security


A few month ago a paper was released which described how to break the Crypto1 algorithm of the Mifare Classic cards. Now the implementation has been released. The files with the source code have all in all only 611 LOC. Not so much…

The Computer Security Devision of the National Institute of Standards and Technology (NIST) have released their Guide to Bluetooth Security. Just had a short look at it, but I think it worth to read it. Especially the part about the new security features of Bluetooth 2.1 with Secure Simple Pairing (SSP). There are also some other quite interesting publications around.

Schneier about the CSI (Cellular Seizure Investigation) stick.

A little device with the size of a lighter which you plug into a cellular phone and sucks out all it’s user data. Right now, it only supports Samsung and Motorola phones, but I think it should be no problem to support other cellular phone brands like Nokia oder Sony Ericsson.

This weekend the CBBQWE08 will take place in Dortmund, Germany, Old Europe. It’s organized by the CCC Dortmund there will be some lectures – I will give an overview of the new security features of Bluetooth Secure Simple Pairing – but the main focus of the event is the BBQ and having some fun. I hope it will be good weather.

Now this is not really wireless, but a least it has to do something with security in the air. 😉

According to The Inquirer, referencing an FAA (Federal Aviation Administration) report, it seems that the guys at Boeing don’t know basic network security concepts, like for example network segmentation. The network access for passengers seems to be in the same network like plane’s control, navigation, communication, etc. Seems that Boeing is going to fix this, but I can’t wait until first passengers start messing around with the final system.

Next Page »