sharing the load
play

SHARING THE LOAD: BUILDING A BETTER HW COMMUNITY HARDWEAR.IO - PowerPoint PPT Presentation

Jul 06, 2023 •300 likes •758 views

SHARING THE LOAD: BUILDING A BETTER HW COMMUNITY HARDWEAR.IO OPENING KEYNOTE KATE TEMKIN /@ktemkin THE STATE OF HARDWARE SECURITY KINDA SUCKS. Linux version 2.6.31 (root@dnixm-compiler1) # whoami root # HORIZON-NX SOFTWARE STACK

  1. SHARING THE LOAD: BUILDING A BETTER HW COMMUNITY HARDWEAR.IO OPENING KEYNOTE KATE TEMKIN /@ktemkin

  3. THE STATE OF HARDWARE SECURITY… KINDA SUCKS.

  4. Linux version 2.6.31 (root@dnixm-compiler1) # whoami root #

  7. HORIZON-NX SOFTWARE STACK • Hardened, custom security microkernel • Ultra-minimal custom TrustZone monitor • Tegra X1 SoC

  8. HORIZON-NX SOFTWARE STACK • Hardened, custom security microkernel • Ultra-minimal custom TrustZone monitor • Tegra X1 SoC

  9. Tegra X1 SoC oh, yeah, that’ll do it

  13. SO, HOW DID WE WIND UP HERE?

  14. SO, WHO REALLY ARE YOU? Katherine/Kate Temkin (@ktemkin): • founder, Insomnia Security • Nintendo Switch inspector • glitch witch & open-source-tool-builder • educational (reverse) engineer • occasional engineering streamer

  15. EECE CS

  16. EECE CS EE CE

  17. EECE CS EE CE COMPUTER SCI Felt things like microcontrollers were “too hardware”. COMPUTER ENG ELECTRICAL ENG Felt they’d never wind up holding a Felt they didn’t have to touch soldering iron. code…

  18. EECE CS EE CE ALL MAJORS Tended to think they were there to apply techniques created by ‘heroic inventors’.

  19. FAST FORWARD N YEARS

  21. HORIZON-NX SOFTWARE STACK • Extremely difficult to attack on the software front • But that software is built – and runs – atop hardware .

  23. BOOTROM LOCKOUT • Prevents any software running on the X1 from accessing bootROM code.

  25. BOOT CONFIGURATION ENTRIES • As documented in NVIDIA’s open-source cboot bootloader ( src/t210/nvboot_sdram_param_t210.h ). LIVE MEMORY PATCHING • This gives us a way to dump the bootROM on a non- production device (like an Jetson TX1 dev board).

  26. ctrl_transfer(STANDARD_REQUEST_DEVICE_TO_HOST_TO_ENDPOINT, GET_STATUS, 0, 0, 4096) USB tools at: https://github.com/ktemkin/Facedancer

  27. THE FATAL FLAW? • A minor mistake in some USB logic resulted in a memcpy of user-controlled length… • … and or long enough reads, user-controlled content!

  28. CVE-2018-6242 (“Fusée Gelée” / ”shofEL2”) • Easy to apply locally, easy to discover , and simple in mechanism . • Completely compromises all root-of-trust technology on relevant processors. • Wait, which processors?

  29. TEGRA PROCESSOR SERIES • Tegra APX: affected • Tegra 2: affected • Tegra 3: affected • Tegra 4: affected • Tegra K1: affected • Tegra X1: affected phew • Tegra X2: not affected

  30. CVE-2018-6242 (“Fusée Gelée” / ”shofEL2”) • Easy to apply locally, easy to discover , and simple in mechanism . • Completely compromises all root-of-trust technology on most Tegras . So: how the heck did this stick around for so long?

  31. OKAY: SO WHAT DO WE DO NOW?

  32. WELL, THEY DON’T CALL IT EASY-WARE. — @securelyfitz Show hardware hacking as approachable , rather than as deep wizardry .

  33. WELL, THEY DON’T CALL IT EASY-WARE. — @securelyfitz Fill in the artificial divide between hardware and software engineers.

  34. SOMETIMES, WE HAVE TO KILL OUR HEROES. Celebrate those who lift others up . Fewer rockstars , more teachers .

  35. OPEN A DOOR, TEAR DOWN A BARRIER. Produce more entry-level materials , and build more open, inexpensive tools .

  36. CHIPWHISPERER LITE GLITCHING & SIDE-CHANNEL BOARD https://newae.com/tools/chipwhisperer/ https://github.com/newaetech/chipwhisperer

  37. OPEN A DOOR, TEAR DOWN A BARRIER. Don’t let educational spaces develop additional barriers .

  38. DON’T TOLERATE RACISM / SEXISM / ABLEISM / *PHOBIA IN YOUR COMMUNITIES.

  39. OPEN A DOOR, TEAR DOWN A BARRIER. Don’t let educational spaces develop additional barriers .

  40. AND FOR GOODNESS SAKE, STOP HIDING MY STUFF. Vendors: hardware isn’t just an implementation detail .

  41. ONE MORE THING: SO, WHY BRING THIS UP NOW?

  43. QUESTIONS ? THANKS FOR LISTENING!

  44. IMAGE CREDITS • slide 6: nintendo switch icon by Sweet Farm from the Noun Project

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Exercises for 8.1.3 1. Give a parse tree with semantic records for the statement Z = 2 + 2. Show

Exercises for 8.1.3 1. Give a parse tree with semantic records for the statement Z = 2 + 2. Show

326 Chapter 8 Computer Languages TABLE 4. Semantic record label Address Code Expression translated T6 3 The variable Y. T7 Load 0,A The assignment statement Load 2,B Y = 3 + 2*X. Mult A,B,4 Load 4,A Load 1,B Add A,B,5 Load 5,A

427 views • 8 slides
Load Balancing Load Balancing Load balancing: distributing data and/or computations across

Load Balancing Load Balancing Load balancing: distributing data and/or computations across

Load Balancing Load Balancing Load balancing: distributing data and/or computations across multiple processes to maximize efficiency for a parallel program. Static load-balancing: the algorithm decides a priori how to divide the workload.

444 views • 27 slides
Load Balancing with nftables by Laura Garca (Zen Load Balancer Team) Netdev 1.1 Prototype of

Load Balancing with nftables by Laura Garca (Zen Load Balancer Team) Netdev 1.1 Prototype of

Load Balancing with nftables by Laura Garca (Zen Load Balancer Team) Netdev 1.1 Prototype of Load Balancing with nftables Goal: High Performance Load Balancer Load Balancing Solutions Load Balancing Solutions Linux Virtual Server

1.31k views • 40 slides
~ FURNACE LOAD COMPLEX ELEVATOR TRANSFER (LEAN ... UN- .....,_ UN- Lo Ar LOAD INSPECT

~ FURNACE LOAD COMPLEX ELEVATOR TRANSFER (LEAN ... UN- .....,_ UN- Lo Ar LOAD INSPECT

I~ ~ FURNACE LOAD COMPLEX ELEVATOR TRANSFER (LEAN ... UN- .....,_ UN- Lo Ar LOAD INSPECT LOAD L-OAD CASSETTE CASSETTE .. 1 IN Our I COMPLEXITY REQUIRES WORK STATION TO CONTROL j BRUCE SYSTEMS . 1 AUTOMATION . TARGETS SALES

1.09k views • 81 slides
Secret Sharing and Visual Cryptography Outline Secret Sharing Visual Secret Sharing

Secret Sharing and Visual Cryptography Outline Secret Sharing Visual Secret Sharing

Secret Sharing and Visual Cryptography Outline Secret Sharing Visual Secret Sharing Constructions Moir Cryptography Issues Secret Sharing Secret Sharing Threshold Secret Sharing (Shamir, Blakely 1979) Motivation

1.32k views • 62 slides
Epidemic Algorithm for Load Balancing Harshitha Menon, Laxmikant Kal e 15th April 1 / 25

Epidemic Algorithm for Load Balancing Harshitha Menon, Laxmikant Kal e 15th April 1 / 25

Load Balancing Epidemic Algorithm for Load Balancing Harshitha Menon, Laxmikant Kal e 15th April 1 / 25 Load Balancing Outline 1 Introduction Motivation Background Load Balancing Strategies 2 Distributed Load Balancing Information

476 views • 37 slides
Load Security Pilot Nina Day Mark Horton Why is load security an issue? On the road,

Load Security Pilot Nina Day Mark Horton Why is load security an issue? On the road,

Health and Safety Executive Load Security Pilot Nina Day Mark Horton Why is load security an issue? On the road, poorly-loaded and insecure loads can result in load shifts, vehicle rollover, or loss of control. In the workplace, loads

349 views • 17 slides
ESCRI-SA Knowledge Sharing Sharing Objectives and Components A presentation for the ESCRI-SA

ESCRI-SA Knowledge Sharing Sharing Objectives and Components A presentation for the ESCRI-SA

ESCRI-SA Knowledge Sharing Sharing Objectives and Components A presentation for the ESCRI-SA Knowledge Sharing Reference Group, Meeting 1 February 6, 2018 Knowledge Sharing Plan (KSP) The sharing of knowledge from ARENA funded projects

197 views • 6 slides
How well can HMM model load signals 3rd International Workshop on Non-Intrusive Load Monitoring,

How well can HMM model load signals 3rd International Workshop on Non-Intrusive Load Monitoring,

How well can HMM model load signals 3rd International Workshop on Non-Intrusive Load Monitoring, May 14th, Vancouver , Canada Lukas Mauch, Karim Said Barsim and Bin Yang Institute of Signal Processing and System Theory University of Stuttgart

339 views • 16 slides
Internal Load Balancing in 5 mins Deliver scalable and resilient internal-only services on GCP

Internal Load Balancing in 5 mins Deliver scalable and resilient internal-only services on GCP

Internal Load Balancing in 5 mins Deliver scalable and resilient internal-only services on GCP Google Cloud Load Balancing HTTP(S) Load SSL proxy Global Balancing Network TCP/UDP Internal TCP/UDP Regional Load Balancing Load Balancing

538 views • 18 slides
Long-term electric load Why Forecast Electric Load forecasting is necessary so that Decisions on

Long-term electric load Why Forecast Electric Load forecasting is necessary so that Decisions on

Presentation To City Council March, 2 2020 by J.R. Windsor Slide 1 Electric Load Forecasting Jim Windsor Retired Assistant Director of Utilities Slide 2 Long-term electric load Why Forecast Electric Load forecasting is necessary so that

238 views • 5 slides
Load Balancing in Ceph: Load Balancing With Pseudorandom Placement Esteban Molina-Estolano,

Load Balancing in Ceph: Load Balancing With Pseudorandom Placement Esteban Molina-Estolano,

Load Balancing in Ceph: Load Balancing With Pseudorandom Placement Esteban Molina-Estolano, Carlos Maltzahn, Scott Brandt University of California, Santa Cruz The Load Balancing Problem Pseudorandom placement for distributed storage

513 views • 12 slides
Load u p and look at some data P YTH ON FOR R U SE R S Daniel Chen Instr u ctor O v er v ie w

Load u p and look at some data P YTH ON FOR R U SE R S Daniel Chen Instr u ctor O v er v ie w

Load u p and look at some data P YTH ON FOR R U SE R S Daniel Chen Instr u ctor O v er v ie w 2013 NYC Flights Load and E x plore Manip u late and plot PYTHON FOR R USERS Importing data w ith list comprehensions List comprehension to load

394 views • 15 slides
load monitoring using load D ivision and C alibration Nipun Batra Haimonti Dutta CCL CLS

load monitoring using load D ivision and C alibration Nipun Batra Haimonti Dutta CCL CLS

INDiC: I mproved N on-Intrusive load monitoring using load D ivision and C alibration Nipun Batra Haimonti Dutta CCL CLS Amarjeet Singh 11/20/2013 Motivation Buildings contribute significantly to overall energy (electricity, gas, etc.)

735 views • 18 slides
Dynamic Load Balancing in Dynamic Load Balancing in Charm+ + Charm+ + Abhinav S Bhatele

Dynamic Load Balancing in Dynamic Load Balancing in Charm+ + Charm+ + Abhinav S Bhatele

Dynamic Load Balancing in Dynamic Load Balancing in Charm+ + Charm+ + Abhinav S Bhatele Parallel Programming Lab, UIUC Outline Outline Dynamic Load Balancing framework in Charm+ + Measurement Based Load Balancing Examples:

473 views • 23 slides
Nitrate concentration vs. load : Nitrate concentration vs. load : Management options that

Nitrate concentration vs. load : Nitrate concentration vs. load : Management options that

Nitrate concentration vs. load : Nitrate concentration vs. load : Management options that growers have to address the nitrate problem (primarily irrigation upgrades and fertilizer rate reduction) can reduce nitrate loading , but may not

339 views • 15 slides
Office Hours: COVID-19 Planning and Response May 29, 2020 Housekeeping A recording of

Office Hours: COVID-19 Planning and Response May 29, 2020 Housekeeping A recording of

Office Hours: COVID-19 Planning and Response May 29, 2020 Housekeeping A recording of todays session, along with the slide deck and a copy of the Chat and Q&A content will be posted to the HUD Exchange within 2-3 business days

486 views • 27 slides
Ge#ng A Restores energy Good Nights Improves mood

Ge#ng A Restores energy Good Nights Improves mood

15-03-01 Why is Sleep Important? Ge#ng A Restores energy Good Nights Improves mood Sleep Helps with concentra-on, memory and aLen-on

329 views • 11 slides
Commonsense for Generative Multi-Hop Question Answering Tasks Lisa Bauer* Yicheng Wang* Mohit

Commonsense for Generative Multi-Hop Question Answering Tasks Lisa Bauer* Yicheng Wang* Mohit

Commonsense for Generative Multi-Hop Question Answering Tasks Lisa Bauer* Yicheng Wang* Mohit Bansal 1 Outline Reading Comprehension Task (Lisa) Reading Comprehension Baseline (Yicheng) Commonsense Extraction (Lisa)

705 views • 69 slides
Sleepless in Seattle No Longer Joshua Reich*, Michel Goraczko, Aman Kansal, and Jitu Padhye

Sleepless in Seattle No Longer Joshua Reich*, Michel Goraczko, Aman Kansal, and Jitu Padhye

Sleepless in Seattle No Longer Joshua Reich*, Michel Goraczko, Aman Kansal, and Jitu Padhye Columbia University*, Microsoft Research 1 A Short Story: Sleepless in Seattle A desktop machine Workdays: often used, sometimes idle

996 views • 57 slides
Statistical Literacy: An Introduction 20-21 Sept 2019 V1 V1 Schield: 2019 NNN Palomar Workshop

Statistical Literacy: An Introduction 20-21 Sept 2019 V1 V1 Schield: 2019 NNN Palomar Workshop

Statistical Literacy: An Introduction 20-21 Sept 2019 V1 V1 Schield: 2019 NNN Palomar Workshop 1 Schield: 2019 NNN Palomar Workshop 2 Statistical Literacy: What are Statistics? An Introduction Statistics: Traditional): numerical

575 views • 56 slides
Attention Deficit/Hyperactivity Disorder: Medication Therapy Management Kristen Hillebrand,

Attention Deficit/Hyperactivity Disorder: Medication Therapy Management Kristen Hillebrand,

Attention Deficit/Hyperactivity Disorder: Medication Therapy Management Kristen Hillebrand, Pharm.D., BCPS Critical Care Pharmacy Specialist University of Cincinnati Medical Center Objectives Review the background and prevalence of

923 views • 29 slides
Part D Senior Savings Model Overview March 12, 2020 CMS Innovation Center 2 CMS Innovation

Part D Senior Savings Model Overview March 12, 2020 CMS Innovation Center 2 CMS Innovation

Part D Senior Savings Model Overview March 12, 2020 CMS Innovation Center 2 CMS Innovation Center T eam Amy Bassano Deputy Director, CMS Innovation Center Laura McWright, Deputy Director, Seamless Care Models Group Model Team Mark Atalla

395 views • 21 slides
Removing Hidden Confounding by Experimental Grounding Nathan Kallus Aahlad Manas Puli Uri

Removing Hidden Confounding by Experimental Grounding Nathan Kallus Aahlad Manas Puli Uri

NeurIPS 2018 Spotlight Presentation Removing Hidden Confounding by Experimental Grounding Nathan Kallus Aahlad Manas Puli Uri Shalit Cornell NYU Technion ( me) Poster: Today 10:45AM12:45PM @ Room 210 & 230 AB #2 Individual-level

362 views • 11 slides

More recommend