Anonymizing your hacktop A brief tour of unique identifiers - - PowerPoint PPT Presentation

anonymizing your hacktop
SMART_READER_LITE
LIVE PREVIEW

Anonymizing your hacktop A brief tour of unique identifiers - - PowerPoint PPT Presentation

Jan 24, 2024 160 likes •358 views

Anonymizing your hacktop A brief tour of unique identifiers accessible by software @ Unique Identifiers Who cares? What are we talking about? Where are they? Laptops & Desktops Peripherals Smartphones Why

slide-1
SLIDE 1

Anonymizing your hacktop

A brief tour of unique identifiers accessible by software

@

slide-2
SLIDE 2
  • Who cares?
  • What are we talking about?
  • Where are they?

○ Laptops & Desktops ○ Peripherals ○ Smartphones

  • Why change?
  • How do we read/change them?

Unique Identifiers

slide-3
SLIDE 3

Who cares?

  • Privacy advocates
  • Anti-theft engineers
  • Datacenter managers
  • Equipment RMA departments
  • Copy protection engineers
  • European Parliament
  • Even some end users
slide-4
SLIDE 4

I'tell outside

slide-5
SLIDE 5

What are we talking about?

Unique identifiers in this presentation are:

  • Small (~32 bytes or less)
  • Not digests or fingerprints
  • Persistent
  • Defined by manufacturer
slide-6
SLIDE 6

Where are they? (Laptops/Desktops)

  • Motherboard Serial
  • PCIe Device Serial Number
  • DIMM SPD serial number
  • Hard Disk Drive serial
  • Network hardware addresses
slide-7
SLIDE 7

Motherboard Serial

  • Rarely unique on consumer products
  • Defined in System Management BIOS spec
  • Frequently stored on SPI flash
slide-8
SLIDE 8

PCIe Device Serial Number

  • Optional Enhanced Capability Header
  • Not implemented in many PCIe devices
  • 64-bit extended unique identifier

○ 24-bit company id assigned by IEEE ○ 40-bit extension identifier assigned by manufacturer

  • Storage is implementation specific

○ Likely found on I²C/SPI EEPROM

slide-9
SLIDE 9

Memory module serial number

DDR3 DIMM SPD:

  • 16-bit manufacturer ID
  • 8-bit manufacture location
  • 16-bit year/week of manufacture
  • 32-bit serial number
  • I²C* EEPROM

*SMBus

slide-10
SLIDE 10

Hard Disk Drive serial number

ATA/ATAPI:

  • 20 ASCII characters serial number
  • 40 character model number

SCSI:

  • 8-byte Drive Serial Number
  • 16-byte Product Identification
slide-11
SLIDE 11

Network hardware addresses

MAC-48 / EUI-48 48-bit address:

  • Ethernet - 802.3*
  • WiFi - 802.11*
  • WiMax - 802.16*
  • most IEEE 802 networks

EUI-64 64-bit address:

  • FireWire
  • IPv6
  • ZigBee
slide-12
SLIDE 12

Where are they? (Peripherals)

  • Display EDID
  • Software protection dongles
  • RFID
slide-13
SLIDE 13

Display EDID

Extended Display Identification Data v1.3:

  • 16-bit manufacturer ID
  • 16-bit product ID
  • 16-bit year/week of manufacture
  • 32-bit serial number
slide-14
SLIDE 14

Software protection dongles

  • Tough to change, by design
  • Easy to read
slide-15
SLIDE 15

Where are they? (Smartphones)

  • International Mobile Subscriber Identity

○ Country Code, Carrier Code, Subscriber Number

  • GSM (T-Mobile, AT&T)

○ International Mobile Equipment Identity (handset) ○ Integrated Circuit Card IDentifier (SIM)

  • CDMA (Sprint, Verizon, Cricket)

○ Mobile Equipment IDentifier

  • Apple

○ Unique Device IDentifier

slide-16
SLIDE 16

Why change?

  • Well, you probably shouldn't
  • Popular belief says you can't
  • It will probably break stuff anyway
  • What good will it do you?
slide-17
SLIDE 17

How do we read them?

Linux:

  • lshw
  • dmidecode
  • hwinfo
  • lspci -v
  • lsusb -v

Windows:

  • Device Manager
  • EVEREST
  • AIDA64
slide-18
SLIDE 18

How do we change them?

  • Software
  • BusPirate
  • GoodFET
  • Arduino
  • Just about any devkit
slide-19
SLIDE 19

I would love to hear about your success stories ...or failures. kenny@romhat.net Who wants to have a workshop? Thanks!

Questions?