reverse engineering displaylink devices
play

Reverse-Engineering DisplayLink devices Florian floe Echtler, Chris - PowerPoint PPT Presentation

Mar 17, 2024 •317 likes •644 views

Introduction Cracking the Encryption The Graphics Protocol Finale Reverse-Engineering DisplayLink devices Florian floe Echtler, Chris platon Hodges December 28, 2009 Florian floe Echtler, Chris platon Hodges USB to

  1. Introduction Cracking the Encryption The Graphics Protocol Finale Reverse-Engineering DisplayLink devices Florian ’floe’ Echtler, Chris ’platon’ Hodges December 28, 2009 Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  2. Introduction Cracking the Encryption The Graphics Protocol Finale Outline Introduction 1 2 Cracking the Encryption 3 The Graphics Protocol 4 Finale Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  3. Introduction Cracking the Encryption The Graphics Protocol Finale DisplayLink Hardware Say hello to DisplayLink: features: pretty cheap, DVI output, magic compression ! So let’s look at the protocol: install driver on WinXP in VirtualBox, attach device to VM, start usbmon . Unfortunately.. Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  4. Introduction Cracking the Encryption The Graphics Protocol Finale Encryption ..it’s all encrypted! USB Dump: bulk transfers S Bo:4:122:1 -115 8192 = eb88b508 afd71fa5 704418d1 da3c920d ee5ba235 b429d465 2f80de90 0e35c9bf S Bo:4:122:1 -115 8192 = e56107e7 3fa5df64 397e1c1b a20d417b 8135b460 f77b80a0 fb90a1ba 86edbd27 S Bo:4:122:1 -115 2560 = 0edb3fa5 df64397e 1c129e0d 417b8135 b460fe5f 80a0fb90 a1ba86e4 99279909 S Bo:4:122:1 -115 16384 = 1ee7f414 85975c2e a39601a8 801936cb 613e0df0 14b01b04 48bdfd55 64f38e50 What now? Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  5. Introduction Cracking the Encryption The Graphics Protocol Finale DisplayLink internals 1 one DVI encoder (Chrontel CH7301) 2 one 128 MBit SDRAM (Hynix HY5DU281622ETP) 3 and one HUGE ASIC (DisplayLink DL-120) Without an electron microscope: tough luck. Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  6. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale Outline 1 Introduction 2 Cracking the Encryption Replay Attack Finding the Crypto Key The Crypto Algorithm The Graphics Protocol 3 Finale 4 Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  7. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale More of the same, please first idea (no-brainer): just dump the same data to the device again Python script + pyusb .. and voil´ a: a Windows desktop image! same log works on different devices → no hardware-dependent encryption Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  8. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale More of the same, please - Results several small blocks (10b - 4kB), two big blocks (150 - 300kB) blocks have to be sent in correct sequence device crashes otherwise → stream cipher? data [ n ] xor key [ n % keylength ] first big block clears framebuffer to black second big block contains desktop image Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  9. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale Init Sequence: EDID init sequence partly unencrypted (control transfers) e.g. EDID readout USB Dump: EDID readout S Ci:4:122:0 s c0 02 0000 00a1 0040 64 < C Ci:4:122:0 0 64 = 0000ffff ffffffff 0038a38e 66010101 012c0f01 0380261e 78ea1145 a45a4aa0 S Ci:4:122:0 s c0 02 3f00 00a1 0040 64 < C Ci:4:122:0 0 64 = 00701300 782d1100 001e0000 00fd0038 4b1f510e 000a2020 20202020 000000fc S Ci:4:122:0 s c0 02 7e00 00a1 0003 3 < C Ci:4:122:0 0 3 = 000053 Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  10. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale Init Sequence: random garbage 16 seemingly random bytes in init sequence change after each initialization but: repeat sometimes after VM restart smells like a crypto key USB Dump: suspicious data S Co:4:122:0 s 40 12 0000 0000 0010 16 = 2923be84 e16cd6ae 529049f1 f1bbe9eb C Co:4:122:0 0 16 > Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  11. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale Random Garbage continued Sample random sequences 29 23 be 84 e1 6c d6 ae 52 90 49 f1 f1 bb e9 eb f6 22 91 9d e1 8b 1f da b0 ca 99 02 b9 72 9d 49 b3 12 4d c8 43 bb 8b a6 1f 03 5a 7d 09 38 25 1f ... Chris’ idea: just Google for these.. Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  12. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale Random Garbage continued Chris’ idea: just Google for these much to our surprise: hey presto, hits! how is this possible? Google results are from many different contexts.. solution: this is simply output of the default Microsoft RNG! conclusion: this is the crypto key Reference: http://www.maushammer.com/systems/dakotadigital/lcd-usb.html#authentication Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  13. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale Finding the Crypto Algorithm we have the key - now what about the algorithm? basic cryptanalysis: compare cryptotext with itself Pseudocode unsigned data[len*2] int counter[n] = { 0, 0, 0, ..., 0 } for i = 1 to n for p = 0 to len if data[p] == data[p+i] counter[i]++ endfor endfor Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  14. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale Finding the Crypto Algorithm try with first big block of encrypted data unmistakable maximum: 4095 (and multiples) == 2 12 − 1 points to a certain class of pseudo-RNG: linear feedback shift register (LFSR) Results (for n in 1..8192) shift 8190: count 6333 shift 4095: count 3148 shift 7631: count 49 shift 7748: count 48 ... Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  15. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale Rebuilding the Crypto Algorithm: first steps assumptions so far: basic stream cipher key generator: maximal 12-bit LFSR now let’s find the keystream generator! it’s time for the disassembler (IDA Pro freeware edition) string analysis shows: driver uses libusb , statically linked (probably raising some interesting licensing questions) data submitted through usb bulk write try to work backwards from there Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  16. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale Rebuilding the Crypto Algorithm: results [insert looong weekend spent reading assembler and cursing at virtual functions] finally, try a much simpler approach: search for immediate value 0x0FFF == 4095! found: subroutine with three nested loops which generates 4095 bytes of data contains test against 0x0829 == 0000 1000 0010 1001 == x 12 + x 6 + x 4 + x 1 this is a generator polynom for a maximum 12-bit LFSR found the keystream generator! Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  17. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale Rebuilding the Crypto Algorithm: results keystream is always the same.. so where does the random 16-byte key fit in? LFSR generates keystream (offset → value), but also reverse-mapping table (value → offset) starting offset for keystream is taken from RMT index for RMT is created from key through CRC routine generator polynom 0x180F == 0001 1000 0000 1111 == x 12 + x 11 + x 3 + x 2 + x + 1 (standard CRC12) Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  18. Introduction Replay Attack Cracking the Encryption Finding the Crypto Key The Graphics Protocol The Crypto Algorithm Finale Rebuilding the Crypto Algorithm: results → CRC12 of key is starting value for LFSR → key with CRC12 of zero should disable encryption! doesn’t work with every one but: driver contains flag for debug mode (found by Chris) when enabled, one of several default keys with CRC12 == 0 is used Default Keys 47 3d 16 97 c6 fe 60 15 5e 88 1c a7 dc b7 6f f2 57 cd dc a7 1c 88 5e 15 60 fe c6 97 16 3d 47 f2 Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

  19. Introduction Command Overview Cracking the Encryption Intermission: DisplayLink’s Reaction The Graphics Protocol Huffman Compression Finale Outline 1 Introduction 2 Cracking the Encryption The Graphics Protocol 3 Command Overview Intermission: DisplayLink’s Reaction Huffman Compression Finale 4 Florian ’floe’ Echtler, Chris ’platon’ Hodges USB to DVI for Hackers

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Reverse Engineering USB Devices Drew Fisher December 28, 2011 whoami Drew Fisher (zarvox) I

Reverse Engineering USB Devices Drew Fisher December 28, 2011 whoami Drew Fisher (zarvox) I

Reverse Engineering USB Devices Drew Fisher December 28, 2011 whoami Drew Fisher (zarvox) I maintain libfreenect, a set of reverse-engineered Kinect drivers. http://github.com/OpenKinect/libfreenect What well cover Introduction

437 views • 26 slides
Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a

Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a

Reverse Engineering CS 166 Armen Boursalian 30 Apr 2018 Reverse Engineering Take a product, understand how it works Usually limited to certain aspects, not full systems Need to know a little bit about a lot of topics to gain

636 views • 11 slides
Reverse Engineering TCP/ IP Reverse Engineering TCP/ IP Steven Low EAS, Caltech Joint work

Reverse Engineering TCP/ IP Reverse Engineering TCP/ IP Steven Low EAS, Caltech Joint work

Reverse Engineering TCP/ IP Reverse Engineering TCP/ IP Steven Low EAS, Caltech Joint work with: Li J W Li, J. Wang, Pongsajapan, Tan, Tang, M. Wang P j T T M W Outline Background Layering as optimization decomposition L

932 views • 47 slides
Embedded Devices Security Firmware Reverse Engineering Jonas Zaddach Andrei Costin Andrei

Embedded Devices Security Firmware Reverse Engineering Jonas Zaddach Andrei Costin Andrei

Embedded Devices Security Firmware Reverse Engineering Jonas Zaddach Andrei Costin Andrei Costin/Jonas Zaddach www.firmware.re 1/78 Administratrivia Please fill-in the BH13US Feedback Form - Thanks! The views of the authors are their

1.19k views • 78 slides
Next-Generation Debuggers For Reverse Engineering For Reverse Engineering The ERESI team

Next-Generation Debuggers For Reverse Engineering For Reverse Engineering The ERESI team

Next-Generation Debuggers For Reverse Engineering For Reverse Engineering The ERESI team eresi@asgardlabs.org This presentation is about .. The Embedded ERESI debugger : e2dbg The Embedded ERESI tracer : etrace The ERESI reverse

849 views • 47 slides
CS 166: Information Security Reverse Engineering &amp; Digital Rights Management Prof. Tom

CS 166: Information Security Reverse Engineering &amp; Digital Rights Management Prof. Tom

CS 166: Information Security Reverse Engineering &amp; Digital Rights Management Prof. Tom Austin San Jos State University SRE Software Reverse Engineering Also known as Reverse Code Engineering (RCE) Or simply reversing

1.04k views • 80 slides
Embedded Devices Security Firmware Reverse Engineering Jonas Zaddach Andrei Costin August 11,

Embedded Devices Security Firmware Reverse Engineering Jonas Zaddach Andrei Costin August 11,

Embedded Devices Security Firmware Reverse Engineering Jonas Zaddach Andrei Costin August 11, 2013 Andrei Costin/Jonas Zaddach www.firmware.re 1/104 About Jonas Zaddach PhD. candidate on &quot;Development of novel binary analysis

1.25k views • 104 slides
Reverse Engineering MAC: A Non-Cooperative Game Model Jianwei Huang Information Engineering The

Reverse Engineering MAC: A Non-Cooperative Game Model Jianwei Huang Information Engineering The

Reverse Engineering MAC: A Non-Cooperative Game Model Jianwei Huang Information Engineering The Chinese University of Hong Kong Joint work with J.-W. Lee, A. Tang, M. Chiang and A. R. Canderbank J. Huang (CUHK) Reverse Engineering MAC Nov.

605 views • 38 slides
Reverse Engineering Closed, heterogeneous platforms and the defenders dilemma Looking back at

Reverse Engineering Closed, heterogeneous platforms and the defenders dilemma Looking back at

Reverse Engineering Closed, heterogeneous platforms and the defenders dilemma Looking back at the last 20 years of RE and looking ahead at the next few SSTIC 2018 -- Thomas Dullien (Halvar Flake) Progress in Reverse Engineering 2010

941 views • 64 slides
Cryptanalysis, Reverse-Engineering and Design of Symmetric Cryptographic Algorithms Lo Perrin

Cryptanalysis, Reverse-Engineering and Design of Symmetric Cryptographic Algorithms Lo Perrin

Cryptanalysis, Reverse-Engineering and Design of Symmetric Cryptographic Algorithms Lo Perrin SnT, University of Luxembourg April 25, 2017 PhD Defence Introduction On S-Box Reverse-Engineering On Lightweight Cryptography Conclusion

1.76k views • 137 slides
Reverse engineering basics @KirilsSolovjovs on twitter Mg.sc.comp. Kirils Solovjovs

Reverse engineering basics @KirilsSolovjovs on twitter Mg.sc.comp. Kirils Solovjovs

Reverse engineering basics @KirilsSolovjovs on twitter Mg.sc.comp. Kirils Solovjovs http://kirils.org for more Possible Security Reverse engineering? www.indiamart.com Contents Hardware architecture Processors and machine language

536 views • 25 slides
Understanding human speech recognition: Reverse-engineering the engineering solution using

Understanding human speech recognition: Reverse-engineering the engineering solution using

Cai Wingfield CSLB, Department of Psychology Workshop on Neurocomputation: From Brains to Machines University of Cambridge 25 November 2015 Understanding human speech recognition: Reverse-engineering the engineering solution using EMEG

196 views • 18 slides
Reverse Engineering CAPTCHAs Abram Hindle, Micheal W. Godfrey, Richard C. Holt Software

Reverse Engineering CAPTCHAs Abram Hindle, Micheal W. Godfrey, Richard C. Holt Software

Reverse Engineering CAPTCHAs WCRE 2008 Reverse Engineering CAPTCHAs Abram Hindle, Micheal W. Godfrey, Richard C. Holt Software Architecture Group David R. Cheriton School of Computer Science University of Waterloo Canada

726 views • 57 slides
Reverse engineering AT32UC3As JTAG Introduction Overview LSE Summer Week 2014 TAP

Reverse engineering AT32UC3As JTAG Introduction Overview LSE Summer Week 2014 TAP

Reverse engineering AT32UC3As JTAG Pierre Surply Reverse engineering AT32UC3As JTAG Introduction Overview LSE Summer Week 2014 TAP Controller Scan Chain Pierre Surply Boundary Scan UC3 JTAG EPITA 2016 Reverse engineering Jul

968 views • 72 slides
Reverse Engineering Dr. Vadim Zaytsev aka @grammarware UvA, MSc SE, 9 November 2015 Roadmap

Reverse Engineering Dr. Vadim Zaytsev aka @grammarware UvA, MSc SE, 9 November 2015 Roadmap

Reverse Engineering Dr. Vadim Zaytsev aka @grammarware UvA, MSc SE, 9 November 2015 Roadmap W44 Introduction V.Zaytsev W45 Metaprogramming J.Vinju W46 Reverse Engineering V.Zaytsev W47 Software Analytics M.Bruntink W48 Clone

751 views • 31 slides
Reverse Engineering DSP Code GameCube DSP Analyzing GCN DSP code Pierre Bourdon Conclusion

Reverse Engineering DSP Code GameCube DSP Analyzing GCN DSP code Pierre Bourdon Conclusion

Reverse Engineering DSP Code Pierre Bourdon Introduction DSP Reverse Engineering DSP Code GameCube DSP Analyzing GCN DSP code Pierre Bourdon Conclusion delroth@lse.epita.fr http://lse.epita.fr February 12, 2013 Context Reverse

856 views • 18 slides
Analysis of Security APIs (ASA-2) June 26, 2008 Minimizing Threats from Flawed Security APIs:

Analysis of Security APIs (ASA-2) June 26, 2008 Minimizing Threats from Flawed Security APIs:

Minimizing Threats from Flawed Security APIs Analysis of Security APIs (ASA-2) June 26, 2008 Minimizing Threats from Flawed Security APIs: A Banking PIN Example Mohammad Mannan Carleton University Mohammad Mannan June 26, 2008 1/21

543 views • 21 slides
Cracking Passwords With Time-memory Trade-offs Gildas Avoine Universit e catholique de

Cracking Passwords With Time-memory Trade-offs Gildas Avoine Universit e catholique de

Cracking Passwords With Time-memory Trade-offs Gildas Avoine Universit e catholique de Louvain, Belgium SUMMARY Motivations Hellman Tables Oechslin Tables Real Life Examples Fingerprint Tables Conclusion MOTIVATIONS Motivations

692 views • 32 slides
ELECTRIC VEHICLE READINESS ORDINANCE SALT LAKE CITY SUSTAINABILITY DEPARTMENT PRESENTATION AGENDA

ELECTRIC VEHICLE READINESS ORDINANCE SALT LAKE CITY SUSTAINABILITY DEPARTMENT PRESENTATION AGENDA

ELECTRIC VEHICLE READINESS ORDINANCE SALT LAKE CITY SUSTAINABILITY DEPARTMENT PRESENTATION AGENDA 01 BACKGROUND + CONTEXT An introduction to electric vehicle readiness and current SLC policy 02 LOCAL BENEFITS How EV readiness provides

522 views • 21 slides
Cracking Sendmail crackaddr Still a challenge for automated program analysis? Name Lastname &lt;

Cracking Sendmail crackaddr Still a challenge for automated program analysis? Name Lastname &lt;

Hackito Ergo Sum October 29th, 2015 Cracking Sendmail crackaddr Still a challenge for automated program analysis? Name Lastname &lt; name @ mail . org &gt; ()()()()()()()()() . . . ()()() Bogdan Mihaila Technical University of Munich, Germany

845 views • 82 slides
Cracking Drupal Security concepts and pitfalls Klaus Purer Peter Wolanin Security strategies

Cracking Drupal Security concepts and pitfalls Klaus Purer Peter Wolanin Security strategies

Cracking Drupal Security concepts and pitfalls Klaus Purer Peter Wolanin Security strategies Trust - who can do what Principle of least privilege - each site user should have only the permissions necessary to do their job Defense

623 views • 36 slides
SHOP SLIDE Photo 1. Looking northwest at cracking across the footpath at the end of the Hwy 2

SHOP SLIDE Photo 1. Looking northwest at cracking across the footpath at the end of the Hwy 2

SHOP SLIDE Photo 1. Looking northwest at cracking across the footpath at the end of the Hwy 2 EB to Hwy 684 SB off ramp at the 99 Ave. intersection. Drop in asphalt trail (background) has worsened since 2013 and is now at 300 mm. Photo

894 views • 17 slides
Running a FireSim Simulation: Password Cracking on a RISC-V SoC with SHA-3 Accelerators and Linux

Running a FireSim Simulation: Password Cracking on a RISC-V SoC with SHA-3 Accelerators and Linux

Running a FireSim Simulation: Password Cracking on a RISC-V SoC with SHA-3 Accelerators and Linux https://fires.im @firesimproject MICRO Tutorial 2019 Albert Ou Agenda Configure and launch a simulation runfarm Boot Linux interactively

770 views • 28 slides
CS 134: Operating Systems Security (continued) 1 / 23 Overview CS34 Overview 2012-12-10

CS 134: Operating Systems Security (continued) 1 / 23 Overview CS34 Overview 2012-12-10

CS34 2012-12-10 CS 134: Operating Systems Security (continued) CS 134: Operating Systems Security (continued) 1 / 23 Overview CS34 Overview 2012-12-10 Attacks Overview Defenses Attacks Defenses 2 / 23 Attacks Defense Rule #1

684 views • 29 slides

More recommend