visible assets inc
play

Visible Assets, Inc. High Security Government and Healthcare IEEE - PowerPoint PPT Presentation

Feb 08, 2023 •245 likes •963 views

Visible Assets, Inc. High Security Government and Healthcare IEEE P1902.1 (RuBee) Applications The Elimination of Eavesdropping, Tempest and Target Risk in Wireless Networks. March 2008 John K. Stevens Ph.D. CEO, Chairman Visible Assets,

  1. Visible Assets, Inc. High Security Government and Healthcare IEEE P1902.1 (RuBee) Applications The Elimination of Eavesdropping, Tempest and Target Risk in Wireless Networks. March 2008 John K. Stevens Ph.D. CEO, Chairman Visible Assets, Inc. 617-395-7601 john@rubee.com Visible ™ 1

  2. IEEE P1902.1 RuBee Licensees • Seiko/Epson Electronics – Full Chip Set 09 • Sig Sauer Inc. – Weapons Visibility Networks • US Air Force – Tool Visibility Networks • Trimble Inc. - Mobile Visibility (Vans, Trucks) • Visible Assets – Healthcare, Livestock, HV Assets • CERT, Abu Dhabi (UAE) - Healthcare • MidTown Technologies - Construction • 2 Fortune 100’s, 1 Fortune 500, many SmallCo’s Visible ™ 2

  3. The Problem Healthcare: + Patient Visibility Reduces Cost by $168/ Patient – - HIPAA Patient Privacy Requirement DoE: + Asset Visibility Essential - Evil Dark Spies With Unlimited Capital in Bushes - Visibility in facilities with highest security requirement in the world. DoD: + Weapons Visibility Pedigree Essential + Safety - The Enemy Looking for RF Targets Visible ™ 3

  4. The Problem Transceiver Active Base Station Passive 0.5 Watts Transponder The Wireless System is Not Working as Well as We Would Like Visible ™ 4

  5. The Problem So Let’s Increase The Base Station Power And Get Longer Range, More Reliable Performance 4-12 Watts But we also ……… � Create New Human Safety Issues � Create New Security Issues Visible ™ 5

  6. The Problem Our Focus Today is on Four Key Security Issues 1. Clone-ability 2. Eavesdropping (Tempest) (Target) 3. Authentication 4. Packet Security Visible ™ 6

  7. The SecurityProblem Clone-ability Detectable “1” trace It’s a forgery ! All forms of solid state memory leave, detectable traces for a 0 and a 1. These traces may be reverse engineered at low cost even months after removal of power. With access to modest cost equipment, this makes it easy for any attacker to clone or spoof any tag. Any RFID tag maybe reversed engineered for $5,000 to maximum of $50,000 from multiple sources in the US, Canada, EU, and Asia. Visible ™ 7

  8. The Security Problem Tempest, Eavesdropping Target Because RF voltage decays at a rate of 1/R (R is distance in meters) from the source, most RF signals may be, monitored (listened to) many miles away. Eavesdropping is the major security risk in any RF wireless network. The eavesdropper may require expensive specialized equipment, but as shown in next slides this not always true. RF signal decay 1/R (R is meters from source ) Note: Voltage across a coil from an RF source drops off 1/R. Power or Voltage x Current through a coil drops off 1/R 2 . All comparisons in this document are based on simple voltage measured across a coil. Visible ™ 8

  9. The Security Problem Tempest, Eavesdropping Target Again, because RF decays 1/R it may also can be used transmit unauthorized information a distance from a site. For example, an attacker could secretly design a microphone into a RFID base-station, and transmit everything said in the room without the knowledge of the owner. It would look like RFID data but actually represents major security risk. This is known as a The Tempest threat Signal decays 1/R (R is meters from source ) Visible ™ 9

  10. The Security Problem Eavesdropping Tempest Case Study – 20 mile radius 13.56 Mhz Poorly installed cable connector 21’ feet away 13.56 System Case Study: A conventional 13.56 MHz RFID system was accidently left “Power On” for two months (2 months). A poorly installed cable connector twenty one feet away picked up the signal and injected into the entire Comcast cable network. Visible ™ 10

  11. The Security Problem Case Study – 20 mile radius 13.56 Mhz 13.56 Mhz Signal 13.56 Mhz Source The injected 13.56 Mhz signal was detectable in the cable network for a 20 mile radius, disrupted pay- per-view and lowered internet bandwidth for two months. It took Comcast two months to track down the source. It is easy to eavesdrop and the tempest threat is real. Visible ™ 11

  12. “Compromising Emanations” Detection From Space An attacker with a budget (any government) , may monitor RF signals using line of sight satellites in outer space. Cell phone traffic (under 1 watt power), is routinely monitored around the world from strategically placed satellites. These are known in the government as “compromising emanations”. Visible ™ 12

  13. “Compromising Emanations” Source becomes Target The key outcome: an attacker can use the RF source as a target. This is known as the RF Target risk. Visible ™ 13

  14. The Security Problem Packet Security is and Always will be Weak. 2007: TJX or TJMax/ Marshalls 200 million identities 2007: RSA Conference 32 Evil Twin Attacks 2005: FBI cracked WEP 128 encryption under 3 minutes Free On-Line Programs: aircracker-rig, weplab, WEPCrack, airsnort, cracks WEP, WPA and WPA2. Visible ™ 14

  15. RuBee Technology Summary Visible ™ 15

  16. Maxwell's Equations Visible ™ 16

  17. RuBee Is a Transceiver Mode Active Radiating Protocol 131 KHz Battery + Crystal + Base Station Tag Tag 23 Transmit TX Receive RX Hello 23 RuBee is Magnetic (Inductive) Water Immune Steel Friendly Human Safe Visible ™ 17

  18. RuBee Low frequency means low power consumption. 20 year life has been achieved in the field Li coin size batteries Tag 23 Visible ™ 18

  19. RuBee Long Open Tag Range 25-35 Feet Volumetric Air Tag Range Base Station Tag 23 Receive RX Transmit TX Because RuBee is in Transceiver Mode Visible ™ 19

  20. RuBee Long Range and Undetectable E Power RuBee Wireless Does not Transmit using RF, “it has no detectable RF power” 10 -9 Watts of E Power Base Station 40 Nanowatts Tag 23 17 Feet (34 volume feet) Visible ™ 20

  21. RuBee RuBee is Low Power B (magnetic energy) RuBee wireless uses 1/5 to 1/30th the magnetic power found in many consumer exposed sites. Examples: airport metal detectors, and anti-theft protection systems in retail stores are all 5-10 times the power found in RuBee. 600 mGauss B power from Base Base Station 50 mGauss B power from Tag Tag 23 17 Feet (34 volume feet) Visible ™ 21

  22. RuBee Range and Low Power H 600 mGauss 3.0516772 best fit exp Signal 1/R 3 Base Station Tag 23 RuBee signals (voltage across a coil) drop off at 1/R 3 not 1/R with 17’ range. RuBee power actually drops off much faster at 1/R 6. Visible ™ 22

  23. RuBee Range and Power Water has little or no affect Signal 1/R 3 Base Station Tag 23 16.5 Feet (33 volume feet) Visible ™ 23

  24. RuBee Range and Power Still works in steel reduced range Base Station Signal 1/R 3 Tag 23 5 Feet (10 volume feet) Visible ™ 24

  25. RuBee Range and Power Still works on steel Range enhanced if tuned Base Station Tag 23 12.5 Feet (25 volume feet) Visible ™ 25

  26. RuBee Tag Range Limited by Constant Deep Space Noise 0.06 to 0.006 mGauss Deep space background noise Visible ™ 26 26

  27. 24 hours/day, 7 days/week Deep Space Noise Deep Space Local Transient Spikes (Lightening ) Visible ™ 27 27

  28. The Security Problem How has RuBee Addressed Each Item ? 1. Clone-ability 2. Eavesdropping (Tempest) (Target) 3. Authentication 4. Packet Security Visible ™ 28

  29. RuBee Tags Form Factors Rubee t-Tags iDots™ 2mm - 0.78mm thick Visible ™ 29

  30. RuBee Tags Form Factors Large t-Tags Small t-Tags For Heavy Steel Cell Phones Visible ™ 30

  31. The RuBee Tags Form Factors 2T Wallet Tag – 3.2” x 2.4” x 1mm thick on edge and 2mm on top. 2T cards work in your wallet. ID Tag – 3.2” x 2.4” x 2mm thick. Visible ™ 31

  32. RuBee Security The Data is in The Tag MCU 4 – 32 Bit 500 Byte – 7KBytes Tag IP 11.11.11.00 Tag Subnet 11.11.11.1 10K-25K bytes EE MAC: 77-AC-D8-9A-99-AC Object Name Hip 23678 Size 23mm x 18mm Birthdate 11/23/2004 Expirydate 11/2007 Serial Number 6778895 Lot Number 7878789905 Manf. Site Ireland Manufacture Medco CRC 34567 Visible ™ 32

  33. RuBee Security Data is Stored in SRAM Memory Several key items are stored in memory. The tags IP address, master ID, subnet (group) asset data. Visible ™ 33

  34. RuBee Security Safe SRAM Data Storage Bit swapping removes RuBee uses static memory (SRAM) and can therefore also use optional advance bit swap keys/data algorithms, to rewrite a secure word once every 10 minutes. This guarantees no one can reverse engineer a RuBee tag or clone a Rubee tags’ pedigree. Bit swapping is near impossible with EEPROM, due to long write times, high power considerations, and limited read/write life. Visible ™ 34

  35. RuBee Security Safe SRAM Data Storage “A RuBee Tag’s hardware can be reversed engineered (same as any electronic device), but critical tag content remains secure, minimizing clone-ability risk” Visible ™ 35

  36. RuBee Tags can use Real-Time AES Encryption Similar to TLS protocol. We have strong packet layer authentication security. Base Range 17 ft Interrogator Authentication AES Key Tag Base AES Encrypted Data Tag Range 17 ft Visible ™ 36

  37. RuBee Tags can use Real-Time AES Encryption Base Range 17 ft Hey it is Visa Calling Tag Base I only talk to Visa at 1 foot Tag Range 17 ft Visible ™ 37

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CS488 Visible-Surface Determination Luc R ENAMBOT 1 Visible-Surface Determination So far in

CS488 Visible-Surface Determination Luc R ENAMBOT 1 Visible-Surface Determination So far in

CS488 Visible-Surface Determination Luc R ENAMBOT 1 Visible-Surface Determination So far in the class we have dealt mostly with simple wireframe drawings of the models The main reason for this is so that we did not have to deal with

912 views • 43 slides
VISIBLE GOLD MINES VISIBLE GOLD MINES TSX-V: VGD | FSE: 3V4 CAUTIONARY STATEMENT ON FORWARD

VISIBLE GOLD MINES VISIBLE GOLD MINES TSX-V: VGD | FSE: 3V4 CAUTIONARY STATEMENT ON FORWARD

VISIBLE GOLD MINES VISIBLE GOLD MINES TSX-V: VGD | FSE: 3V4 CAUTIONARY STATEMENT ON FORWARD LOOKING INFORMATION This Visible Gold Mines corporate presentation may include certain statements that may be deemed forward looking

307 views • 28 slides
Community Assets 137 BCC assets currently let on concessionary terms Total annual value of

Community Assets 137 BCC assets currently let on concessionary terms Total annual value of

Community Assets 137 BCC assets currently let on concessionary terms Total annual value of the concession is 1.5M pa Most values are below 10K pa, but small number of high value assets distorts overall picture; six assets

151 views • 3 slides
The Stranded Assets Problem: How Big Is It? Sam Brookham PlanSmart NJ Why Stranded Assets? Why

The Stranded Assets Problem: How Big Is It? Sam Brookham PlanSmart NJ Why Stranded Assets? Why

The Stranded Assets Problem: How Big Is It? Sam Brookham PlanSmart NJ Why Stranded Assets? Why Stranded Assets? 1 out of 5 large retail/office assets are stranded in NJ 1 in 3 municipalities possess stranded assets 1 in 10 stranded

421 views • 18 slides
ASC 740 and Valuations of Deferred Tax Assets ASC 740 and Valuations of Deferred Tax Assets

ASC 740 and Valuations of Deferred Tax Assets ASC 740 and Valuations of Deferred Tax Assets

Presenting a live 110 minute teleconference with interactive Q&A ASC 740 and Valuations of Deferred Tax Assets ASC 740 and Valuations of Deferred Tax Assets Tackling Tough Valuation and Disclosure Challenges and Recovering Prior Allowances

903 views • 79 slides
Financial Assets and Liabilities, U.S. Nonfinancial Corporations 32 (dollars; natural log scale)

Financial Assets and Liabilities, U.S. Nonfinancial Corporations 32 (dollars; natural log scale)

Financial Assets, U.S. Nonfinancial Corporations as percentage of total (fixed + financial) assets 70% 65% 60% 55% 50% 45% 40% 35% 1945 1950 1955 1960 1965 1970 1975 1980 1985 1990 1995 2000 2005 2010 Financial Assets and

264 views • 4 slides
BALANCE SHEET (consolidated) 30.09.2019 31.12.2018 ASSETS Current assets Cash 455 344 94

BALANCE SHEET (consolidated) 30.09.2019 31.12.2018 ASSETS Current assets Cash 455 344 94

BALANCE SHEET (consolidated) 30.09.2019 31.12.2018 ASSETS Current assets Cash 455 344 94 998 Receivables and prepayments 4 666 429 9874193 TOTAL CURRENT ASSETS 5 121 773 9 969 191 Non-current assets Financial investments 919 510

527 views • 3 slides
Estate Planning for Digital Assets: A Web of Uncertainty Assets: A Web of Uncertainty presented

Estate Planning for Digital Assets: A Web of Uncertainty Assets: A Web of Uncertainty presented

Estate Planning for Digital Assets: A Web of Uncertainty Assets: A Web of Uncertainty presented by: p y J. Aaron Bennett Carruthers & Roth, P.A. Phone: 336-478-1105 E-mail: jab@crlaw.com 2 How prevalent are digital assets? Every

617 views • 12 slides
Ron Strauss Lynn Williford Jim Dean Office of the Provost Goals: Build a set of visible and

Ron Strauss Lynn Williford Jim Dean Office of the Provost Goals: Build a set of visible and

Ron Strauss Lynn Williford Jim Dean Office of the Provost Goals: Build a set of visible and accessible metrics to measure UNC Chapel Hills academic status Develop an on line dashboard visible to stakeholders Assess

479 views • 17 slides
UNLOCK YOUR ASSETS ASSETS Hassle Free paper work SERVICES TAX | SUCCESSION GOLD LOAN

UNLOCK YOUR ASSETS ASSETS Hassle Free paper work SERVICES TAX | SUCCESSION GOLD LOAN

FOR PASSIVE INCOME CREDIT MANAGEMENT Hedge your Assets and Create Passive Income Opportunities Unlock potential of your Assets with I&I! PRESENTATION UNLOCK YOUR ASSETS ASSETS Hassle Free paper work SERVICES TAX | SUCCESSION GOLD

291 views • 4 slides
Treat Your Building as a Patient: Environmental Reduction of Bacteria Through Continuous Visible

Treat Your Building as a Patient: Environmental Reduction of Bacteria Through Continuous Visible

Treat Your Building as a Patient: Environmental Reduction of Bacteria Through Continuous Visible Light Disinfection What is Indigo Clean TM ? An overhead light fixture which continuously and safely disinfects the environment using visible

1.17k views • 18 slides
Ch Chapter 16 t 16 Color Theory Physical Color Visible energy - small portion of the

Ch Chapter 16 t 16 Color Theory Physical Color Visible energy - small portion of the

Ch Chapter 16 t 16 Color Theory Physical Color Visible energy - small portion of the electro- magnetic spectrum Pure monochromatic colors are found at f wavelengths between 380nm (violet) and 780nm (red) 380 780 1 Visible Color

409 views • 10 slides
Transfer of Assets Transfer of Assets When an A/R, A/Rs spouse or someone acting on his/her

Transfer of Assets Transfer of Assets When an A/R, A/Rs spouse or someone acting on his/her

Transfer of Assets Transfer of Assets When an A/R, A/Rs spouse or someone acting on his/her behalf makes a voluntary transfer of a countable asset for less than fair market value Right of Rebuttal Agency presumption Client rebuttal

656 views • 42 slides
The Internet 192.168.178.1/24 DHCP 192.168.178.42/24 GW: 192.168.178.1 The

The Internet 192.168.178.1/24 DHCP 192.168.178.42/24 GW: 192.168.178.1 The

iNNOVO Cloud Can You Read this? Red Blue Magenta White Yellow Green -All colors visible? Can You Read this? -All circles round? Can You Read this? -All edges Can You Read this? visible? Can You Read this? Beamer Testpicture 16:9 1

1.3k views • 43 slides
3 Employees look after themselves Focus on safe behaviours and their colleagues Visible

3 Employees look after themselves Focus on safe behaviours and their colleagues Visible

H&S Manager to H&S Management The Bradley Curve Total Accidents in 08/ 09 Decent working environment Risk management systems in place Visible personal safety commitment Competent workforce Clear improvement plans

310 views • 12 slides
Searching for Dark Matter with Semi-Visible Jets at CMS Colin Fallon University of Rochester

Searching for Dark Matter with Semi-Visible Jets at CMS Colin Fallon University of Rochester

Searching for Dark Matter with Semi-Visible Jets at CMS Colin Fallon University of Rochester June 11, 2019 /Pictures/URlogo.png 1/17 Semi-Visible Jets Analysis Team Presented on behalf of the Semi-Visible Jets Analysis Team: University of

769 views • 17 slides
COURSE INTRODUCTION http://wireless.web.unc.edu Jasleen Kaur Fall 2017 1 Introductions q

COURSE INTRODUCTION http://wireless.web.unc.edu Jasleen Kaur Fall 2017 1 Introductions q

8/22/17 COMP 635: WIRELESS & MOBILE COMMUNICATIONS COURSE INTRODUCTION http://wireless.web.unc.edu Jasleen Kaur Fall 2017 1 Introductions q Names q BS/MS, First-year Grad, Senior Grad? q If youre new, where have you come from? q Your

394 views • 13 slides
1 Design guidelines Moving data from disk to cache Protect file system data Tokens cannot

1 Design guidelines Moving data from disk to cache Protect file system data Tokens cannot

University of Michigan Medical Center Major tertiary care center for Michigan FY 1999: 1.2M visits, $1B billable services Zero-Interaction Authentication Results in large data volume and costs 5-8 pieces of paper/patient visit all records in

649 views • 6 slides
Physical Attack Protection with Human-Secure Virtualization in Data Centers Jakub Szefer ,

Physical Attack Protection with Human-Secure Virtualization in Data Centers Jakub Szefer ,

Physical Attack Protection with Human-Secure Virtualization in Data Centers Jakub Szefer , Pramod Jamkhedkar, Yu-Yuan Chen and Ruby B. Lee Princeton University WORCS 2012 July 25, 2012 contact: szefer@princeton.edu Data Centers as

686 views • 36 slides
Security (and finale) Dan Ports, CSEP 552 Today Security: what if parts of your

Security (and finale) Dan Ports, CSEP 552 Today Security: what if parts of your

Security (and finale) Dan Ports, CSEP 552 Today Security: what if parts of your distributed system are malicious? BFT: state machine replication Bitcoin: peer-to-peer currency Course wrap-up Security Too broad a

730 views • 62 slides
Mobile Computing Mobile Computing A StarGazing Discussion Colin Higgs colin.higgs@ed.ac.uk

Mobile Computing Mobile Computing A StarGazing Discussion Colin Higgs colin.higgs@ed.ac.uk

Mobile Computing Mobile Computing A StarGazing Discussion Colin Higgs colin.higgs@ed.ac.uk Mobile Computing Colin Higgs Slide 1 Outline Outline Stargazing. Technologies and tasks. A technology led discussion. What the

499 views • 13 slides
Wireless Network Security and Mobile Commerce Dr. Gordon B. Agnew Electrical and Computer

Wireless Network Security and Mobile Commerce Dr. Gordon B. Agnew Electrical and Computer

Wireless Network Security and Mobile Commerce Dr. Gordon B. Agnew Electrical and Computer Engineering University of Waterloo gbagnew@engmail.uwaterloo.ca Overview Wireless LANS 1. WLAN Standards and Characteristics Overview of

899 views • 72 slides
Lost Opportunities : Policy and Computing Research Jon M. Peha www.ece.cmu.edu/~peha

Lost Opportunities : Policy and Computing Research Jon M. Peha www.ece.cmu.edu/~peha

1 Jon Peha Lost Opportunities : Policy and Computing Research Jon M. Peha www.ece.cmu.edu/~peha peha@cmu.edu Carnegie Mellon University Associate Director Center for Wireless and Broadband Networks Cyphermint Chief Technical Officer

565 views • 7 slides
The bang-bang funnel controller Stephan Trenn (joint work with Daniel Liberzon, UIUC)

The bang-bang funnel controller Stephan Trenn (joint work with Daniel Liberzon, UIUC)

The bang-bang funnel controller Stephan Trenn (joint work with Daniel Liberzon, UIUC) Technomathematics group, University of Kaiserslautern, Germany Arbeitstreffen SPP 1305 Event based control, M unchen 1. Oktober 2012 Introduction

718 views • 19 slides

More recommend