Detailed DC KIDS II Schedule

This page is still under construction, please check back soon for detailed info on all activities.

Classroom: Friday 10:00-11:00

Meet Top Secret Keynote

U.S. spy agency chief to meet with hackers at “Defcon”

http://www.cnbc.com/id/48266260

Moss said he invited federal agents to the first Defcon conference, but that they politely declined. They showed up anyway, incognito. They kept coming, in bigger numbers, sometimes in uniform.

“We created an environment where the feds felt they could come and it wasn’t hostile,” Moss said. “We could ask them questions and they wanted to ask the hackers about new techniques.”

He said he’s spent a decade trying to get the head of the NSA to speak at Defcon, but he never imaged it would actually happen: “To me this is really validating of the whole culture.”

General Keith B. Alexander, USA, is the Commander, U.S. Cyber Command (USCYBERCOM) and Director, National Security Agency/Chief, Central Security Service (NSA/CSS), Fort George G. Meade, MD. As Commander, USCYBERCOM, he is responsible for planning, coordinating and conducting operations and defense of DoD computer networks as directed by USSTRATCOM. As the Director of NSA and Chief of CSS, he is responsible for a Department of Defense agency with national foreign intelligence, combat support, and U.S. national security information system protection responsibilities. NSA/CSS civilian and military personnel are stationed worldwide.

He was born in Syracuse, NY, and entered active duty at the U.S. Military Academy at West Point.

Previous assignments include the Deputy Chief of Staff (DCS, G-2), Headquarters, Department of the Army, Washington, DC; Commanding General of the U.S. Army Intelligence and Security Command at Fort Belvoir, VA; Director of Intelligence, United States Central Command, MacDill Air Force Base, FL.; and Deputy Director for Requirements, Capabilities, Assessments and Doctrine, J-2, for the Joint Chiefs of Staff. GEN Alexander has served in a variety of command assignments in Germany and the United States. These include tours as Commander of Border Field Office, 511th MI Battalion, 66th MI Group; 336th Army Security Agency Company, 525th MI Group; 204th MI Battalion; and 525th MI Brigade.

Additionally, GEN Alexander held key staff assignments as Deputy Director and Operations Officer, Army Intelligence Master Plan, for the Deputy Chief of Staff for Intelligence; S-3 and Executive Officer, 522nd MI Battalion, 2nd Armored Division; G-2 for the 1st Armored Division both in Germany and Operation DESERT SHIELD/DESERT STORM in Saudi Arabia.

GEN Alexander holds a Bachelor of Science degree from the U.S. Military Academy and a Master of Science degree in Business Administration from Boston University. He holds a Master of Science degree in Systems Technology (Electronic Warfare) and a Master of Science degree in Physics from the naval Post Graduate School. He also holds a Master of Science degree in National Security Strategy from the National Defense University. His military education includes the Armor Officer Basic Course, the Military Intelligence Officer Advanced Course, the U.S. Army Command and General Staff College, and the National War College.

His badges include the Senior Parachutist Badge, the Army Staff Identification Badge, and the Joint Chief of Staff Identification Badge.

Workstations: Friday 10:00-18:00

NSA Code Breaking Museum

Presented by the National Security Agency’s National Cryptologic Museum, learn how to solve a simple cipher message and how to create your own secret ciphers. Then hear about the Germans in WWII thought they had an unbreakable cipher machine called Enigma. Thinking no one could ever understand their secret communications, they used the machine to encrypt thousands of messages. However, the secret had been solved before the war even started. Learn how the mathematicians and cryptanalysts worked 24/7 to break and read those secrets almost as easily as the Germans. A real, working German Enigma machine will be available as well to try your hand at encryption.

Jennifer Wilcox has been the Museum Administrator and Educational Coordinator for the National Security Agency’s National Cryptologic Museum since 1999. She has conducted extensive research in cryptologic history particularly pertaining to the World War II German cipher machine Enigma and the Allies’ ability to solve those messages. Her research has resulted in brochures, articles, presentations and museum exhibits.

For more than a decade, a primary function of Ms. Wilcox’s work has been in creating and presenting a wide variety of educational programs for students visiting the museum as well as presenting briefings to adult audiences. Her research and presentations cover topics including women in American cryptology, Native American code talkers, Civil War signaling, and cryptology in the American Revolution as well as the popular Enigma story.

Ms. Wilcox earned her B.A. in Telecommunication from Michigan State University in 1983. She began her career at the National Security Agency in 1986. Ms. Wilcox first worked in the NSA television center writing and producing educational videos. She followed that with a move to the NSA libraries as an Information Librarian where she honed her research skills. She puts those skills to work in her role as Educational Coordinator at the museum.

Contests: Friday 10:00-11:00

Hoff’s NSA Crypto Challange

Join Chris Hoff for a quick crypto lesson, then race your peers to solve a puzzle for prizes!

Field Trips: Friday 10:00-11:00

Welcome and The Making of the Badge
Dark Tangent and L0st

Jeff Moss, aka The Dark Tangent – Founder of Black Hat and DEFCON, Homeland Security Advisory Council Member Jeff Moss has been a hacker for over twenty years. In 1992, Jeff founded DEFCON, the largest hacker community and gathering in the world. Five years later, he started Black Hat, a series of technical conferences featuring the latest security research. In 2009, Jeff was appointed to the Homeland Security Advisory Council, a group of subject matter experts providing advice to the Secretary. Jeff is also a contributing author to “Stealing the Network,” a series of books combining stories that are fictional with technology that is real, and executive producer of a documentary film about the history of hacking to be released in late 2010.

Back to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Friday 11:00-12:00

The Wall of Lambs
FS and codoxx

Over a decade of monitoring the Defcon Network. Brining Security Awareness to the forefront of the industry in a unquie and playful manner. Proving that we all can be sheep at somepoint when we let our gard down. Security awareness and protection is a 24x7x365 habit, it should be taken seriously and practiced in the same manner. The Wall of Sheep is an example of what can happen when user let their guard down, while the WoS does this in a playful and harmless manner, there are more scrupulous characters at defcon that wont be so nice. Connecting to the defcon network “The Worlds Most Hostile Network” is a decision one should not take lightly. The Wall of Sheep was Founded by RiverSide and CedoXx over 10 years ago and continues today as it educated sores of defcon attendees on safe computing practices.

CedoxX
one of the founding members of the Wall of Sheep, and the “Capture the Packet” Game and skills assessment product. Cyber Information Security Professional, Threat analysis expert with over 20 years in the industry.
Speaker at various security conferences and Universities around the world. Author of various articals on APT, hacking trends, the “Insider Threat”, Malware, rootkits and Botnets. Contributor to open source projects and
associations.

‘FS’ is a high school student who has been attending Defcon since DC15 and plans to continue attending until he’s dead. Focusing heavily in network security and playing with packets, FS also enjoys coding python, soldiering hardware, and is known to occasionally make a website. FS plans to attend college for a degree in Network Security and wants to pursue a career as a Network security professional, hopefully becoming an > expert.

Workstations: Friday 11:00-12:00

SnapCircuits
beaker and Cl0ver

Have fun learning all about electronics with this easy-to-use, snap-together project board kit. Use easy to identify color coded parts. Projects go together with ease. We will build select projects from over 100 possible designs such as a Space War Alarm, a Musical Motor, and a Fan Detector.

Chris Hoff (beaker)

Chris Hoff has 20 years of experience in high-profile global roles in network and information security architecture, engineering, operations, product management and marketing with a passion for virtualization and all things Cloud.

Hoff is currently Director of Cloud & Virtualization Solutions of the Security Technology Business Unit at Cisco Systems where he focuses on virtualization and cloud computing security, spending most of his time interacting with global enterprises and service providers, governments, and the defense and intelligence communities.

Previously, he was Unisys Corporation’s Chief Security Architect, served as Crossbeam Systems’ chief security strategist, was the CISO and director of enterprise security at a $25 billion financial services company and was founder/CTO of a national security consultancy amongst other startup endeavors.

Hoff is regularly interviewed by analysts, media and the press, is a featured guest on numerous podcasts and has keynoted and presented at numerous high-profile security conferences including Black Hat, DefCon, Microsoft’s Bluehat, RSA, Gov2.0, FIRST, Glue, Source, SecTor, and Troopers.

Hoff is a founding member and technical adviser to the Cloud Security Alliance, founder of the CloudAudit project and HacKid conference and blogs at http://www.rationalsurvivability.com/blog. You can also get his firehose Twitter timeline by following @beaker.

Hoff is a CISSP, CISA, CISM and NSA IAM. He was twice nominated as the Information Security Executive of the Year and won the Security 7 award in Financial Services in 2005. Hoff is a 2010 Microsoft MVP (Security) and a 2010 VMware vExpert.

Contests: Friday 11:00-12:00

Hacker Boardgames

Play fun boardgames for prizes.

Field Trips: Friday 11:00-12:00

Can You Track Me Now? Government And Corporate Surveillance Of Mobile Geo-Location Data
Christopher Sogmoian, Ben Wizner, Catherine Crump, Ashkan Soltani

Our mobile phones and apps systematically collect and store comprehensive historical lists of our locations and our travels. Advertising and marketing companies extract and interpret these lists for use in their information-gathering networks, effectively turning our phones into 24/7 location tracking devices. Because this information is readily available to the government, law enforcement agencies now have unparalleled access to knowledge of where you are, where you’ve been, and through inference, who you are.

In this panel, tech experts Christopher Soghoian and Ashkan Soltani, alongside Catherine Crump, staff attorney with the ACLU’s Project on Speech, Privacy, and Technology, will present a briefing on the current technological and legal landscape of location data tracking. The panelists will explore how consumer location tracking efforts weave a story about the systemic privacy vulnerabilities of smart phones and the legal ways in which law enforcement has been able to hitch a ride. The panel will be moderated by the Director of the ACLU’s Project on Speech, Privacy, and Technology, Ben Wizner.

Back to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Friday 12:00-13:00

Hacking the Home
beaker and al3x

Can you hack a blender? Some blenders you can hack now. Pretty soon all blenders, air conditioners, heaters, meters, washers, dryers, locks, garage doors, TVs, stereos, refrigerators and waffle makers will be customizable, networked and hackable from afar. Learn how now…and beta test a new waffle recipe!

Workstations: Friday 12:00-13:00

Wall of Lambs
FS and codoxx

Contests: Friday 12:00-13:00

The Lambs & The Wolves

Field Trips: Friday 12:00-13:00

Can You Track Me Now? Government and Corporate Surveillance of Mobile Geo-Location Data
Christopher Soghoian

Christopher Soghoian is a Washington, D.C. based Open Society Fellow, a Graduate Fellow at the Center for Applied Cybersecurity Research, and a Ph.D. Candidate in the School of Informatics and Computing at Indiana University. Soghoian’s research is focused on the topic of tech privacy, including both consumer issues and government surveillance. He has used the Freedom of Information Act and other investigative techniques to shed light on the scale of and methods by which the U.S. government spies on mobile cell phones and this work has been cited by the Ninth Circuit Court of Appeals and featured on the Colbert Report.
Twitter: @csoghoian
http://www.dubfire.net/, http://paranoia.dubfire.net/

Back to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Friday 13:00-14:00

Welcome to DEF CON 20
The Ethics Sneak Attack
Dark Tangent & Lauren Gelman

Interested in hacking but want to do the right thing and stay out of trouble? A maze of laws and court decisions make that harder than it should be, but DefCon is here to help. Come learn about the ethical lines you should not cross when hacking and the the things that will have the cops knocking at your door.

Lauren is an attorney who has worked in the field of Internet law and policy since 1995. She is the founder of BlurryEdge Strategies, a legal and strategy consulting firm located in San Francisco that advises technology companies and investors on cutting-edge legal issues. She previously led the Center for Internet and Society at Stanford Law School and taught at the Law School and the Department of Engineering. Prior to that she worked in Washington DC on policy issues for the Electronic Frontier Foundation (EFF) and the ACM Public Policy Committee, and at RealNames in Silicon Valley. She is married to journalist and former hacker Kevin Poulsen, her daughter Sadie is more likely to be the social engineer while Asher handles picking the locks.

Workstations: Friday 13:00-14:00

GO EAT!

Contests: Friday 13:00-14:00

Go EAT!

Field Trips: Friday 13:00-14:00

The Making of DEF CON 20
DEF CON Goons

Back to Schedule

Classroom: Friday 14:00-15:00

DEF CON Badge Secrets
L0st

Workstations: Friday 14:00-15:00

Find a Zero-Day
CyFi

http://www.defconkids.org/?page_id=505

Contests: Friday 14:00-19:00

CyFi Zero Day Contest

http://www.defconkids.org/?page_id=505

Field Trips: Friday 14:00-15:00

Changing the Security Paradigm: Taking Back Your Network and Bringing Pain to the Adversary
Shawn Henry

The threat to our networks is increasing at an unprecedented rate. The hostile environment we operate in has rendered traditional security strategies obsolete. Adversary advances require changes in the way we operate, and “offense” changes the game.

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Friday 15:00-16:00

Hacking Hotels and the Law
Major Malfunction

Adam Laurie is a freelance security consultant working the in the field of electronic communications. He started in the computer industry in the late Seventies, working as a computer programmer on PDP-8 and other mini computers, and then on various Unix, Dos and CP/M based micro computers as they emerged in the Eighties. He quickly became interested in the underlying network and data protocols, and moved his attention to those areas and away from programming, starting a data conversion company which rapidly grew to become Europe’s largest specialist in that field (A.L. downloading Services). During this period, he successfully disproved the industry lie that music CDs could not be read by computers, and, with help from his brother Ben, wrote the world’s first CD ripper, ‘CDGRAB’. At this point, he and Ben became interested in the newly emerging concept of ‘The Internet’, and were involved in various early open source projects, the most well known of which is probably their ownâ€”’Apache-SSL’â€”which went on to become the de-facto standard secure web server. Since the late Nineties they have focused their attention on security, and have been the authors of various papers exposing flaws in Internet services and/or software, as well as pioneering the concept of re-using military data centres (housed in underground nuclear bunkers) as secure hosting facilities. Adam has been a senior member of staff at DEFCON since 1997, and also acted as a member of staff during the early years of the Black Hat Briefings, and is a member of the Bluetooth SIG Security Experts Group and speaks regularly on the international conference circuit on matters concerning Bluetooth security. He has also given presentations on forensics, magnetic stripe technology, InfraRed and RFID. He is the author and maintainer of the open source python RFID exploration library ‘RFIDIOt’, which can be found at http://rfidiot.org. Adam is a Director and full time researcher working for Aperture Labs Ltd., specialising in reverse engineering of secure systems.

Workstations: Friday 15:00-16:00

Lockpicking
Deviant

We all interact with locks every day of our lives. We use a house key to open the front door, we wrap a chain around the tires of our bike when we park somewhere, and we have to remember the combination to our locker at school in order to get our books each morning.

What if you lost your keys, or your locks, or forget all the numbers in your head? Would you be still able to open your locks then? It might interest you to know that you can! For ages now, specially-trained people have used the skill and knowledge of lockpicking to do just that.

This class will teach you all about how lockpicking works, and you’ll see that many of the locks you trust every day don’t always keep us as secure as we think they do! Participation is limited to 30 kids, as each station will have an assortment of locks, picks, and other tools for hands-on fun.

Deviant Ollam, TOOOL

While paying the bills as a security auditor and penetration testing consultant with The CORE Group, Deviant Ollam is also a member of the Board of Directors of the US division of TOOOL, The Open Organisation Of Lockpickers. Every year at DEFCON and ShmooCon Deviant runs the Lockpicking Village, and he has conducted physical security training sessions at Black Hat, DeepSec, ToorCon, HackCon, ShakaCon, HackInTheBox, CanSecWest, ekoparty, and the United States Military Academy at West Point. His favorite Amendments to the US Constitution are, in no particular order, the 1st, 2nd, 9th, & 10th.

Contests: Friday 15:00-19:00

DEF CON Badge Secrets

Field Trips: Friday 15:00-16:00

DEF CON Comedy Jam V, V for Vendetta
David Mortman, et el

You know you can’t stay away! The most talked about panel at DEF CON! Nearly two hours of non-stop FAIL. Come hear some of the loudest mouths in the industry talk about the epic security failures of the last year. So much fail, you’ll need the food cooked on stage to survive. Nothing is sacred not even each other. This years fail includes cloud, mobile and apt to name just a few topics. If that’s not enough, we’ll also be making crepes on stage. Over the last two years, we’ve raised over $1,500 for the EFF, let’s see how much we can do this year….

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Friday 16:00-17:00

Taking Open Source Drones Mainstream
Chris Anderson

Thanks to the plummeting cost of powerful motion sensors like those found in smartphones, the technology to create military-class autopilots is available to all. Over the past five years, the DIY Drones community has created a series of open source unmanned aerial vehicles (UAV), from fully-autonomous planes, helicopters, quadcopters, hexacopters, rovers and more, which cost just a few hundred dollars — less than 1% the cost of equivalent military drones. As a result there are now more than 10,000 of them in use — more than the US Military. As DIY drones go mainstream, what are the practical applications that will emerge, and the legal, ethical and economic implications? How does open source change the regulatory aspects of drones? And will the rise of “personal drones” have a similar social impact as “personal computers” did?

Chris Anderson is the Editor in Chief of Wired. He is the author of the New York Times bestsellers The Long Tail and FREE: The Future of a Radical Price, and the forthcoming Makers: The New Industrial Revolution. He is also founder of 3D Robotics, an open source robotics company.

Workstations: Friday 16:00-17:00

Hacking Hotels and the Law
Major Malfunction and Max

Contests: Friday 16:00-17:00

Lockpicking Race

Field Trips: Friday 16:00-17:00

DEF CON Comedy Jam V, V for Vendetta
David Mortman, et el

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Friday 17:00-18:00

How to Use Social Engineering
Chris Hadnagy

Whether you know it or not, you use social engineering every day. From interacting with everyone from your friends to your family, aspects of social engineering come into play. But what is social engineering? How can you put it to use for you in a positive, and ethical, manner? And most importantly, how can you use it to win this year’s Social-Engineer.Org Kids SE CTF at Defcon 19? Two of the team members from Social-Engineer.Org will present you with an entry level 60 minute session meant to launch you into the world of social engineering, showing you what you need to know to put it to use for you, and protect yourself from malicious social engineering attempts.

Chris Hadnagy

When struck by lightning Chris Hadnagy was transformed into loganWHD and infused with the power of social engineering and the ability to identify the weak point in any physical security system. Countering the natural instinct to use his powers for self gain, Chris has spent his time teaching others in the lost arts of many security topics and spreading knowledge through articles published in local, national, and international magazines and journals. Hidden amoung normal mortals as the operations manager of Offensive Security Chris currently lives a hidden life as the lead developer of Social-Engineer.Org and is the author of the book “Social Engineering:The Art of Human Hacking”. If you are in trouble, and no one else can help, perhaps you can contact Chris online at www.social-engineer.org or twitter at @humanhacker.

Workstations: Friday 17:00-18:00

Q&A on Drones and 3D Printing
Chris Anderson

Contests: Friday 17:00-18:00

Hacker Board Games

Field Trips: Friday 17:00-18:00

The Art of the Con.
Paul Wilson

Paul Wilson is the writer and star of “The Real Hustle” and creator of “The Takedown” on Court TV and “Scammed” on The History Channel. He is one of the world’s finest magicians and an expert on cons, scams, casino cheating and gambling sleight of hand. He has pulled more confidence tricks than anyone in history in his efforts to inform and protect the public.

This talk will include a live con game, cheating devices and reasons why people will always be vulnerable.

Paul Wilson is a world renowned expert on cheating, an award winning conjuror and magic inventor. He now works in film and television. Paul has worked as an actor, presenter, writer, producer and director. He has created, developed and produced television shows for NBC, CBS, A&E, BBC, Court TV and Tru TV.

He has been studying sleight of hand, cheating and conjuring since he was eight years old. After twelve years as a computer consultant, he became a professional performer and lecturer, using the time to study film before moving into the industry.

He also produced A&E’s hit show Mondo Magic , advised Criss Angel for his hit TV show, appeared on “Modern Marvels’” casino technology episodes and is the resident cheating expert on Italian TV’s “Arcana” show.

He co-created, produced and starred in Court TV’s “The Takedown”, a twelve episode series where Paul was challenged to beat Casino security systems. He went on to write and present “The Real Hustle” for the BBC. The show is now a hit in the UK and the fifth season has finished airing. A US version was commissioned by Court TV.

Paul was also the host of VOOM’s “Ultimate Tourist Scams” and has written and presented a one hour special for BBC ONE where he performed the impossible for members of the public.

He currently works as a professional consultant, producer and director. He occasionally performs his one-man show “Lie. Cheat. Steal.” for the public and corporate clients and is a regular talk-show guest in the UK.
Twitter: @rpaulwilson

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Friday 18:00-19:00

GO EAT!

Workstations: Friday 18:00-19:00

GO EAT!

Contests: Friday 18:00-19:00

Capture the Flag

Field Trips: Friday 18:00-19:00

GO EAT!

The American Bar & Grill

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Friday 19:00-21:00

Movie
War Games – PG

A young man finds a back door into a military central computer in which reality is confused with game-playing, possibly starting World War III.

Contests: Friday 19:00-21:00

Movie
Sneakers – PG-13

Complex but lighthearted thriller about computers and cryptography, government and espionage, secrets and deception and betrayal.

Field Trips: Friday 19:00-21:00

GO EAT!

The American Bar & Grill

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Saturday 10:00-11:00

Hacking your School’s Network
Cory Doctorow

Your school’s network is censored and surveilled by default. Some of the creepiest, most unethical companies in the world sell products designed for use by dictators to your school board and spy on every click and every status update.

You probably know how to “hack” your school’s network — how to get outside the school censorwall. But if you get caught, you risk expulsion, and besides, what about all the kids who *don’t* know how
to get free? Wouldn’t it be nice to help them?

You can. The best way to hack the network is to study it, document the ways in which it interferes with your schooling, use Freedom of Information requests to find out what your school is paying for this
junk, and publish and present that material. The Emperor has no clothes — if you prove it, and shout it from the rooftops, you might just make a real change.

Cory Doctorow (craphound.com) is a science fiction author, activist, journalist and blogger — the co-editor of Boing Boing (boingboing.net) and the author of Tor Teens/HarperCollins UK novels like FOR THE WIN and the bestselling LITTLE BROTHER. He is the former European director of the Electronic Frontier Foundation and co-founded the UK Open Rights Group. Born in Toronto, Canada, he now lives in London.

Workstations: Saturday 10:00-18:00

Code Breaking Museum
NSA

Contests: Saturday 10:00-18:00

DoD Crime Scene Investigation

This event is an interactive competition giving teams of 2-5 kids a simulated crime and asks them to solve the case in less than 15 minutes. This hands-on challenge brings awareness to the issues that real-life cyber investigators and security professionals face. Various levels of a cyber investigative process are put to the test in this challenge:

- Analyzing case data
- Processing a crime scene
- Securing evidence
- Conducting a digital forensic examination

To win this challenge, teams need to find the most digital devices in the crime scene, identify the device that contains vital case information based on the scenario and facts given, and locate the digital evidence on the forensic machine (provided). No previous technical expertise is required to participate.

Field Trips: Saturday 10:00-11:00

World War 3.0
The battle for the internet between the forces of Chaos & Control
Michael Joseph Gross, Vanity Fair

There is a battle under way for control of the Internet. Some see it as a fight between forces of Order (who want to superimpose existing, pre-digital power structures and their notions of privacy, intellectual property, security, and sovereignty onto the Net) and forces of Disorder (who want to abandon those old structures and let the will of the crowd control a new global culture). Yet this binary view of the conflict excludes the characters with the best chance of resolving it: those who know that control is impossible and chaos is untenable, a group that Vanity Fair, in an article called “World War 3.o,” called “the forces of Organized Chaos.” This panel gathers leading proponents of that worldview to discuss urgent issues of Internet governance, which may come to a head later this year in a Dubai meeting of the U.N.’s International Telecommunications Union. If government control and anarchistic chaos online are unacceptable, what exactly do the forces of organized chaos propose as an alternative? And what is the DefCon community’s role in helping to realize that vision of the Net?

Return to Schedule

Classroom: Saturday 11:00-12:00

Lockpicking
Deviant

Deviant Ollam, TOOOL

Workstations: Saturday 11:00-18:00

SnapCircuits
beaker and Cl0ver

Contests: Saturday 11:00-12:00

Hoff’s NSA Crypto Challenge

Join Chris Hoff for a quick crypto lesson, then race your peers to solve a puzzle for prizes!

Field Trips: Saturday 11:00-12:00

Hacking Humanity: Human Augmentation and You
Christian Quaddi Dameff

You’ve played Deus Ex. You’ve seen Robocop. You’ve read Neuromancer. You’ve maybe even wondered just what dark mix of technology and black magic keeps the withered heart of Richard “Dick” Cheney pumping coronary after coronary. Now it’s time to get off the couch and put down the controller. Human augmentation is no longer constrained to the world of speculative fiction and vice-presidential medicine; biomechanical interfaces are an exploding area of active research, development, and implementation. And they’re here to stay.

Join medical student/hacker enthusiasts quaddi and r3plicant for a fun-filled tour through the brave new world of the latest and greatest in this exciting new melding of medicine and technology. From the simplest insulin pump to the latest gyroscopic prosthesis for wounded veterans, from the full body DARPA developed exoskeleton of the future to the changes currently being implemented in our most fundamental building blocks, this talk explores what was, what is and what will be in the future of human augmentation, and more importantly, what you need to know to get started down the path to Robocop glory.

Christian “quaddi” Dameff is a third year medical student and former OCTF champion (Sudoers). Former research and interests include: therapeutic hypothermia after cardiac arrest (brrr!), novel drug targets for post Myocardial Infarction patients, and the future of medicine in enhancing the human condition. This is his eighth DEF CON.

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Saturday 12:00-13:00

Weaponizing Mobile
Marcus & Erran Carey

I believe DEF CON Kids are the future.
Teach them to code and let them exploit away.
Show them all the pwnage they possess inside.
Give them a sense of security to make things secure,
Let wee hackers remind us how we use to be,

Everyone is searching for a hero,
need some hackers that they can look up to,
I rarely found solutions that can fulfill my needs.
A vulnerable place to be, so I learned to depend on me.

I found the greatest hacker of all is inside of me.

Kids shouldn’t have to walk in anyone’s shadow, the best time to learn how to hack stuff is now. In this talk we’ll discuss how to begin developing mobile security applications for iOS devices. We will discuss programming languages which kids can quickly pick up, along with projects they can hack away at. These include building friendly programs to do their homework. We’ll later dive into a quick overview of Objective C, the Apple SDK, and an abundance of open source libraries available on the Internet. It will cover how to interact with standard security applications by creating Objective C based APIs. Attendees will understand how to get started on their way to create and deploy applications to the App Store for fun or profit. Erran will demo a few securtiy related apps that he has in the Apple AppStore.

Marcus J. Carey, Security Researcher at Rapid7 currently works as a Security Researcher on the Metasploit engineering team at Rapid7. He has over 18 years of experience in Information Assurance experience working the DoD as well as Federal and State Government organizations. His experience includes working at NSA, DIA, and DARPA. Marcus spends his time Rapid7 researching Information Security threats, developing new proof-of-concepts, and occasionally coding awesome Ruby code for Metasploit Framework.

Erran Carey, iOS Ninja, Exploit Research Intern at Rapid7 is a 16 year old rising senior in high school. He is a lock sport enthusiast, and iOS Hacker. When not in school Erran can be found breaking into stuff. He started programming at age 12 with Perl in order to quickly complete math homework. Since then he has dabbled in Python, Ruby, Java, and most recently Objective-C. Erran’s high school education has included time in Cisco Networking and Java programming. Erran has been a regular attendee of security conferences such as Shmoocon and Defcon since the age of 13.

Workstations: Saturday 12:00-13:00

Wall of Lambs
FS

Contests: Saturday 12:00-13:00

The Lambs & The Wolves

Field Trips: Saturday 12:00-13:00

DIY Electric Car
David Brown

Electric Vehicles are an exciting area of developing technology entering the mainstream market. Every major manufacturer is working on new hybrid and electric vehicles but prices will be high and options few for years to come.

As with many industries, a DIY approach can yield similar results for much less cost, while creating something truly unique.

This talk will explore the possibilities and procedures involved in creating your own electric vehicle. Topics addressed will include the whys and hows, with an emphasis on the options available to tailor your conversion to match your time, budget, and performance needs.

Dave Brown is an IT Security Consultant with Booz Allen Hamilton. In his free time he tries to build stuff, and is particularly interested in alternative energy. In 2010 he converted a ’74 VW Beetle to run on electricity, improving performance and eliminating the need to gas up.

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Saturday 13:00-14:00

GO EAT!

Workstations: Saturday 13:00-14:00

GO EAT!

Contests: Saturday 13:00-14:00

GO EAT!

Field Trips: Saturday 13:00-14:00

GO EAT!

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Saturday 14:00-15:00

Practical Privacy Tips
Moxie Marlinspike

Moxie Marlinspike was the CTO and co-founder of Whisper Systems, is a member of the Institute For Disruptive Studies, runs a cloud-based password cracking service, is the original developer of sslstrip and sslsniff, manages the GoogleSharing targeted anonymity service, is the creator of the Convergence SSL authenticity system, and is the co-creator of the TACK certificate pinning protocol. His tools have been featured in many publications, including CNN, Forbes, The Wall Street Journal, and The New York Times. He is also the author of the sailing film “Hold Fast.”

Workstations: Saturday 14:00-18:00

DEFCON Kids TV Production
DH & Goodson

Contests: Saturday 14:00-15:00

Chaos & Control

Field Trips: Saturday 14:00-15:00

Q&A with the Men (and Women) in Black
Priest

Back at DC9 a brave MIB from the CIA received clearance and volunteered to answer any and all DC attendee’s questions with no restrictions as honestly as he could. After that experience it’s only taken us 10 years to get several someone’s to come back and do it again!

This will be your chance to meet and ask any question you want of the so called Men (and Women) in Black. Representatives from the NRO, CIA, NSA, DIA, and US Military will field any and all questions you have on any topic you want. However you may not like the answers.

We promise there will be no extreme renditions, water boarding, assassinations, or mind control unless you really truly deserve it.

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Saturday 15:00-16:00

Hardware Hacking and Soldering
Joe Grand

This workshop introduces kids to the process and fun of soldering and experimenting with electronics. The kids, with supervision by and assistance from their parents, will each put together a small kit provided by Parallax (http://www.parallax.com/tabid/768/ProductID/832/Default.aspx).

The kids will leave with smiles on their faces and circuit boards around their necks. No prior electronics experience is necessary.

Joe Grand is an electrical engineer, hardware hacker, and proud daddy. He specializes in the design of consumer products and modules for electronics hobbyists. Joe was a co-host of Discovery Channel’s Prototype This, an engineering entertainment show that followed the real-life design process of a unique prototype each episode.

Workstations: Saturday 15:00-16:00

Coding with Scratch
beaker and Alex

Scratch is a programming language that makes it easy to create your own interactive stories, animations, games, music, and art — and share your creations on the web.

As young people create and share Scratch projects, they learn important mathematical and computational ideas, while also learning to think creatively, reason systematically, and work collaboratively. We’re going to learn Scratch together! Your child would benefit from being able to read/write for this course.

Contests: Saturday 15:00-16:00

Hacker Board Games

Play fun board games with prizes.

Field Trips: Saturday 15:00-16:00

Bigger Monster, Weaker Chains The NSA and the Constitution
ACLU

The National Security Agency, the largest, most powerful spy agency in the world, has taken in an estimated 15 to 20 trillion communications since 9/11, often in defiance of the Constitution and Congressional statutes. The NSA’s goal, some say, is to collect virtually all of our electronic communications to allow mass data mining reminiscent of the notorious and now reportedly-defunct program, Total Information Awareness. The limits on the agency’s authority to sweep up and analyze this information are critical to our safety and our privacy. The NSA is investing vast amounts in increasing its data storage, code-breaking and analysis capabilities, frequently claiming the investments are for foreign intelligence or “cybersecurity” purposes. However, instead of keeping its equipment trained on terrorism suspects or foreign governments, the NSA is increasingly monitoring the communications of innocent people. Longtime NSA official and whistleblower Bill Binney will join investigative journalist and NSA expert James Bamford and ACLU lawyer Alex Abdo to explore the NSA’s goals, reach, and capabilities, and the legality (or illegality) of its actions.

The panel will be moderated by the Deputy Director of the ACLU, Jameel Jaffer.

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Saturday 16:00-17:00

Hardware Hacking and Soldering
Joe Grand

The kids will leave with smiles on their faces and circuit boards around their necks. No prior electronics experience is necessary.

Workstations: Saturday 16:00-17:00

3D Printing with Frosting
beaker and Alex

Contests: Saturday 16:00-17:00

Coding with Scratch

Scratch is a programming language that makes it easy to create your own interactive stories, animations, games, music, and art — and share your creations on the web.

Field Trips: Saturday 16:00-17:00

Hacker + Airplanes = No good can come of this
RenderMan

What happens when a hacker gets bored and starts looking at an aircraft tracking systems? This talk will look at ADS-B (Automatic Dependent Surveillance-Broadcast), a common technology installed or being installed on a vast majority of commercial airliners that involves an unencrypted and unauthenticated radio broadcast. This technology has some interesting features and weaknesses that are a useful lesson in failures when security is not built in from the beginning. This talk constitutes a work in progress and hopes to spur more research and investigation into this field.

Brad Haines (RenderMan) CISSP, is a Whitehat by trade, Blackhat by fashion. A very visible and well known member of the wardriving and hacker community, he does whatever he can to learn how things work, how to make them better and to teach people the same. A firm believer in the hacker ethic of openness, sharing, and collaboration. Never afraid to try something new, he can usually be found taking unnecessary risks for the sake of the experience.
Twitter: @ihackedwhat

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Saturday 17:00-18:00

The Feds
Jim Christy, Leon Carroll, Andy Fried, Jon Iadonisi, Rich Marshall, David McCallum, Justin Wykes

Did you ever wonder if the Feds were telling you’re the truth when you asked a question? Join current and former federal agents from numerous agencies to discuss cyber investigations and answer your burning questions. Enjoy the opportunity to grill ‘em and get down to the bottom of things!

Agencies that will have representatives include: Defense Cyber Crime Center (DC3), National White Collar Crime Center (NWC3), US Department of Treasury, Internal R evenue Service (IRS), and the US Navy SEALs. This year, the “Meet the Feds” panel has gone Hollywood with special guests – Mr. David McCallum and Mr. Leon Carroll from CBS’s NCIS!

Workstations: Saturday 17:00-18:00

Meet the Feds
Jim Christy, Rod Beckstrom, Jerry Dixon, Mishel Kwon, Bob Lentz, Riley Repko, Dr. Linton Wells, Mark Weatherford

Contests: Saturday 17:00-18:00

Spot the Fed

Field Trips: Saturday 17:00-18:00

Busting the BARR: Tracking “Untrackable” Private Aircraft for Fun & Profit
Dustin Hoffman, Semon Rezchikov

Private aircraft provide transportation to interesting people: corporate officers, business owners, celebrities, high net-worth individuals, etc.

In recent years, sites like FlightAware have made it trivial to access all public flight plans. However, aircraft owners can opt into a block list (the BARR) that prevents their flight information from being made public. All the interesting people are on the BARR.

We’ll explain the basics of how the the ATC system and sites like FlightAware work, demonstrate a serious, unpatchable method for tracking otherwise “untrackable”, BARRed aircraft, and demo our site that lets you do the same.

Dustin Hoffman is the president and senior engineer of Exigent Systems Inc., an IT services firm based in Southern California. He’s interested in how all kinds of complex systems work and interact, whether technical, organizational, legal, or economic. He’s held a Private Pilot’s certificate (PPSEL) since 2008.

Semon Rezchikov is an independent security researcher and synthetic biologist. He masterminded last year’s presentation on the FAST Airport Security System and is a 20 Under 20 Fellow. Over the summer, he’s building flexible bioautomation robots and simulating synthetic morphogenetic multicellular patterning for MIT’s Weiss Lab for Synthetic Biology. In his free time, he can be found playing around with mathematics, reading too many papers, and thinking of ways to mess with the systems around him.

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Saturday 18:00-19:00

GO EAT!

Workstations: Saturday 18:00-19:00

GO EAT!

Contests: Saturday 18:00-19:00

GO EAT!

Field Trips: Saturday 18:00-19:00

GO EAT!

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Saturday 19:00-21:00

Movie
Hackers – PG-13

A young boy is arrested by the US Secret Service for writing a computer virus and is banned from using a computer until his 18th birthday. Years later, he and his new-found friends discover a plot to unleash a dangerous computer virus, but they must use their computer skills to find the evidence while being pursued by the Secret Service and the evil computer genius behind the virus. Written by Alexander Lum

Field Trips: Saturday 19:00-21:00

GO EAT!

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Sunday 10:00-11:00

Hacking Roller Coasters & the Power Grid with a cell phone
Don Bailey

Workstations: Sunday 10:00-18:00

Code Breaking Museum
NSA

Contests: Sunday 10:00-17:00

DoD Crime Scene Investigation

- Analyzing case data
- Processing a crime scene
- Securing evidence
- Conducting a digital forensic examination

Field Trips: Sunday 10:00-11:00

Robots: You’re Doing It Wrong 2
Katy Levinson

By popular demand, Defcon’s angry little roboticist is back with more stories of robot designs gone awry that make practical lessons on making better robots. Drinking will happen: vodka-absconding scoundrels are not invited.

This talk will cover material assuming the average audience member is a relatively intelligent coder with a high-school physics/math background and has seen linear algebra/calculus before. The intent is to navigate people new to robotics around many lessons my teams and I learned the “hard way,” and to introduce enough vocabulary for a self-teaching student to bridge the gap between amateur and novice professional robotics. It will not cover why your Arduino doesn’t work when you plugged your USB tx into your RS232 tx.

Katy Levinson is a jack-of-all-trades currently employed by Hacker Dojo, a hackerspace in Mountain View California, where she herds cats and wrings them out for money. She was previously a roboticist and the Software Team Lead at NASA Ames on the Lunar Micro Rover Project, and has also been an infrastructure software engineer at Google. She briefly worked as a mercenary for a small VC firm and in Hong Kong where she refereed political pissing matches. She survived 4 seasons of FIRST Robotics as a team member, mentored an additional team, helped found five more and mentored them each through a full competitive season. She has won many prestigious awards which you have neither heard of nor care about and is a proud graduate of Worcester Polytechnic Institute.
Twitter: @katylevinson

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Sunday 11:00-12:00

Generation Bitcoin
Tuxavant & Kryptina

A family friendly forum on Facebook for young adults to experience and share ideas and uses for Bitcoin – a digital currency.

Tuxavant is a 30 year veteran of IT having served a few of those years as a Cyber Security Intrusion Analyst for the NNSA. Kryptina is a 10 year old aspiring hacker who mined her first 50 Bitcoins in July of 2010 and won last year’s Defcon Kid’s NSA Crypto Challenge.

Workstations: Sunday 11:00-17:00

DEFCON Kids TV Production

Would you like to learn how to make a TV production? Help us educate kids all over the world about white-hat hacking. Join the DEFCON Kids TV Production team to shoot and edit onsite from DEFCON Kids 2. Do you have a hacking lesson you would like to teach kids? Let us know and we will video you, with permission from your parents of course.

Contests: Sunday 11:00-12:00

Hacker Board Games

Field Trips: Sunday 11:00-12:00

Lockpicking and Hardware Hacking Villages

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Sunday 12:00-13:00

GO EAT!

Workstations: Sunday 12:00-13:00

GO EAT!

Contests: Sunday 12:00-13:00

GO EAT!

Field Trips: Sunday 12:00-13:00

GO EAT!

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Sunday 13:00-14:00

Building the DEFCON Kids App
Thomas Leavy

This class will give you all the knowledge you need to build your own media apps for iOS/Apple mobile devices. We will build the DEFCON Kids app from start to finish. What cool features can we add? What can we build in the future?

Workstations: Sunday 13:00-17:00

3D Printing with My Makerbot
Joe Grand 13:00 – 17:00

Work with Joe Grand to design your own ideas for the Makerbot. The best ones will be printed onsite.

Contests: Sunday 13:00-17:00

3D Designs
13:00 – 17:00

Field Trips: Sunday 13:00-14:00

Contests Area and Vendor Area

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Sunday 14:00-15:00

Fight for Your Right…
Marcia Hoffman Kurt Opsahl

Workstations: Sunday 14:00-17:00

Building DEFCON Kids App
Thomas Leavy

Contests: Sunday 14:00-15:00

Generation Bitcoin

Field Trips: Sunday 14:00-15:00

Old School Hacking
Kevin Poulsen

Kevin Poulsen is the news editor of Wired.com and author of Kingpin: How One Hacker Took Over the Billion-Dollar Cyber Crime Underground (February 2011, Crown), the story of the white hat hacker Max Vision and his turn to the dark side of the for-profit carding underground.

Poulsen is a former hacker, whose best known hack involved penetrating telephone company computers in the early 1990s to win radio station phone-in contests. By taking over all the phone lines leading to Los Angeles radio stations, he was able to guarantee that he would be the proper-numbered caller to win, for example, $20,000 in cash, and a Porsche 944 S2 Cabriolet.

When the FBI started pursuing Poulsen, he went underground as a fugitive. He was featured on NBC’s Unsolved Mysteries, and was finally arrested in April 1991 after 18 months on the run. He pleaded guilty to computer fraud and served a little over 5 years in prison. At the time, it was the longest U.S. sentence ever given for hacking.

Following his release from prison Poulsen was briefly barred from using computers. Reformed, but still possessed of the curiosity that contributed to his hacking when he was younger, he became a journalist. His first magazine feature ran in WIRED in 1998, and covered computer programmers who were driven to survivalist tactics by fear of the looming Y2K bug.

When Poulsen’s court supervision expired, he joined a California-based web start-up called SecurityFocus as editorial director in 2000, and began reporting security and hacking news. Poulsen repeatedly broke stories of national importance that were picked up by the mainstream press: a computer intrusion at a U.S. hospital that, for the first time, breached patient medical records ; hackers “war driving” for open Wi-Fi networks; a computer virus crippling a safety system at a nuclear power plant in Ohio; a southern California hacker’s successful penetration of a Secret Service agent’s PDA, and the attendant theft of confidential agency files.

Poulsen left SecurityFocus in 2005 and joined Wired.com, where he now serves as a news editor. In a computer-assisted reporting effort in 2006, Poulsen wrote software that scoured MySpace for registered sex offenders, identifying hundreds. The story resulted in the arrest of an active pedophile, led to significant policy changes at MySpace and spawned federal legislation. In 2007, Poulsen’s reporting revealed that the FBI had been using a custom spyware program, called a CIPAV, to infect the computers of criminal suspects. In June 2010, Poulsen and a co-writer broke the news that the government had secretly arrested Army intelligence analyst Bradley Manning on suspicion of leaking hundreds of thousands of classified documents to the secret-spilling website WikiLeaks.

Poulsen is the founding editor of Wired’s Threat Level blog, which won the 2008 Knight-Batten Award for Innovation in Journalism, and the 2010 MIN award for best blog. In 2009 Poulsen was inducted into MIN’s Digital Hall of Fame for online journalism, and in 2010 he was among those honored as a “Top Cyber Security Journalist” in a peer-voted award by the SANS Institute. Poulsen’s encyclopedic knowledge of “I Love Lucy” trivia helped propel his team to victory in Hacker Jeopardy at DEF CON 8.

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Sunday 15:00-16:00
Mudge

Mudge, front man for the L0pht, founder of @stake, author of L0phtCrack, and a pioneer in vulnerability discovery and disclosure still calls himself a “hacker”. As a senior DoD official working as a Program Manager at DARPA (the Defense Advanced Research Project Agency) he is designing and funding cyber research programs for the U.S. Government. He is additionally working to build areas of aligned interest between the cyber security research community and the government so that both parties can better become resources to each other where appropriate and more articulately convey divergent beliefs and goals in others.

Workstations: Sunday 15:00-16:00

EFF Workstation
Maria Hoffman

Get the latest information about how the law is racing to catch up with technological change from staffers at the Electronic Frontier Foundation, the nation’s premiere digital civil liberties group fighting for freedom and privacy in the computer age. This session will include updates on current EFF issues such as surveillance online and fighting efforts to use intellectual property claims to shut down free speech and halt innovation, discussion of our technology project to protect privacy and speech online, updates on cases and legislation affecting security research, and much more. Half the session will be given over to question-and-answer, so it’s your chance to ask EFF questions about the law and technology issues that are important to you.

Contests: Sunday 15:00-16:00

EFF Contest

Field Trips: Sunday 15:00-16:00

Hacking the Goggle TV
Amir Zenofex Etemadieh

The GoogleTV platform is designed to bring an integrated web experience, utilizing the Chrome web browser and Android applications, to your television. GoogleTV is based on the Android operating system, which is mainly used in tablets and smart phones, but customized with security features not normally seen on most Android devices. The current version of the platform utilizes signatures to establish a “chain of trust” from bootloader to system applications.

This presentation will focus on the current GoogleTV devices, including X86 platform details, and the exhaustive security measures used by each device. The presentation will also include video demonstrations of previously found bugs and exploits for each GoogleTV device and includes specific details about how each bug works. Furthermore, we will include interesting experiences that the team has encountered along the way. Finally the talk will be capped off with the release of multiple unpublished GoogleTV exploits which will allow unsigned kernels across all x86 devices (Revue / Sony GoogleTV).

Amir “Zenofex” Etemadieh founded the GTVHacker group and has been working on the GTVHacker project from its initial start in November 2010. Amir has done independent security research in consumer electronics including the Logitech Revue, Ooma Telo, Samsung Galaxy S2, Boxee Box and services such as the 4G Clear Network finding both hardware and software flaws.
Twitter: @zenofex
http://blog.gtvhacker.com
http://www.gtvhacker.com

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Sunday 16:00-17:00

Hacking as Practice for 21st Century Life: Preparing the World for a New Species
Richard Thieme

Richard Thieme keynoted Def Con 4 for a few hundred hackers. His talk was called, “Hacking as Practice for 21st Century Life.” Nearly two decades later, he revisits that theme but with a twist. Since Def Con 4, he has become an author and world-hopping speaker and what he has learned in that time is where he starts. But where he goes is ahead, and in this talk, he offers a panoramic view of world(s) to come. Some of it may sound crazy, but wisdom and insanity are contextual; when the frame is the right shape for the picture, everything fits. Ten-year-olds attending Def Con kids in 2012 will probably live at least one hundred more years. They will choose inserts, attributes and enhancements to reinvent their own humanity many times along the road. To do that successfully they need rules of thumb, heuristics, principles, to guide specific decisions. Twentieth century human parents can not provide them in the depth and detail def con kids need. They have to form collaboratories infused with the real hacker ethic and bootstrap themselves into new and often wild possibilities. Properly understood, hacking is the essence of their task. Hacking is the means and opportunity for becoming more than merely /homo sapiens/-style human.

Thieme has been learning from def con kids for twenty years. In this spirited charge to the future, he shares a little of what they have taught him.

Workstations: Sunday 16:00-17:00

Cryptoglass Clues
NicO

Contests: Sunday 16:00-17:00

Cryptoglass Clues

Field Trips: Sunday 16:00-17:00

How to Hack all the transport network of a country
Alberto Garcia

Return to Schedule

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Sunday 17:00-18:00

GO EAT!

Workstations: Sunday 17:00-18:00

GO EAT!

Contests: Sunday 17:00-18:00

GO EAT!

Field Trips: Sunday 17:00-18:00

GO EAT!

XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

Classroom: Sunday 18:00-21:00

Awards Ceremony

Workstations: Sunday 18:00-21:00

Awards Ceremony

Contests: Sunday 18:00-21:00

Awards Ceremony

Field Trips: Sunday 18:00-21:00

Awards Ceremony

Return to Schedule

Share this site with your peeps: