Chaos Computer Club - 23C3: Who can you trust? (mp3)

Schlossöffnung bei der Staatssicherheit der DDR (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Arthur Meister erläutert das operative Vorgehen und die speziellen Werkzeuge zur Schlossöffnung, die von der Staatssicherheit der DDR verwendet wurden. Von der opartiven Vorbereitung, über die Erstöffnung bis zur Herstellung von Nachschlüsslen werden speziell von der STASI entwicklete Werkzeuge und deren Einsatz gezeigt. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1759.en.html

OpenPCD / OpenPICC (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

This presentation will introduce and demonstrate OpenPCD and OpenPICC. The purpose of those projects is to develop free hardware designs and software for 13.56MHz RFID reader and transponder simulator. OpenPICC can be used to e.g. simulate ISO 14443 or ISO 15693 transponders, such as those being used in biometric passports and FIFA worldcup tickets. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1566.en.html

JSON RPC (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

JSON RPC is a recently fashionable buzzword in the AJAX context. This lecture explains its principles, specifically the same origin policy for cross site scripting and its relation to JSON RPC, and demonstrates the essential implementation details using the example of the geocoding service in the google maps API. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1568.en.html

CCC Jahresrückblick (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Die Sprecher des CCC stellen die Aktivitäten des und Geschehnisse im Chaos Computer Club im abgelaufenen Jahr vor. Hierunter fallen Berichte und Anekdoten von Veranstaltungen innerhalb des CCC als auch Vorträge und Konferenzen, an denen CCC-Vertreter teilgenommen haben. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1487.en.html

Überwachen und Strafen in Entenhausen (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Mit Michel Foucault in Entenhausen: Der Vortrag wird einen Blick auf die Überwachungsmethoden und die Strafpraxis in der Gumpenmetropole werfen. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1651.en.html

Sie haben das Recht zu schweigen (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Wer online lebt und arbeitet, tut dies unter den Augen der Strafverfolger. Der Vortrag schildert, wie Durchsuchungen, Vernehmungen und Ermittlungsverfahren ablaufen. Er erklärt, wie man sich gegenüber Polizei und Staatsanwaltschaft richtig verhält. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1346.en.html

Secure Network Server Programming on Unix (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

This talk describes a software system to securely execute predefined commands over an untrusted network, analyzes the potential attack vectors against this system and defines countermeasures to make it impossible for an attacker to use these attack vectors. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1446.en.html

Who can you trust? (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Opening event of the 23rd Chaos Communication Congress. After a welcome talk, the 23C3's keynote will be delivered. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1256.en.html

Überwachungsdruck - einige Experimente (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Wie wirkt Überwachung? Was ändert es am Verhalten von Passanten? Wir haben Experimente im öffentlichen Raum durchgeführt und präsentieren die Ergebnisse. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1679.en.html

The Rise and Fall of Open Source (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

This lecture outlines a possible future retrospective on OpenSource built from a simple continuation of current trends. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1523.en.html

Counter-Development (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Civil disobedience is a fundamental human right in all democracies, and it has to be accessible for everyone. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1520.en.html

Rootkits as Reversing Tools (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

This talk will cover two rootkits used as reverse engineering tools, one rootkit support library, one IDA plugin, and talk setup material. The talk itself will be given over VOIP and VNC running over the Tor network to demonstrate a proof of concept on anonymous public speech. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1688.en.html

Freie Software - Eine Chance für Afrika? (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

In einem Dokumentationsbericht über ein "Free Software Projekt" erzählt Alex Antener von seinen Reisen nach Malawi in Zentralafrika und berichtet über die Erfahrungen des kulturübergreifenden Engagements an der Universität in Malawi. Der Erfahrungsbericht zeigt Möglichkeiten, Einflüsse und mögliche Alternativlösungen zu den neoimperialistischen Machenschaften der Monopolisten in der dritten Welt. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1638.en.html

Krypta: DIY Serverhousing (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

Funkfeuer (0xFF), als freie Netzwerkinitiative in Wien eine Schwester von Freifunk, begann vor 2 Jahren damit ein "Community Serverhousing" aufzubauen. Wie beim Aufstellen von WLan Router, stoesst man dabei auf logistische, technische und soziale Aufgaben, die es zu loesen gilt um erfolgreich kostendeckend in Betrieb gehen zu koennen. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1593.en.html

Lightning Talks Day 1 (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Definition: Lightning Talks is a daily event. which consists in one hour of several short talks. Each talk is limited to five minutes. Goal: There is one slot for Lightning Talks each day of the congress. The goal is to present 10 talks within each slot. So this might be up to 40 interesting talks in total. See the Wiki page for current info. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1514.en.html

Homegrown Interactive Tables (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Technology to build low-cost touch-sensitive tables with high precision is publicly available since the beginning of 2006. The talk will give a practical introduction on building hard- and software of these tables using FTIR sensing pioneered by Jeff Han (see links), based on our experiences in making a table at the c-base. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1512.en.html

Nerds und Geeks zwischen Stereotyp und Subkultur (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

In dem Vortrag sollen die Ergebnisse einer kulturwissenschaftlichen Forschungsarbeit vorgestellt und diskutiert werden. Dabei wird der Begriff Nerd eher als Konstrukt, und weniger als gegeben betrachtet. Vorgestellt werden vor allem die Ergebnisse aus Interviews, teilnehmender Beobachtung und einer qualitativen Umfrage. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1616.en.html

Dying Giraffe Recordings: A non-evil recordlabel (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Todays music industry has created a system that is unfair for both the musicians and the music lover. Combined with an agressive prosecution of downloaders, this causes a very strong polarisation between the industry on one hand and music lovers on the other. Nobody wins. We at dying giraffe recordings are trying to break this impasse and create a system where musicans are rewarded for their work and talent, and where music lovers can enjoy music in a fair way. The key element in this is a breakaway from traditional copyright laws and the use of the creative commons license. This combined with new technologies in the field of internet, audio recording and compression gives us the potency to change te system. Thus building a fighting force of extraordinary magnitude we believe that we can beat the system. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1492.en.html

Go - Das Spiel für die Menschen (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Primitiv einfache Spielregeln aber komplexeste Zusammenhänge, bei denen Computerprogramme kläglich versagen während Menschen auf wundersame Weise (Denk-)Muster erkennen und diese zu genialen Strategien umzusetzen vermögen - das ist Go. Kann uns umgekehrt Go auch Stärken des menschlichen Intellekts aufzeigen? Es werden Parallelen zur Softwareentwicklung gezogen und den Entscheidungsprozessen, denen sich Entwickler dort ausgesetzt sehen. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1685.en.html

Inside VMware (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

Virtualization is rocket science. In cooperation with the host operating system, VMware takes over complete control of the machine hundreds of times a second, handles pagetables completely manually, and may chose to wire (make-non-pageable) as much memory as it chooses. This talk explains why it still works. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1592.en.html

Warum wir uns so gerne überwachen lassen… (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Das Phänomen steigender Überwachung und Kontrolle ist vielfach beschrieben und diskutiert wurden. Klagen werden allerorts laut und verklingen meist genauso schnell wieder. Innerhalb des Vortrags soll das Phänomen - jenseits einer bloßen Zustandsbeschreibung - soziologisch-philosophisch betrachtet und auf aktuelle internationale Forschungsergebnisse eingegangen werden. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1714.en.html

Podjournalism (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

Throughout the world, major media companies are cutting their budgets for investigative reporting. Most journalists will soon be freelancers, losing their freedom to investigate the more controversial or difficult topics. Yet at the same time, podcasting as a form of citizen journalism has risen, free of the constraints of organizations and editors. But without the funding that the tradional media enjoyed, how are podcasting journalists carrying out their work, and what does it mean for the media consumer? about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1257.en.html

How to squeeze more performance out of your wifi (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Most of today's long-range wireless mesh or point-to-point links suffer from a high overhead during channel access, frequent link failtures and the lack of taking a real advantage of the mesh network structure. This leads to a really bad performance for TCP-like traffic compared to UDP traffic over this links. We want to present your two different ideas for optimizing throughput and delay without breaking any wifi-standard (or at least not too much ;). about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1634.en.html

Funkerspuk (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

The introduction of radio in the USA and Germany is compared, the role amateurs played and how the respective authorities reacted to them. Questions arise as to how those reactions were models for the treatment of younger communications technologies, and the different approaches to uncontrolled communication will be sketched out. Is "everybody can listen in" a scary thing? about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1563.en.html

Jabber-Showcase (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Jabber wird von vielen nur als "Open-Source"-ICQ-Ersatz wahrgenommen. Dabei kann Jabber bzw. XMPP noch deutlich mehr, es existieren weit über 100 Protokollerweiterungen, und es werden täglich mehr. Der Vortrag stellt einige interessante Protokoll-Teile sowie Implementationen vor. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1667.en.html

TV-B-Gone (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

It is possible and desirable and fun to invent and create technologies that help our world. Have you ever wanted to shut off a TV that was annoying you in a public place? My extraordinarily popular invention, TV-B-Gone has made it fun to turn off TVs in restaurants, pubs, airports... about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1708.en.html

A Probabilistic Trust Model for GnuPG (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Ein Vertrauensnetz beschreibt einen typischen dezentralen PKI-Ansatz, welcher in der Verschlüsselungssoftware PGP sowie GnuPG umgesetzt worden ist. Es werden einige Nachteile und Schwächen des aktuellen PGP-Vertrauensmodells erläutert. Gleichermaßen wird ein neuer Ansatz sowohl für den Umgang mit Vertrauen, als auch für die Evaluation der Schlüssel-Authentizität präsentiert. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1607.en.html

Project Sputnik (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Project Sputnik is the real-time in-building location tracking system present at the 23C3. The Sputnik is a small active 2.4GHz RF Beacon, whose signal is picked up by one or multiple of the 20+ Sputnik base stations installed in the event venue (bcc). Attendees of the 23C3 are able to voluntarily participate in this system by purchasing an inexpensive Sputnik transponder which they can carry with them during the whole event. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1736.en.html

Automated Botnet Detection and Mitigation (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

Botnets are one of the most buzzy buzzwords out there today in the computer security world. The presented approach allows us to take reliably care of these, such that managers hopefully will not react on ``botnet'' in 2008 any more. This technology allows for automated catching of malware with the now somewhat known nepenthes daemon, automated analysis with CWSandbox and other sandboxes, automated botnet snooping with the botsnoopd daemon and finally (semi-)automated mitigation using various weapons. Hopefully, our autonomous approach will never turn against the human race and begin the final war... about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1342.en.html

Advanced Attacks Against PocketPC Phones (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Smart phones are the new favorite target of many attackers. Also most current attacks are harmless, since these mostly rely on user mistake or lack of better knowledge. Current attacks are mostly based on logic errors rather then code inject and often are only found by accident. The talk will show some real attacks against smart phones and the kind of vulnerability analysis which lead to their discovery. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1545.en.html

Powerpoint Karaoke (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Dieser Wettbewerb hat ein einfaches Prinzip: der Vortragende sieht die Folien seiner Präsentation bei Beginn seines Vortrages zum ersten Mal. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1683.en.html

Culture Jamming & Discordianism (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

Discordianism is somewhere between a joke and a religion, and at the same time manages to be something else entirely: social bricolage. This presentation will cover the roots of culture jamming in early art and theatrical movements, and then move through the history of prankster groups and on to Discordianism where the pranksters are prophets. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1698.en.html

Void the warranty! (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

We're surrounded by blackboxes containing digital technology nowadays. There are complex devices like cell phones as well as more simple ones that don't look very digital at all. This lecture shall motivate the listener to take more electronic things apart, examine the mode of operation and modify it. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1622.en.html

Building an Open Source PKI using OpenXPKI (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

OpenXPKI is an open source trust center software, written by the OpenXPKI Project, which aims to create an enterprise-scale PKI solution. You can see what OpenXPKI is all about, what you can do with it out-of-the-box and how you can hack it to your liking. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1596.en.html

Mobile phone call encryption (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

To encrypt all your mobile phones to protect it from overzealous eavesdroppers, you are currently limited to using special hardware such as the Cryptophone. The disadvantage of cryptophone is that it only works with other cryptophones. To work around this, we turn mobile phones from "voice" phones into VOIP phones. Using the SIP protocol for VOIP and IPsec/L2TP or Openvpn as our VPN, Leigh Honeywell and Paul Wouters connect their mobile phones fully encrypted to an Asterisk PBX server. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1495.en.html

Güter und Personen "tracken" - Lokalisierung im Pizzamann-Universum (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Dieser Vortrag gibt einen Überblick und geht auf Details von unterschiedlichen Tracking & Tracing-Technologien ein. Aufbau und Funktionsweise von solchen Verfolgungssystemen werden kategorisiert und aufgezeigt; zudem schafft der Vortrag einen Überblick darüber, wo solche Tracking-Systeme heute verwendet werden. Dabei werden insbesondere diverse Sicherheitsaspekte au detail behandelt. Nachdem aufgezeigt wurde, was alles stattfindet, werden die sozialen Konsequenzen solcher Systeme beleuchtet. Dabei wird sowohl auf kommerzielle Aspekte (Änderungen in der Marktmacht) als auch auf den Aspekt der Konsumentenverfolgung eingegangen, da Konsumenten üblicherweise zwar wissen sollten, was mit ihren Daten geschieht, das aber höchst selten der Fall ist. Der zweite Teil des Vortrags beschäftigt sich dann mit lokalisierenden Überwachungssystemen der Staaten, und welche Gefahren des Missbrauchs hierbei entstehen. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1663.en.html

Design and Implementation of an object-oriented, secure TCP/IP Stack (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

We present a domain-specific language (DSL) capable to describe ad-hoc defined protocols like TCP/IP. Additionally we developed other libraries, like a flow graph for packet processing and a layering mechanism for protocol stacking, to get a complete TCP/IP stack. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1656.en.html

On Free, and the Differences between Culture and Code (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1760.en.html

Detecting temperature through clock skew (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

By requesting timestamps from a computer, a remote adversary can find out the precise speed of its system clock. As each clock crystal is slightly different, and varies with temperature, this can act as a fingerprint of the computer and its location. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1513.en.html

Fuzzing in the corporate world (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

We will discuss fuzzing uses by software vendors and in the corporate world, for security auditing ("fuzzing before release") and third party testing ("fuzzing before purchase"). We will look at what contributed to this change in the use of fuzzing tools from home-grown hacking tools to commercial products, as well as how these organizations implement fuzzing into their development cycle. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1758.en.html

Security in the cardholder data processing?! (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

MasterCard and Visa have jointly released the PCI Data Security Standard which defines security requirements for the processing of card data in face-to-face and card-absent transactions. This presentation will deal with the most critical security gaps. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1457.en.html

sFlow (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

The explosion of internet traffic is leading to higher bandwidths and an increased need for high speed networks. To analyze and optimize such networks an efficient monitoring system is required. The sFlow standard describes a mechanism to capture traffic data in switched or routed networks. It uses a sampling technology to collect statistics from the device and is for this reason applicable to high speed connections (at gigabit speeds or higher). about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1644.en.html

Stealth malware - can good guys win? (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

The presentation will try to present current challenges in detecting advanced forms of stealth malware and explain why current detection approaches, as used in commercial A/V or IDS products, are insufficient. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1381.en.html

Lightning Talks Day 3 (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Black Ops 2006 Viz Edition (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Tools for visualizing the genome can be repurposed to visualize code. Visualized code can be used as a map for fuzzing efforts, change identification, and showing your mom what you do for a living. I'm going to demonstrate a series of tools that brings a new, half-automated, half-visually driven approach to data manipulation and destruction. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1713.en.html

Unlocking FileVault (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Analysis of the MacOS X storage encryption technology FileVault. Having fun by reverse-engineering private Frameworks under MacOS X. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1642.en.html

Biometrics in Science Fiction (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

It is a buzzword at the moment: biometrics. Everyone is talking about it and consumers are buying laptops with shiny finger print scanners. This talk will take a look at biometrics in science fiction films. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1600.en.html

Konrad Zuse - Der rechnende Raum (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Er gilt als der deutsche Pionier der frühen Rechentechnik: Konrad Zuse. Sein Leben, seine Rechenmaschinen und seine Firma Zuse KG werden in diesem live gesprochenen dokumentarischen Feature der Hörspielwerkstatt der Humboldt-Universität zu Berlin porträtiert. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1555.en.html

How to implement bignum arithmetic (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Assembly language skills are a bonus, but not strictly required. This lecture will explain how software like OpenSSL and GnuPG do their arithmetic on 1024 bit numbers. This is not about how RSA works, or about how AES works. This is just about how to add and multiply big numbers. I will explain the algorithms, show some code, and give some timings. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1658.en.html

Lightning Talks Day 4 (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

SIP Security (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

The presentation will give an overview on SIP security issues and show possible weaknesses in current implementations using SIP (Hardphones, Softphones, Gateways). Further, an outlook on the security of future, serverless SIP systems (P2P-SIP) will be given. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1459.en.html

Software Reliability in Aerospace (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

The challenge of designing reliable is managed different in every industry. This lecture will give an overview how safety critical and reliable software is designed and produced in the area of aerospace industry and why this could also be interesting for other applications (like web-design) about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1627.en.html

To live outside the law you gotta be honest (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

As a dealer of illegal substances in the late 60s, early 70s, I learned how to work without written contracts and without advertising. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1540.en.html

Bluetooth Hacking Revisited (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Hacking Bluetooth revisited - This talks goes into the depth of Bluetooth security, we'll show attacks on every possible bluetooth layer including Application Layer, lower layers. We'll break the drivers, the implementation, the applications and the _protocol itself_. At the end of this talk we hope we have achieved a Prardigm shift with regards on how you perceive Bluetooth Security in General. It's not only for toys. On the Operational side, we'll go into what risks BT poses for your company, why your policies fail and why your current Security Layers aren't enough. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1733.en.html

4+2+1 Jahre BigBrotherAwards Deutschland (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Vorgestellt wird das "Schwarzbuch Datenschutz", das in diesem Jahr entstanden ist: Sieben Jahre BigBrotherAwards Deutschland sind gelaufen. Was ist passiert und was bleibt übrig? Eine Rückschau auf die interessantesten Gewinner der ersten sechs Jahre, die im Buch "Schwarzbuch Datenschutz" zusammengefasst wurden, und auf die aktuellen Preisträger. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1561.en.html

Fnord Jahresrückblick (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

This talk will be held in German. Der Fnord-Jahresrückblick widmet sich der politischen und sozialen Entwicklung der Welt im letzten Jahr im Zeitraffer. Mainstream-Nachrichten finden dabei nur Beachtung, wenn sie besonders schöne Fnords enthalten. Strukturen, Verschwörungen und lustige neue Trends, die Euch sonst entgangen wären oder schon wieder vergessen sind. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1429.en.html

Console Hacking 2006 (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

"Next Generation" gaming consoles should not be limited to games, they have powerful hardware which we want to exploit for our needs. The talk gives a hardware overview of each of the 3 consoles, an overview of their security systems, as well as an update on hacking the Xbox 360, which has been on the market for about a year. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1606.en.html

"We are great together, the liberal society and its enemies!" (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

A talk medley from monochrom, a worldwide operating collective from Vienna dealing with technology, art, context hacking, and philosophy which was founded in 1993. They specialize in an unpeculiar mixture of proto-aesthetic fringe work, pop attitude, subcultural science, and political activism. Their mission is conducted everywhere, but first and foremost "in culture-archaeological digs into the seats (and pockets) of ideology and entertainment". about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1347.en.html

Pornography and Technology (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Pornography is an abstract phenomenon. It cannot exist without a medium to propagate it, and it has very little (if anything at all) to do with sex. The relationship between pornography, which is entirely fictional and sex, which is very real, very sweaty and mostly not a very aesthetic thing is something like the correlation of science-fiction literature and technological innovation: sometimes the ideas are bizarre, completely nuts and would never work without a Heisenberg Compensator - but sometimes some fragment lasts and is taken to the real world. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1422.en.html

Introduction to matrix programming: trance codes (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

The main communication streams in our realities happen besides the exchange of facts and arguments. "The matrix" is built on emotions! Trance coded communication patterns are a natural thing to exchange emotions between individuals. Using them is as normal, as not to be aware of it. But once you recognize the patterns, it is playtime! about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1619.en.html

23C3 Network Review (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

An Introduction into the structure and design of the congress network - featuring a description of hardware setup and focusing on the Backbone Network infrastructure and Wireless LAN. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1728.en.html

Tracking von Personen in Videoszenen (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Mittels der Computer-Vision-Library OpenCV wird gezeigt, welche Bildverarbeitungsschritte notwendig sind, um bewegte Objekte in Videoszenen zu erkennen und nachzuverfolgen. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1604.en.html

Digitale Bildforensik (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Mit der mehr und mehr digitalisierten Fototechnik ist es heute ohne Vorwissen nahezu jedem möglich, Bilder zu manipulieren. Bekanntgewordene Fälle in den Medien haben auch die Öffentlichkeit für dieses Thema sensibilisiert. Verfahren der digitalen Bildforensik bieten die Möglichkeit, die Authentizität eines Bildes auch ohne Zugriff auf das Original zu überprüfen. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1605.en.html

Vehicular Communication and VANETs (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Vehicle communication is a major research topic, covered by many national and international research projects. Applications promise to make our driving safer, more efficient, and more fun. The talk presents applications, technology, and also addresses security and privacy issues. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1608.en.html

The Story of The Hacker Foundation (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Talk will focus on the three year history of the Hacker Foundation in the USA including the legal, organizational and motivational hurdles. Ongoing project successes, failures and the reasons behind each will be covered. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1373.en.html

Gäste-Überwachung in Hotels durch staatliche und private Schnüffler (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

- Fragwürdige Methoden der Informationsbeschaffung - Rekonstruktion authentischer Fälle - Schutz von Geschäftsgeheimnnissen und Privatsphäre about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1505.en.html

Revenge of the Female Nerds (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Why do media and industry lag behind reality when it comes to estimating women's technical and scientific abilities? That women have these abilities is obvious. The question is how to change social expectations about them. What are women doing, and what can they do, to combat pervasive myths about their inferiority as engineers and scientists? about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1709.en.html

Lightning Talks Day 2 (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Geschichte der Automaten, Androiden und Homunculi (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Die Schachspieler und Musikautomaten des 18. Jahrhunderts sind bekannt: Weniger bekannt sind die Automaten der Antike und des Mittelalters. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1652.en.html

Security Nightmares 2007 (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

Security Nightmares - der jährliche Rückblick auf die IT-Sicherheit und der Security-Glaskugelblick für's nächste Jahr. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1682.en.html

Ethernet mit Mikrocontrollern (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Steuer- und Messaufgaben erledigt am besten ein Mikrocontroller. Wenn zeitgemäß auf dieses Device zugegriffen werden soll, kommt man um Ethernet eigentlich nicht herum. Aber ist ein Mikrocontroller mit nur 2-4Kb RAM in der Lage, TCP/IP zu sprechen? about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1554.en.html

Juristische Fragen um die Mitbenutzung fremder WLANs (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

Der Vortrag gibt einen Überblick über den rechtlichen Rahmen des WLAN-Surfens im Zivil- und Strafrecht mit aktueller Rechtsprechungsübersicht. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1416.en.html

Body hacking (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

What happens when we leave behind cosmetics and start to modify our bodies and minds to enhance who we are and what we can do? In this talk, journalist Quinn Norton explores how technology and flesh are coming together. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1629.en.html

Hacking the Electoral Law (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

How the Ministry of the Interior turns fundamental election principals into their opposite, without even asking the parliament. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1692.en.html

Router and Infrastructure Hacking (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

The security of backbone devices has been under increasing focus for the past few years, but infrastructure hacking techniques remain in their infancy and are still not even used in most penetration tests. This talk will discuss how to find and exploit vulnerabilities in infrastructure devices and their service dependencies, including vulnerability development as necessary. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1700.en.html

Chaos und Kritische Theorie (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

Kritische Theorie, wie sie sich vor allem an Adorno festmachen lässt, und Diskordianismus, der als Philosophie des Chaos zum Namensgeber des veranstaltenden Vereins wurde, gehören zu den am weistesten verbreiteten Elementen des 'social hacking'. Jedoch ist gerade in den letzten Jahren des Adbusting und des Hacktivism unübersehbar geworden, daß von beiden Denktraditionen in der Hauptsache stark vereinfachte und oft auch ideologisch abgeschlossene Formen Verwendung finden: Kritische Theorie wird zumeist auf ein unbestimmtes Unbehagen an der Kulturindustrie, der Globalisierung und den technologischen Entwickungen reduziert, während Diskordianismus zur Illustration oft bedenklicher Parteinahmen für irrationale politische Auffassungen dient. Im Vortrag wird der Versuch unternommen, die Kritische Theorie dem diskordischen Witz auszusetzen und den Diskordianismus der Ideologiekritik. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1452.en.html

Drones (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

I am watching you: drones for private use are getting real. A live presentation of actual devices in real action. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1402.en.html

MMORPGs (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

This talk will focus on World of Warcraft, the most popular MMORPG. There will be a brief overview of the game, guilds and guild management, tools and social issues. Other technologies and the possible future of MMORPGs and their impact will be discussed. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1738.en.html

Nintendo DS (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

The Nintendo DS is a mobile gaming console. It was first introduced in 2004. Our talk will give a short introduction of the hardware and available games. The main focus however lies on homebrew software, DSLinux, alternative firmware, copy protection, flash cards and online gaming protocols. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1552.en.html

Hacking fingerprint recognition systems (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Der Vortrag stellt Wege und Werkzeuge vor um aus unterschiedlichen Quellen Bilder für die Herstellung von Fingerabdruckattrappen zu gewinnen. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1578.en.html

CSRF, the Intranet and You (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

A detailed introduction to Cross Site Request Forgery. This talk presents the fundamental cause of this vulnerability class and examples of potential attack consequences. The second half of the talk is devoted to avoiding and countering CSRF: Implementing CSRF proof session handling, transparent retrofitting of legacy applications and methods for client side protection. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1560.en.html

Kritik an den Illuminaten zwischen 1787 und 2006 (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Bereits 1787 formulierte der Theologe Benedikt Stattler in seiner Schrift "Das Geheimniß der Bosheit des Stifters des Illuminatismus in Baiern zur Warnung der Unvorsichtigen hell aufgedeckt von einem seiner alten Kenner und Freunde" Kritik an dem von Adam Weishaupt gegründeten Illuminatenorden. Der CCC hat sich in vielen Aspekten in seiner Eigenschaft als discordische Vereinigung ebenfalls in kritischer Art und Weise mit Plänen und Aktionen der Illuminaten im Sinne der "New World Order" und Aktionen wie der "Total Information Awareness" auseinandergesetzt. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1678.en.html

An Introduction to Traffic Analysis (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

This talk will present an overview of traffic analysis techniques, and how they can be used to extract data from 'secure' systems. We will consider both state of the art attacks in the academic literature, but also practical attacks against fielded systems. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1478.en.html

Elektronische Reisedokumente (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Auch dieses Jahr gab es wieder eine Menge Wirbel um den ePass. Neue Studien wurden durchgeführt, Entscheidungen wurden getroffen und immer mehr Länder haben begonnen, elektronische Reisedokumente einzusetzen. Der Vortrag wird den neuesten Stand der Diskussion aufzeigen. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1655.en.html

Barrierefreies Web (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

In diesem Vortrag geht es um die Problematik des barrierefreien Webs. Der Vortragende ist selber blind und hat somit die notwendige Praxiserfahrung. Es wird nicht auf festgeschriebene Normen und Gesetze eingegangen, vielmehr werden Tips aus der Praxis gegeben und anhand von verschiedenen Internetseiten verdeutlicht. Es wird auf bekannte Internet-Angebote wie Bankingportale usw. zurückgegriffen. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1670.en.html

Kollaboratives Wissensmanagement im Bildungsbereich (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Im Mittelpunkt des Beitrags steht das wissenschaftliche Zitieren der Wikipedia im Kontext der Diskussion um stabile Versionen, Qualitätssicherung und die Sicherung von Expertenwissen; welcher Zusammenhang besteht zwischen wissenschaftlichem Arbeiten und dem Wissenskonsens der Wikipedia? Erlaubt die Wikipedia die Bereitstellung von wissenschaftlich verwertbaren Zitaten und wie kann sie wissenschaftlich zitiert werden? about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1543.en.html

Know Your Citizens (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

The balance between effective criminal investigations and the protection of human rights is currently intensively discussed. A number of approaches demonstrate a tendency that state authorities gain for more access to sensitive data. But do these information really help to prevent crimes (e.g. terrorist attacks) and how save are these information in the hands of state authorities'? about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1537.en.html

Data Retention Update (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

The EU adopted a directive on the retention of data regarding the communications, movements and use of media of all 365 mio. EU citizens. The struggle is now continuing on the national levels, and privacy groups are preparing legal, political and technical challenges to this surveillance scheme. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1609.en.html

Analysis of a strong Random Number Generator (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

This paper (and slides) will descibe the inner workings of the the random number generator (/dev/{u}random) of Linux. Additionally some possible security flaws are shown (entropy overestimation, zero'izing the pool, etc.) about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1420.en.html

The gift of sharing (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

This paper will dive into this complex questionmark through a comparison between primitive hunter-gatherer societies and the everyday life-world of FOSS. The discussion will focus on the thesis that FOSS practice is based on social sharing and not on processes of exchange. This will entail a negation of the paradigm of economic logic and instead pull a quest for valuable relationships to the forefront of the FOSS sociality. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1502.en.html

Unusual bugs (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

In this presentation I'll present a series of unusual security bugs. Things that I've ran into at some point and went "There's gotta be some security consequence here". None of these are really a secret, and most of them are even documented somewhere. But apparently most people don't seem to know about them. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1456.en.html

Closing Ceremony (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1727.en.html

Ego Striptease - Ich zeig dir, wer du bist (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

Als Orkut aufkam, gab es zwei Sorten Menschen: die einen wetteiferten um die meisten Invitations, die anderen schüttelten den Kopf ob der Bereitwilligkeit, eine Datenkrake zu füttern. Heute manifestiert sich das Phänomen als flickr, del.icio.us, upcoming.org und blog - kurz gesagt "soziale Web 2.0 Anwendungen". Wieso lassen wir uns alle so bereitwillig taggen, kommentieren und outen? about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1494.en.html

Hackerspaces (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Hackerspaces are community-run places where you can meet, work on projects, organize events and workshops, or just generally hang out with other hackers. More and more of those open spaces are being created all the time. Some of them are more than a decade old already, some just started out recently, and yet others might become a reality soon. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1500.en.html

Fudging with Firmware (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

This lecture aims at providing ideas and practical techniques about the reverse-engineering process of equipment firmware images. It touches upon data encoding, compression, bootstraps, deciphering, disassembly, and emulation. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1610.en.html

In the Absence of Trust (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

In 1996, The Surveillance Camera Players started manifesting their opposition to the culture of surveillance by performing silent, specially adapted plays directly in front of CCTV cameras. 10 years after, their work is more relevant than ever. This talk will take you through artists' strategies to raise the debate on privacy, the society of the spectacle, the aftermath of September 11th, face recognition software, panopticism, electronic tagging, etc. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1740.en.html

The Grim Meathook Future (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Most modern futurism describes technology-driven futures: the nanotech future, the biotech future, etc. But there's also another future, just as or more possible: the future where technology is marginalized by social and cultural forces (such as the rise of fundamentalism as a political force in the US and Middle East). This lecture talks about how technology and design can help humanity avoid a grim future. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1461.en.html

How To Design A Decent User Interface (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Prepare to be brainwashed! This talk wants you to switch from the developer's perspective to that of an average user to design better UIs. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1433.en.html

Transparency and Privacy (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Microsoft has proposed architectural principles ("7 Laws of Identity") to support convergence towards an inter-operable, secure, and privacy-enhancing plurality of identity systems - an "Identity Metasystem". This new concept presupposes that a single monolithic identity system for the Internet is neither practicable nor desirable. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1724.en.html

Das neue gesetzliche Verbot des Hackings (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Entwickler, Administratoren und gewisse Internet-Nutzer treffen die Auswirkungen eines aktuellen Gesetzesvorhabens auf dem kaltem Fuß. Eine ganze Klasse von Systemwerkzeugen, die "Hackertools", soll verboten werden. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1680.en.html

Trust Your Eyes (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Vorgestellt werden theoretische Grundlagen der Visualisierung und der menschlichen Wahrnehmung sowie einige Visualisierungstechniken. Im Anschluss wird exemplarisch dargestellt, wie leicht man durch geschickt gewählte Visualisierungen verfälschte Eindrücke suggerieren kann. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1418.en.html

DVB-T - From Pixeldata to COFDM Transmission (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

As DVB-T is the key technology for terrestrial broadcasting for the next decades, this lecture tries to explain how it works: It covers the way of raw pixel data over MPEG2 video and audio encoding and via multiplexing of several streams and programs to the actual generation of the COFDM signal used for transmission. As the team has built a DVB-T transmitter, we will give a in-depth insight in how things are really done - including a demonstration of the transmitter. -> For that we plan to stream the content of the 23C3 lectures locally on Alexanderplatz using TV channel 22. Don't forget to bring your DVB-T stick. For more information look at the DVB-T project description. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1646.en.html

We don't trust voting computers (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

This talk covers the dutch campaign against unverifiable voting on computers, which is part of a growing movement world-wide to reject these computers. Successes in Ireland and (surprise) the US seem to indicate that media, law-makers and the general public are beginning to wake up. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1423.en.html

DRM comes to European digital TV (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

European digital television standards (both free-to-air broadcast and pay TV) developed by the DVB project are exemplary for including no digital rights management. But now DVB is rushing to change that and impose new restrictions on receiving equipment. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1699.en.html

A not so smart card (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

This lecture will introduce you to the the Postcard, a widely used debit card issued by FostFinance in Switzerland. As other debit cards like the "EC" card it is used for shopping payments at POS terminals or to draw money from ATMs in Switzerland and many other countries. It's widely used by its 2'000'000 users, producing a total transaction volume of around 8'000'000'000 Swiss Francs a year. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1449.en.html

Subverting AJAX (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Ajax and the new dynamic extensions leverage new threats that lead to innovative attack scenarios against web applications. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1602.en.html

Hacker Jeopardy (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

The well known quizshow format, but of course covering topics not usually seen on television about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1567.en.html

Open Source Machine Translation (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Today two revolutions are pushing the machine translation field forward: the open source movement, and the broader application of statistical methods. This talk is at the intersection of the two: centering around the applications and contributions to be made to Moses, a state of the art open source toolkit for statistical machine translation developed by researchers from MIT, Edinburgh, Cornell, and Aachen. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1701.en.html

Faster PwninG Assured (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

This talk will go in depth into methods for breaking crypto faster using FPGAs. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1735.en.html

Privacy, Identity, and Anonymity in Web 2.0 (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

The presentation will show the hidden privacy implications of some web2.0 and identity2.0 services, standards and applications and discuss the underlying trend here. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1611.en.html

Tor and China (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Websites like Wikipedia and Blogspot are increasingly being blocked by government-level firewalls around the world. Although many people use the Tor anonymity network to get around this censorship, the current Tor network is not designed to withstand a government-level censor. In this talk we describe a design for providing access to the Tor network that is harder to block. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1444.en.html

The worst part of censorship is XXXXX (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

This talk analyzes large-scale, countrywide Internet content filtering from a technical point of view and investigates the current situation in the People’s Republic of China. Additionally it discusses techniques to effectively defeat censorship and based on various tests conducted by the author, comments on their applicability in the Chinese part of the Internet. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1473.en.html

A 10GE monitoring system (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Capturing network packets is a valuable technique for troubleshooting network problems. Capturing at network speeds less, or up to one gigabit per second is feasible with a fast general purpose computer hardware. But that hardware is to slow for Ten gigabit per second ethernet (10GE). Hence, special hardware is required. This topic describes the modification of a commercially available 10GE networks security system, into a network analyser. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1640.en.html

A Natural Language Database Interface using Fuzzy Semantics (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

We give a thorough exposition of our natural language database interface that produces result sets ranked according to the degree to which database records fulfill our intuitions about vague expressions in natural language such as `a small rainy city near San Francisco'. We present our toolset supporting the rapid prototyping of such database interfaces by means of a meta-level description of a data model and a lexicon for a query language. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1454.en.html

Java wird Groovy (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

Groovy ist eine neue, dynamische Sprache für die Java-VM. Sie greift Konzepte von Smalltalk, Python und Ruby auf und integriert Sie nach Java. Die Integration ist leichtgängig, da die Syntax hinreichend ähnlich zu Java ist und reibungslos bestehende Java-Bibliotheken genutzt werden können. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1419.en.html

RFID hacking (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

This talk will elaborate on the security and social aspects of RFID technology. We will talk about our projects of the past year, including the FIFA World Cup tickets. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1576.en.html

Information Operations (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

The use of information technology has brought a lot of new functionality and efficiency with it. But due to the fact that enterprises are totally dependant on IT, they are vulnerable to theft or destruction of information assets, a process described as information operations. This is the presentation of a one-year Postgraduate Infosec Research Project conducted in New Zealand. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1439.en.html

Hacking a Country: FOSS in India (23c3)

Wed, 27 Dec 2006 01:00:00 +0100

This talk is about the growth of Free Software in India. It includes an overview of how Free Software has spread not only within the industry but also with in the Government and Education. Includes examples of Indian innovation based on Free Software, including the Simputer. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1603.en.html

Automated Exploit Detection in Binaries (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

In this talk, we will introduce the audience to the concepts involved in static analysis, and different implementations of those concepts with advantages and disadvantages of each. We will show how the open source tool bugreport (http://bugreport.sf.net) implements these concepts and will demonstrate the tool finding exploitable bugs in real-world binaries. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1694.en.html

Tap the Electronic Frontier Foundation (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

EFF staffers answer your questions about American wiretapping, the latest moves of the *AA, the spread of the DMCA through free trade agreements, what's up at WIPO, and other dispatches from the US and elsewhere. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1710.en.html

Software Protection and the TPM (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

Ever since Apple announced the x86 version of Mac OS X, people have been obsessed with running the operating system on non-Apple hardware. The media has given this topic more than its fair share of coverage, with nary a week going by without some discussion of the tussle between Apple and system attackers attempting to "crack" Mac OS X. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1721.en.html

Virtuelle Sicherheit (23c3)

Sat, 30 Dec 2006 01:00:00 +0100

Xen bietet aufregende neue Sicherheitsfunktionen: Mandatory Access Control und virtuelle TPMs. Der Vortrag stellt diese Funktionen vor, berichtet von ersten Erfahrungen und zeigt ihre Grenzen auf. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1493.en.html

A Hacker's Toolkit for RFID Emulation and Jamming (23c3)

Thu, 28 Dec 2006 01:00:00 +0100

Radio Frequency Identification (RFID) tags are remotely-powered data carriers, that are often touted as a "computer of the future", bringing intelligence to our homes and offices, optimizing our supply chains, and keeping a watchful eye on our pets, livestock, and kids. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1597.en.html

Mining Search Queries (23c3)

Fri, 29 Dec 2006 01:00:00 +0100

AOL recently published over 34M weakly anonymized search queries from their users by intension. This lecture gives an overview on the results of an extensive statistical analysis and data mining procedure on this dataset. Thereby, a methodology for frequency analysis, search trend mining, topic detection and even user profiling and identification will be presented. about this event: http://events.ccc.de/congress/2006/Fahrplan/events/1498.en.html