Dave Bullock / eecue

photographer, director of engineering: crowdrise, photojournalist, hacker, nerd, geek, human

Blog

Black Hat 2007 : Day 1 : Assorted

Ok, I'm getting tired, I didn't get much sleep last night after driving from LA to Vegas. Here are some photos I shot at the last group of sessions:

Brad Hill

bitsec

bitsec

bitsec bitsec bitsec bitsec Eugene Tsyrklevich Vlad Tsyrklevich bitsec Brad Hill Brad Hill Brad Hill
Blog

Black Hat 2007 : Day 1 : Phil Zimmermann

In case you haven't noticed I'm liveblogging Black Hat 2007. I just watched the end of Phil Zimmermann's talk about his new VoIP encryption product / SDK: ZPhone. Z-Phone is an application that allows you to make secure, encrypted phone calls over the internet using standard VoIP protocols. As with Zimmerman's other well known project PGP, the source code and software is given away for free.

During the question and answer session he talked about his disdain for software patents, but added that he had recently applied for a patent for the ZPhone protocol, with an interesting twist. He is using the patent for good, and here is how: Part of the patent states that any time a key is copied and stored (which would allow a party to monitor / wiretap the call) a flag is set on that session that designates the wiretapping. This won't prevent interested parties from not using the flag, but it will prevent them from using the free license for ZPhone and thus force them to disclose that their product is wiretap friendly.

Here are some photos from the talk:

Phil Zimmermann

Phil Zimmermann

Phil Zimmermann

I just heard this random quote in the press pen: "Our experience is to stay off the wireless network at Defcon, we actually got hacked into a few years ago." I bring my own out of band connection with me to all security conventions and even with that I still do all my surfing / blogging / emailing through an ssh tunnel to a trusted server.

Blog

Black Hat 2007 : Day 1 : Dan Kaminsky

Dan Kaminsky just gave a talk about the nasty things that service providers are doing to your network traffic, how it relates to network neutrality and how to detect it. Basically nearly all router manufacturers are working on technology to do hostile things to your internet traffic, including slowing certain parts of it, monitoring it, modifying it in real time to do mean things like put their own ads in your web pages or worst of all, storing it and selling it.

Dan stated that this kind of trickery is going to either make web advertising obsolete, or force most if not all web traffic to be encrypted. If ISPs don't wake up and realize that what they're doing is wrong and bad the effect on the current internet ad market will be bad. I never thought of network neutrality as more than just shaping traffic or preferred routing, but Dan opened my eyes to the ugly things that vendors and ISPs are doing to our data.

Here are some photos from his talk:

Dan Kaminsky

Dan Kaminsky

His grandma is in the audience, and he was giving away some of her cookies to people who asked good questions:

Dan Kaminsky

Dan Kaminsky

Phil Zimmermann Phil Zimmermann Phil Zimmermann Phil Zimmermann Phil Zimmermann Phil Zimmermann Phil Zimmermann
Blog

Black Hat 2007 : Day 1 : Richard Clarke + Swag Bag

I'm attending the Black Hat Briefings in Las Vegas. I just caught the tail end of Richard Clarke's keynote speech. One thing he said in a final question that I thought was really cool and spot on is that the government should be monitoring terrorists and hacking in to their computers, but should not be monitoring everyday citizens. I wish more government (or former government) officials felt this way as well.

This Black Hat is the largest ever with over 4,000 attendants. They completely streamlined the registration process and it is operating much more smoothly than last year.

Here are some photos from his talk:

Richard Clarke

Richard Clarke

Richard Clarke

And here is what came in the swag bag:

Black Hat Swag Bag

Dan Kaminsky Dan Kaminsky's Grandma Dan Kaminsky Dan Kaminsky Dan Kaminsky Dan Kaminsky Dan Kaminsky Dan Kaminsky Black Hat Swag Bag Richard Clarke Richard Clarke Richard Clarke Richard Clarke Richard Clarke Richard Clarke Richard Clarke Richard Clarke Richard Clarke Richard Clarke