXPs, RIRs and we promise you won't be bored! We'll try tot uncover parts that are crucial for what is (im)possible on the Internet, but that normally stay hidden. As a bonus we'll show you what you can do! #Politics #Society about this event: https://c3voc.de

Time Stretching BpmDj (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

How to modify the speed of audio without altering its pitch ? #Making about this event: https://c3voc.de

Network Traffic Analysis using Deep Packet Inspection and Data Visualization (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

For the protection of (critical) infrastructures against complex virus attacks, deep packet inspection is unavoidable. In our project SpySpot we are developing new tools and techniques to assist analysts in gaining insight and reverse engineering WireShark PCAP files. In this talk we present and demo a new data visualization system Eventpad to study PCAP traffic by visualizing patterns according to user-defined rules. We illustrate the effectiveness of the system on real-world traffic including VoIP communication and Ransomware activity in file systems. #NetworkSecurity #DeviceSecurity about this event: https://c3voc.de

Malware: From your text editor, to the United States Government's Lab (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Ever wonder where your malware ends up after you deploy it? Are you curious how the United States Government researches Cyber Security on the backs of students? First, this is not a technical talk. This is an informative talk on the insides of how the inner workings of an Information Security Lab in one of the Top Technical Universities in the United States works with its Government to provide insights in the world of, as the feds like to call it, "CyberSecurity". (All Americans apologize for Trump. We're sorry.) #Politics #SurveillanceState about this event: https://c3voc.de

The state of the pretty Easy privacy (p≡p) project and what to expect next (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

The pretty Easy privacy (p≡p) project has the primary goal to make encryption accessible to the masses. By experience, the initiators know from CryptoPartys that regular users -- even after getting everything explained (e.g., basics of public key cryptography) -- continue to be unable to communicate in private on a regular basis in practice. That's where p≡p jumps in: instead of just providing good privacy, privacy must also be easy to achieve. p≡p automates all steps necessary to engage in end-to-end encryption without hassling the users involved or asking questions. The p≡p project started to provide easy to use OpenPGP-compatible encryption for as many platforms as possible, with the ultimate goal to transfer all written digital communications to the GNUnet, thus not just protecting contents, but also metadata. In this talk, the basic ideas and technologic foundations of p≡p are presented. Furtherly, it's shown in which cases p≡p is already operational and what's to be expected next. #NetworkSecurity #DeviceSecurity #Privacy about this event: https://c3voc.de

Smart, safe & happy (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Privacy-minded charities have a hard time going up against silicon valley's army of corporate lawyers. Digital rights are becoming increasingly important in society, but politicians fail to come up with answers. Across the world law after law is being passed, eroding our civil liberties. Ancilla has been fighting to keep our digital rights for the past 5 years. At SHA she will share her lessons and thoughts on what comes next. #Politics #Society #Privacy about this event: https://c3voc.de

Rooting the MikroTik routers (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

In this talk I describe my journey into reverse engineering parts of MikroTik system to gain access to hardware features and the shell behind the RouterOS that has no “ls”. #NetworkSecurity #DeviceSecurity about this event: https://c3voc.de

Social Enterprises as a Tool for Activism (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

We have entered the era of President Trump. Activists, NGOs, and charities thus need to reexamine the stability of (and motives behind) their funding sources. Surprisingly, business is an excellent tool that one can leverage to change the system. While business is not perceived as sexy by most activist-types, this talk will explain why social enterprises are tactical, lightweight, independent, effective, and why they are now more important than ever. #Society about this event: https://c3voc.de

Digital personal locker (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Most of our data is held in a fuzzy uncontrollable manner. We propose a totally different solution, a new paradigm in thinking about your data. In this paradigm you know where your data is, you are in control and data losses are a thing of the past. This presentation will introduce the personal locker. A technical reference (and device) that allows you to actually own and control your data. Big data can have many benefits. But until now you had to store your data somewhere in the cloud instead of at home. This idea will show how to combine different open source software and hardware solutions to build a device which complies to regulations but where you own and control the data. Think blockchain, distributed file systems, encryption, PKI and Open mHealth. #NetworkSecurity #BlockchainTech about this event: https://c3voc.de

How hackers could have hacked all Dutch elections since 2009 (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

In this talk I'll present my findings when researching the security of the Dutch voting system. I quickly found various important security mistakes which would made it very easy to tamper with the results. Based on my research the Dutch government dumped the voting software. #NetworkSecurity #DeviceSecurity about this event: https://c3voc.de

Developments in Coordinated Vulnerability Disclosure (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

There has been much development in recent years on vulnerability disclosure. The Netherlands has taken the lead in 2013 by publishing an official guideline for "Responsible Disclosure". Since then much has happened, other countries have shown an interest and there is even a (free!) ISO standard on Coordinated Vulnerability Disclosure. In this talk I'll summarise the global developments and explain how and why things have gone as they are. At the end of this talk I'd also like to have an open discussion and collect feedback on how the Dutch government has handled this and can possibly improve this. #NetworkSecurity #PhysicalSecurity #DeviceSecurity #Politics about this event: https://c3voc.de

Build Usable Tools (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

You’ve designed and implemented the perfect protocol to keep your target users private and secure. Come make sure that it will be used effectively by real users. In this workshop, you’ll learn the basics of evaluating and improving usability. You’ll gain practical skills in applying usability guidelines, and in designing and carrying out user studies. Your project will become more intuitive and protected from user mishap. If you have a project that users interact with, bring it or printouts of its interface - we’ll be conducting small user studies during the workshop. This is intended for anyone involved in creating tools or products. #Software about this event: https://c3voc.de

We don’t need no security! (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Of course we will need security - but maybe not in the way we've 'always' done it. In this session we will explore whether a lot of what we consider to be part of security’s tasks, actually requires a separate organisation. #NetworkSecurity #PhysicalSecurity #DeviceSecurity about this event: https://c3voc.de

Building Businesses that we can Buy Into and Believe In (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

In the age of corporate surveillance, invasive ad-driven business models and lucrative zero-days, it is no surprise that the words “profitable business” can sound destructive to internet freedom and human rights. However, if we want to change this trend and have a lasting impact, we need to make sure we can build profitable businesses on privacy-friendly and open source technologies, that respect all humans, without bias. #Society #Privacy about this event: https://c3voc.de

My Safe In Your House (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

All those shiny cloud services sound tempting, but unfortunately they might mean giving up your private information to someone else. But with modern hardware and crypto, you can have your cake and eat it, too. How does searchable encryption work? What can oblivious RAM protect you from? Where do secure enclaves like Intel SGX shine, and where do they fail? We'll give an overview of how the latest research and products work, how experimental they are, and what they might be used for. #DeviceSecurity #NetworkSecurity about this event: https://c3voc.de

A look at TR-06FAIL and other CPE Configuration Management Disasters (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

In late 2016 a TR-064 (LAN-side CPE management) misconfiguration in a wide range of CPE devices was disclosed that allowed for remote device takeover. Within days, botnets began exploiting a related command injection issue, leading to widespread internet outages for customers of certain ISP's in the UK and abroad. This talk will explore the impacts of these issues, along with taking a look at some other, related vulnerabilities related to TR-069 (WAN-side CPE management) protocol implementations that could allow for remote takeover of routers en-masse. #NetworkSecurity #DeviceSecurity about this event: https://c3voc.de

Social cooling (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200

What does it mean to be free in a world where surveillance is the dominant business model? Databrokers turn our data into thousands of reputation scores, which are increasingly impacting our chances to get a job, a loan, insurance or even a date. As awareness of this grows we see a growing culture of self-censorship and risk-aversion. In the long term these chilling effects could seriously 'cool down' society. about this event: https://c3voc.de

Human body as an electric IO system (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

A lecture about the brain as electrical Input Output system (the What the Hack logo would fit nice). But also other body parts as eyes and muscles will pass the revue. Debunking some myths on the way. This would be for all hackers that dream about connecting computer processing power to themselves. For most of them this dream will be joyfully shattered, but some might become enthusiastic. #Making #Experimental about this event: https://c3voc.de

Tor & Configuration Management (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

This presentation will explain in detail how the tor network can grow with a minimum of effort. It will also zoom in on the problem of centralisation and how we can evade it and still make the network grow even larger. I'll try to explain to you how you can do this with configuration management. Even the smallest of organisations can use this way to expand the network and to allow us to browse the internet more securely. #NetworkSecurity about this event: https://c3voc.de

How I made my diesel motorcycle (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

I have made several diesel powered motorcycles and this is a simple talk or walk through of all the things I had to consider and things I had to do to complete the project. #Making about this event: https://c3voc.de

Because "use urandom" isn't everything: a deep dive into CSPRNGs in Operating Systems & Programming Languages (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Over the past year multiple people have been engaging language maintainers and designers to change their use of CSPRNGs (mainly relying on user-land RNGs like the one from OpenSSL, and sometimes suggesting "adding entropy" by various means from user-land daemons like haveged). In this short presentation we'll survey the struggle of cryptographers, developers and security engineers to change the path various high-profile languages have taken to provide randomness to their userbase. Affected languages include but are not limited to: Ruby, node.js and Erlang. We outline better approaches for language maintainers and implementers as well as coming changes within the Linux kernel crypto subsystem (i.e. /dev/random and /dev/urandom) w.r.t. security and performance. Recently these changes were merged into mainline Linux (4), problems with languages implementations however remain. We'll also discuss operating system provided randomness testing, attacks/mitigation in embedded and virtualized environments. #Software #Security about this event: https://c3voc.de

The law and leaky abstractions (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

In this talk I will show positive and negative examples of how laws can influence the security of infrastructures and society for the good and the bad. Without proper attention for lawmakers, security teams, service providers and security researchers could be positively or negatively influenced in their work. #Legal #Politics about this event: https://c3voc.de

Data Exploitation (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

In the world of the "internet of shit" - where it's not just our computers and phones that gather data about you but also your cars, your pacemaker, the toys you children play with and your fridge among many others - the dramatic growth in data collection has led to a loss of control over data. Who owns the data? How is it processed and collected? And more importantly how is it used to make decisions about you? Those are some of the questions Privacy International has been trying to address in order to help of us reclaim control over our devices. This talk will aim at explaining how data exploitation works and how it has already started affecting our lives so we can be prepared for and start resisting the exploitation. #Privacy #IoT about this event: https://c3voc.de

Lightning talks day 3 (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

about this event: https://c3voc.de

Hands up, don't shoot. Unless with a bodycam. (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Dutch police officially started using bodycams eight years ago – although the oldest sightings of Dutch police officers outfitted with a ‘bobbycam’ date back twenty years. Such camera’s are another tool of surveillance, unless there is a solid policy governing their use. Of course, at the time of writing this summary, this policy is lacking. In this talk I’ll give an overview of the use of bodycams by the Dutch police in the last twenty years, explain the up- and downside for you and me and I’ll provide a summary of my policy recommendations. #Politics #SurveillanceState about this event: https://c3voc.de

Flip Feng Shui (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

In 2016, the VUSec system security group from Vrije Universiteit Amsterdam published three top-notch research papers on the topic of Rowhammer exploitation, leading to international media attention and even a prestigious PWNIE award. In this talk, we present key concepts of our research and provide an introduction to Rowhammer exploitation to the public. We describe how attackers can use the Flip Feng Shui exploitation vector to reliably attack cloud, desktop, and mobile platforms. #DeviceSecurity about this event: https://c3voc.de

Olmogo - because it's your data! (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

We present “olmogo”, a novel cryptographic, distributed data storage system and end user application that could – within a single platform – replace today’s cloud storage, messaging / chat and social networks with a cryptographically secure alternative in which users can trustfully share their data while the infrastructure itself has no access to the content. #Privacy #NetworkSecurity about this event: https://c3voc.de

Zanshin Tech: the digital martial art (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

What do you get when you cross cybersecurity themes with the mindset and the discipline of martial arts? You get the Zanshin Tech.

Zanshin Tech is a digital martial art focusing on the digital aggression and teaching how to use mind and technology to avoid, solve or stop the conflict.

Through continuous practice, both youth and adults learn how to identify and manage Cyberbullying, Child enticement, Cyberstalking and much more.

The lecture is intended to introduce the discipline of Zanshin Tech, describing the activities, the educational method and the structure of the art itself.

#PhysicalSecurity #Sharing #Kids #Training about this event: https://c3voc.de

The World in 24 Hours Revisited (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

In this talk we look at The World in 24 Hours, an early computer network art performance from 1982, which took place between 13 different cities around the world in the messaging system of the computer time-sharing, consulting and services firm IP Sharp. Canadian artist and initiator Robert Adrian wanted to explore the way culture can live in computer networks. The recent interest in saving and restoring digital heritage has created the opportunity to re-evaluate this work and to look for ways to re-enact or interpret it in the present day network landscape. A description of the work is presented, along with information about the technical circumstances and the artistic intent behind the work. The audience is invited to join a discussion about what would be the best way to re-enact this event in today's post-Snowden era as close to the original optimistic spirit of the work as possible. #Making #Society about this event: https://c3voc.de

Decentralize! Self-hosting in your own home using Sovereign (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Centralized services enable mass surveillance, control and censorship. Decentralization on the other hand can be laborious. The Sovereign project makes it easy to run your own dirt-cheap dedicated server for mail and many other services. #Making about this event: https://c3voc.de

Off<>zz Code and Piano Concert (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

For SHA2017, Off<>zz will present a two part music concert of piano and live coding. In the first part, we will present “Code Our Glance”: a 30min musical journey where the audience influences the performance through an interactive web-application. The second part will feature the beta version of the CodeKlavier: a new project in which a pianist is able to code through playing the piano. #Making about this event: https://c3voc.de

Fermentation Mobile (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

This talk is about setting up mobile fermentation education centers for experimental fermentation as well as means of legal production and vending points of fermented and other products at a variety of events and places. After a decade of fermenting around the world I have come to the conclusion that having mobile bases, where kvasirs (brewers, fermentors) can do what they love and legally make their living by carrying out their activities, is a sustainable way to promote the fermentation art and science long term. Being able to meet your needs by choosing and later on keeping working in your profession is one of the founding principles of human society. You can build up experience and knowledge of the persons and groups achieving progress in your field. Establishing fermentation communities guarantees more stable conditions for fermentation related projects, which take time, energy, and resources. A mobile approach to fermentation helps to reduce efforts and resources to a minimum. This is crucial especially at the first phases of community build up, when least resources are available. Importantly it also allows promotion, exchange, and resource generation by collaboration with other communities and participation at events when the “home community” is not “fermentized”, or strong enough, to support the project fully yet. Fermentation mobile therefore aims to build up stable, local fermentation communities by helping them to achieve their sustainability and self reliance faster and more efficiently, integrating them into a legal framework, and combining collaboration and exchange of resources with other communities and projects. #Making about this event: https://c3voc.de

Exploiting The North American Railways (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

From 2005 to 2010 I spent my time hopping freight trains all over the United States and Canada. With over 250,000km of railways in the U.S and Canada security is a huge task. With so much space to cover there are many opportunities to enter and ride the trains that move along the North American railways. This talk will cover some of the basics of doing so as well as the legal implications of these actions. #PhysicalSecurity about this event: https://c3voc.de

Cut by the free and open edge (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

FLOSS seems to be a natural choice for NGOs and not formalized entities (groups of activists, etc) -- evading vendor lock-in, harder to place a back-door, community support, and no licensing costs. And yet many NGOs continue to use closed-source software, even in areas where FLOSS tools are available and considered stable. Reasons are many; one of them can be tracked to papercuts -- small, annoying quirks and imperfections making FLOSS awkward, hard, or impossible to use in a given setting. #Society #Community about this event: https://c3voc.de

How to develop PyQt software (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Qt meets Python and allow you to create a GUI in few minutes. So we will show how this works while live coding. #Software about this event: https://c3voc.de

Bypassing Secure Boot using Fault Injection (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

More and more (secure) embedded systems implement a feature to assure the integrity and confidentiality of all software executed after power-on reset, commonly referred to as secure boot. When not logically flawed, other attack techniques must be used to bypass the provided security. Such an attack technique is fault injection. #DeviceSecurity about this event: https://c3voc.de

Demolish the web with the Firefox Dev Tools! (SHA2017)

Sun, 06 Aug 2017 00:00:00 +0200

Firefox has amazing dev tools that support the last technologies but they can used also with other browser and nodejs. #Software about this event: https://c3voc.de

Relationship status of technology and legislation: It's complicated (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200

Legislation is said to be slow to follow technological developments. This not only has an impact on the capacity of the police and intelligence services, but also has negative impact on the freedoms of citizens. In this talk I'll discuss some of the recurring issues and possibly solutions. #Politics #Privacy about this event: https://c3voc.de

Art Tech Activism Privacy and Cool Robots (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200

Viola van Alphen is activist, writer and former director of multimedia event GOGBOT, which was awarded as the Most Innovative Event of the Netherlands. In Oct she organizes Manifestations @ Dutch Design Week, reach: 290.000 visitors. Theme: Will the Future Design Us? sub theme: Internet of Women Things: on Need-driven innovation, what role do we want technology to have?

With themes like the Googlization of Everything, Japanoiiid, Singularity is Near..Resistance is Futile, Mediapolis, Meme’s, Atompunk, the festival always seems to address one or more issues that create controversy and encourage the visitors to be more actively engaged in technology and the role they want technology to have and definitely to not have in the future. Themes around Privacy, Security and Hacking.

The festival is free of entrance, taking art out of the museums and presenting it in the public space. With international artists, young talent and collaborations with i.e. VU University and University Twente, European Space Agency, NASA, Nanolab Twente, Mddr_ Lab, WORM, Lebowski StreetArt publishers, Anonymous, FEMEN, Hackerspaces, etc.

With projects like Google Birth, Baghdad Car Bomb Wrecks of Jonas Staal, Tinkebels underwear-vending-machines, Workspace for “Terrorists” from Atelier van Lieshout, Autonomous Spaceships, etc etc.

Together with a group of artists, Viola hacked herself into the Museum of Modern Art NYC using A.R. app LAYAR, which afterwards officially got added to the MoMA’s program.

During the presentation she will show several examples of (tech) art, robots and activism.

One of the goals to show worldwide professional artists active in the field of Security, Privacy and Hacking, but also build bridges between artists and hackers, and to (hopefully) take away previous experiences in seeing bad art and amateur art.

Saturday 11-23h you can experience Freerk Wieringa's exoskeleton: wear this and control a 3m high steel robot. www.freerkwieringa.nl

#Making #Robot #Art #Exoskeleton #Activism #Privacy #DDW #Design #Futurism #WillTheFutureDesignUs about this event: https://c3voc.de

Computational Thinking (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200

You will get inspiration how you can teach your kids computational thinking. #Society #Science #Kids about this event: https://c3voc.de

Best of IoT Fails (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200

The internet of things (IoT) is just at the beginning of its development, but there are already various examples of so-called fails, which are not coming from the pen of science fiction authors. In my talk, I present current examples that I collected as a journalist and did write about that might sound like science fiction, but actually have already taken place. I am also presenting collected solutions on how to make IoT a little bit more failure free and more privacy save. #IoT #Privacy #NetworkSecurity about this event: https://c3voc.de

Zero to chiptune in one hour (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200

An in-depth demonstration of the process of creating video game music on an authentic retro computer - namely, the ZX Spectrum. Over the course of an hour I will attempt to create, from scratch, a chiptune cover version of a pop song chosen by the audience. Along the way, I'll explain the hardware limitations that give rise to the well-known blip-blop sound of chiptunes, and the tricks that musicians have used to overcome those limitations. #Making #Gaming about this event: https://c3voc.de

Network concepts introduction & wireshark workshop (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200

BRING YOUR LAPTOPS. CHARGE THEM!

Ever wondered how webpages arrive in your browser? How zmap works? Want to get your first hands-on experience using wireshark?

To learn all that you need to learn the basic networking concepts. You're in luck as this is a hands-on networking workshop preceded by a lecture. We will cover such topics as the ISO/OSI model, Ethernet, IP, TCP, UDP, routing, and wireshark.

The workshop at 33c3 was over-crowded, so this is a chance for those who couldn't attend, to make it this time.

#Training about this event: https://c3voc.de

Detecting a breach from an attackers perspective. (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200

Detecting a breach is hard, detecting someone who targets your network specifically is even harder. As pentesters, we notice that we often remain undetected and breaching an infrastructure via an external server generally goes unnoticed. However, indications of our breach could definitely have been picked up, we could have been detected. So, why weren’t we? This talk focusses on using simple detection mechanisms that detect specific post exploitation steps. We demonstrate simple tricks that can be used as a final warning mechanism. We choose to focus on the behaviour of an attacker and give them what they want. Is the attacker using Mimikatz? Give them (fake) credentials. Are they using Responder? Broadcast WPAD queries! Port scanning the network? Give them something to port scan! Design small traps from an attackers perspective to detect someone snooping around. Modern companies have various detection systems and immense amounts of logging. Not every alarm can be followed up, there needs to be a proper justification before starting a full-scale investigation. Indications of an initial breach (exploit-kit/phishing/malspam) do not justify a full-scale investigation. However, indications of post exploitation directs you towards a more focussed investigation. Assuming you don’t have many indications of post exploitation ;). #NetworkSecurity about this event: https://c3voc.de

Improving security with Fuzzing and Sanitizers (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
A bug in Gstreamer could be used to own a Linux Desktop system. TCPDump released a security update fixing 42 CVEs. We have far too many security critical bugs in the free and open source software stack. But we have powerful tools to find them - we just have to use them. #Software #DeviceSecurity #Sharing about this event: https://c3voc.de

Lecture Decode: Data-sovereignty back to the citizens (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
Join this talk on DECODE, a project that provides tools that put individuals in control of whether they keep their personal data private or share it for the public good. #Privacy #Software about this event: https://c3voc.de

Smart Home Security with Tor (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
The IoT is emerging as the third wave in the development of the Internet. We have a great danger with IoT because of the surveillance by an individual hacker or a state actor to exploit the very private information of individuals or companies. We can secure our “Smart Homes” by using TOR. #IoT #NetworkSecurity about this event: https://c3voc.de

Beyond the Titanic (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
Slowly ignorance over dataleaks are vanishing. We start to accept that there are vulnerabilities that affect us on a daily basis. Yet we are terribly slow in learning from these incidents. What would you learn if you were to dig deeper into dataleaks as if it were a disaster? During this presentation we explore some lessons learnt. #Privacy #Society about this event: https://c3voc.de

Hacking on a boat (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
Modern vessels are equipped with all kinds of electronics, to easy navigation, assist in manoevring and -by far the most important- assist in the safety of the ship and its passengers. In this talk, we will evaluate the security principles that have been used to design these systems and how we can break into the onboard systems. #NetworkSecurity #PhysicalSecurity #DeviceSecurity about this event: https://c3voc.de

Heralds Introduction (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
Angels that would like to be a Herald have to attend one of the introductions. This is the third introduction. You will learn how to engage and control a crowd, how to handle a microphone. Heralds are the face of the event and function as a kind of Host on the stage, introducing speakers, moderating Q&As and making sure that everything happends on time about this event: https://c3voc.de

Are Whistleblowers safer today than they were at OHM2013? (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
How does the public view whistleblowers? Would they use social media, blogs or other methods to blow the whistle? We report on gold-standard public polls across 4 European countries. We will present recent cases in Europe, and track the progress - and setbacks - in European protections. #Privacy #Society #Politics #SurveillanceState about this event: https://c3voc.de

Hack North Korea (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
HRF North Korea Program team will prepare a presentation to educate SHA 2017 participants about how information is currently brought into the tightly controlled closed regime—whether via leaflets dropped by helium-nitrogen balloons, on USB drives and DVDs, or by shortwave radio. The session will explore how individuals and organizations can improve current techniques to hack the regime’s information monopoly and accelerate the influx of outside information. #Privacy #Politics #Sharing about this event: https://c3voc.de

DNA: The Code of Life (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
DNA is the code of life. It encodes how we are built, how nature operates. Science learns more and more about this uniquely digital language. This talk will excite hackers & anyone who knows a little bit about computing, since it turns out DNA is better explained in terms of bits than in terms of classical biology. Prepare to be blown away! about this event: https://c3voc.de

Tor de-anonymization techniques (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
Tor offers great anonymity and privacy for millions of people. However, there are some Tor de-anonymization techniques that work. This presentation demonstrates de-anonymization of Tor hidden services and users. #NetworkSecurity about this event: https://c3voc.de

How to Defend Cars (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
For a long time automobile manufacturers designed their cars as closed systems with no security in mind. Recently security researchers have demonstrated how vulnerable vehicles are to cyber-attacks. Once compromised the vehicle is at the mercy of the hackers: by remotely taking over control of the car, they can perform dramatic actions with severe safety-related consequences for the passengers. This issue comes from the design of automobiles and the communication protocols they use. To function properly a vehicle makes use of different computers called “Electronic Control Units” (ECU) to perform various operations such as breaking or steering. Connected all together on the in-vehicle networks, the ECUs communicate with each other using simple protocols involving no security features, assuming the legitimacy and the trustworthiness of their peers. The lack of security mechanisms makes it difficult to guarantee the confidentiality, integrity and availability of automotive systems. Moreover the complexity of the situation increases with the rise of connected vehicles, communicating with each other (Vehicle-2-Vehicle communications, V2V) and with the infrastructure (Vehicle-2-Infrastructure communications, V2I). #PhysicalSecurity #DeviceSecurity #NetworkSecurity #IoT about this event: https://c3voc.de

Automotive microcontrollers. Safety != Security (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
Tesla Model S, Jeep Cherokee, Mitsubishi Outlander, Nissan Leaf… The list of hacked cars grows every day and security has become a priority in the automotive industry. Until now, most of the security research and security development has been focusing in the higher layers of the software and in car interfaces like the WiFi, Bluetooth, USB or CAN. We, however, tried to assess security at lowest level possible: the microcontrollers in the ECUs. #PhysicalSecurity #DeviceSecurity #IoT about this event: https://c3voc.de

Mass Surveillance abusing Computational Linguistics and Human Language Technology (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
Even though the Snowden revelations for the first time clearly show that mass surveillance of communications is carried out on a global level, little knowledge seems to be available to the general public as well as the hacker community how these so-called COMINT operations actually work. The talk focuses on mass surveillance based on methods known from research of the interdiscplinary field of Computationanal Linguistics (or Natural Language Processing) and demonstrates how generation of selectors for mass surveilling text messages can occur. about this event: https://c3voc.de

Introducing Talla: An Erlang implementation of Tor (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
A technical walk-through of a highly concurrent third-party implementation of Tor in the Erlang programming language. #Software #NetworkSecurity about this event: https://c3voc.de

Mailpile (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
Four years ago, in a tent at OHM 2013, the Mailpile project and crowd-funding campaign were launched. Our goal was to create a new Free Software e-mail solution that raised the bar on usability, security and privacy. This talk will discuss what has happened since. #Privacy #Software about this event: https://c3voc.de

How the NSA tracks you (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
Bill Binney will talk about his experiences as Technical Director at the NSA where he had a 34 yr career. #Society #Privacy #SurveillanceState about this event: https://c3voc.de

SHA2017 Opening (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
Welcome to SHA2017! So much camp, everywhere! #Community about this event: https://c3voc.de

Famous C&C servers from inside to outside. (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
We all are aware of the malware attacks and bot-net's behind this massive illegal industry which drains out pockets and even take our lives. This criminal organisations have own rules and own secrets that they don't want us to reveal. They like to infect hack and control the victims without get caught by law enforcements. We all know that end-point security is not enough for the zero day malware attacks so my research was always focused on their command and control centres. We will never win the malware war if we don't reveal their dirty job from inside, having this aim i managed to revel more than 10 unique C&C server dirty secrets in past years. This research articles are published in various cybersecurity magazines in Europe and Asia. #NetworkSecurity about this event: https://c3voc.de

from glass fiber to fiber glass noodles (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
Experiments in edible network infrastructures #Experimental about this event: https://c3voc.de

The Security and Privacy Implications of AI and Machine Learning (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
What will the recent rapid progress in machine learning and AI mean for the fields of computer security and privacy? This talk gives a tour of some answers, and some unanswered questions. It will discuss new types of attacks and surveillance that are becoming possible due with modern neural networks, and some new research problems that the computer security community should be working on. #MachineLearning #Privacy about this event: https://c3voc.de

Moving towards fully encrypted web (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
In this talk I'm going to go through the problems people are facing in moving from HTTP to HTTPS, why it's sometimes not seen as worthy of the time investment. Which things are broken in web TLS at the moment, but moreover how we actually already have the tools addressing most of the problems and how to use them effectively. I'll also cover the plumbing behind the transactions, the protocols used and different possibilities to automate it all... #Privacy #NetworkSecurity about this event: https://c3voc.de

OpenINTEL: digging in the DNS with an industrial size digger (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
Since early 2015, the University of Twente, SURFnet and SIDN collaborate in the OpenINTEL project. The goal of this project is to perform long-term, large-scale active measurements of the global DNS namespace. Our current coverage is around 60% of the global DNS and included .com, .net, .org, .nl (and other ccTLDs) and most new gTLDs. This talk will explain how we measure at this scale, collecting some 2.2 billion data points per day, and what we can learn about the evolution of the Internet from this data. Examples include adoption of cloud e-mail services and mail security measures, domains crafted for performing DDoS attacks, domains crafted for spam, and many others. #NetworkSecurity about this event: https://c3voc.de

Privacy Design Strategies (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
Privacy laws are complex and vague. They offer little concrete guidelines for engineers. Privacy design strategies address this issue. They translate vague legal norms into concrete design goals. These can be used to start the conversation on how to design your system in a privacy friendly way from the very start. The outcome is a system that addresses privacy well, but may not be perfect. But that is good enough! #Privacy about this event: https://c3voc.de

LDraw: computer-aided design for serious LEGO fans (SHA2017)

Sat, 05 Aug 2017 00:00:00 +0200
LDraw™ is an open standard for LEGO CAD programs that allow the user to create virtual LEGO models and scenes. You can use it to document models you have physically built, create building instructions just like LEGO, render 3D photo realistic images of your virtual models and even make animations. The possibilities are endless. Unlike real LEGO bricks where you are limited by the number of parts and colors, in LDraw nothing is impossible. -- http://ldraw.org/ #Software #Kids #Making about this event: https://c3voc.de

Building Humanitarian hackers in your communities - How to (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
This talk will share lessons from the random hacks of kindness community on how best to involve technologists to create solutions humanitarian and civic issues in a community. #Community #Society about this event: https://c3voc.de

A trip to India (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
We will take you behind the scenes of a call center that placed over 5 million calls to Dutch phone numbers and employed around 60 people. We will show how these call centers operate and how they convince their victims to pay for their ‘services’. You will see the social engineering techniques that are used by the scammers. We will also show that we could easily obtain the list of 5 million potential victims from the call center and how we eventually were able to track down the owner of the call center. #Society #ContentWarning about this event: https://c3voc.de

Invitation to help build Quantum Internet (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
The goal of Quantum Internet project at TU Delft is to build an optically-connected network of many (small) quantum computers. Such a network enables the exchange of quantum bits between any of the connected quantum processors in order to solve problems that are intractable classically. #science #networksecurity about this event: https://c3voc.de

Life is too short for playing classic sports... (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
In this presentation, I'll try to convince the audience how the CTF challenges can be extremely fun and very enlightening. A powerful weapon against the discouragement in the area. #NetworkSecurity #Gaming about this event: https://c3voc.de

TBM: Trusted boot module (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
The Trusted Boot Module is an open hardware module that enables all kind of devices (routers, embedded boards, laptops, desktops) to boot to a trusted state by loading only trusted code - while keeping the owner of the hardware in control. #PhysicalSecurity #DeviceSecurity about this event: https://c3voc.de

Update the updates (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
Much of today's technology is said to be disruptive. In most cases, this means that technology can turn around the winners and losers of an entire branch. But recent digital attacks have shown that technology can also disrupt our entire society rather easily. There are many reason for that, one of them being issues surrounding the deployment of patches. Installing the patches that eliminates vulnerabilities seems to be something that has the lowest priority. That has to change. We need to update the way we deal with updates. In this talk I’ll address some of updates we need to apply to the process of updating. #DeviceSecurity #NetworkSecurity #IoT about this event: https://c3voc.de

Failure modes of digital radios (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
All consumer electronics have integrated digital radios. Many with standardized specifications like WiFi, 3G/4G modems, but closed source radio base-bands with a mix of dedicated, power-efficient hardware-and software. Proprietary extensions can be implemented, patented and used to prevent others from gaining market share. Some examples will be presented. #Sharing #NetworkSecurity about this event: https://c3voc.de

Ethics and the Events of 9-11 (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
Kirk Wiebe will talk about his experiences during his 32 year NSA career, specifically about effective intelligence gathering, the failure of mass-surveillance and how to fix it. #Society #SurveillanceState #Politics about this event: https://c3voc.de

Copyfighters (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
Copyright is failing young people and their usage of the internet everyday, but a positive change will not come on its own. We present the outcomes of our copyright campaign so far, discuss how to move forward and engage with young participants of SHA2017. #Copyright about this event: https://c3voc.de

Mathematics and Video Games (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
In this talk, I will talk about some interesting applications of maths to video games, including how the find the shortest possible route to complete Pac-Man and the 3- and 4-dimensional shapes that 2D video game characters spend their time on. #Gaming #Science about this event: https://c3voc.de

Software Patents v3.0: the Unitary Patent Court (SHA2017)

Fri, 04 Aug 2017 00:00:00 +0200
In July 2005, after several failed attempts to legalise software patents in Europe, the patent establishment changed its strategy. Instead of explicitly seeking to sanction the patentability of software, they are now seeking to create a central European patent court, which would establish and enforce patentability rules in their favor, without any possibility of correction by competing courts or democratically elected legislators. #Copyright #Patents about this event: https://c3voc.de