Chaos Computer Club - 32C3: gated communities (high quality mp4)

State of the Internat AS201701 - Freifunk Rheinland e.V. Backbone (32c3)

Tue, 29 Dec 2015 20:00:00 +0100

The Backbone team from AS201701 (Freifunk Rheinland e.V.) gives an update about peering, future planning for 2016 and a summary about things going on in 2015.

about this event:

Buffering sucks! (32c3)

Mon, 28 Dec 2015 13:15:00 +0100

Buffering sucks! Why we see regular buffering when watching online video. What internet service providers could do to reduce buffering and why big players refuse to act. An attempt of calculating the economic cost of buffering.

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7530.html

How Open Source Software, second hand laptops and hackers helped stop Ebola (and stopped an apocalypse). (32c3)

Wed, 30 Dec 2015 16:00:00 +0100

In the dark days of October 2014 an unprecedented Ebola epidemic wrecked havoc across Sierra Leone, Liberia and Guinea. In Sierra Leone, the health system was only weeks away from total collapse due to an inability to manage or pay health workers across the country and the world braced for the unchecked spread of the disease throughout west Africa. In the face of apocalyptic scenario, a company made up of local hackers took on the unprecedented challenge of building, implementing and running a huge Management Information System and Mobile payments system to keep the health system from collapsing. This talk will show how this was achieved with Open Source Software, second hand laptops, hacked voter registration machines, second hand smartphones and some very smart and determined young people used to achieving great things with none of the resources we take for granted. We salute them.

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7561.html

32C3 Infrastructure Review (32c3)

Wed, 30 Dec 2015 18:00:00 +0100

The traditional review event with presentations from various teams at congress. Learn how the 32C3 got Internet, video streaming, power and maybe more!

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7555.html

How to contribute to make open hardware happen (32c3)

Wed, 30 Dec 2015 14:00:00 +0100

What to do if you are neither a hardware- nor a software expert and want to contribute in effords of openess neverseless? A short overview about what I have done so far, shown on 3 exaples: The Mooltipass, a offline password save. The Pandora/Pyra, a mini handheld, full Linux PC and its successor. Senoko, the Novena battery board. From "just" crowdfunding to producing, why it's worth to go through all the ups and downs and encourage others to do the same.

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7369.html

DDoS mitigation EPIC FAIL collection (32c3)

Wed, 30 Dec 2015 14:00:00 +0100

For the past 3 years I have been delivering a custom-tailored DDoS attacks for organizations that wanted to test out their DDoS defense systems.

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7523.html

Lightning Talks Day 4 (32c3)

Wed, 30 Dec 2015 12:45:00 +0100

Lightning Talks are short lectures (almost) any congress participant may give! Bring your infectious enthusiasm to an audience with a short attention span! Discuss a program, system or technique! Pitch your projects and ideas or try to rally a crew of people to your party or assembly! Whatever you bring, make it quick!

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7560.html

32C3 Closing Event (32c3)

Wed, 30 Dec 2015 19:00:00 +0100

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7551.html

The Magic World of Searchable Symmetric Encryption (32c3)

Wed, 30 Dec 2015 11:30:00 +0100

In the last couple of years, cloud and web services have become more and more popular. Since Snowden we know for sure that intelligence agencies have access to the data storage of an service provider, either by (forced) cooperation, or espionage. Thus, to protect our privacy we have to encrypted our data before hand it over to our service provider (data holder). But this approach contradicts the very idea of a web service where the data holder have to process our data in one way or an other. Therefore, we need new cryptographic techniques to enable the data holder to perform operation on encrypted data. One of the most important operations for cloud storage or database based web/cloud services is the search operation. In this talk we focus on the very familiar cloud storage scenario. Because in this scenario, It is obvious, that the user (data owner) do not want to perform the search by himself. This should be a service offered by the data holder. We will present different practical approaches to achieve searchable ciphertext, namely one with an index and one with cleverly encrypted words. Note that no PhD is required to attend this talk ;-) about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7333.html

Security Nightmares 0x10 (32c3)

Wed, 30 Dec 2015 18:00:00 +0100

Was hat sich im letzten Jahr im Bereich IT-Sicherheit getan? Welche neuen Entwicklungen haben sich ergeben? Welche neuen Buzzwords und Trends waren zu sehen? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7546.html

Wireless Drivers: Freedom considered harmful? (32c3)

Wed, 30 Dec 2015 18:00:00 +0100

A review/rant about the progress that free software wireless drivers (especially on Linux) have made over the recent years, as well as the current challenges that driver developers (and users) are facing. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7375.html

Collect It All: Open Source Intelligence (OSINT) for Everyone (32c3)

Wed, 30 Dec 2015 18:00:00 +0100

Governments post reports and data about their operations. Journalists publish documents from whistleblowers. But there is a third type of open data that is often overlooked- the information people and companies post about themselves. People need jobs. Companies need to hire people. Secret prisons do not build themselves. By making it feasible for anyone to collect public data online in bulk and exploring ways to effectively use this data for concrete objectives, we can build an independent, distributed system of accountability. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7340.html

Microsofts Windows 10 Botnet (32c3)

Wed, 30 Dec 2015 17:15:00 +0100

Nachdem viele Jahre vor den Angriffen auf die Wahlfreiheit von Windows-Nutzern gewarnt wurde, schalte Microsoft mit Windows 10 das Botnetz scharf. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7291.html

Sin in the time of Technology (32c3)

Wed, 30 Dec 2015 17:15:00 +0100

Technology companies now hold an unprecedented ability to shape the world around us by limiting our ability to access certain content and by crafting proprietary algorithm that bring us our daily streams of content. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7286.html

Compileroptimierungen für Forth im Microcontroller (32c3)

Wed, 30 Dec 2015 17:15:00 +0100

Wie lassen sich Konstantenfaltung und ein Registerallokator für einen Forth-Compiler implementieren, der in einem Mikrocontroller läuft ? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7520.html

Predicting Crime in a Big Data World (32c3)

Wed, 30 Dec 2015 17:15:00 +0100

Yearly, the world is inundated with news about government data collection programs. In addition to these programs, governments collect data from third party sources to gather information about individuals. This data in conjunction with machine learning aids governments in determining where crime will be committed and who has committed a crime. Could this data serve as a method by which governments predict whether or not the individual will commit a crime? This talk will examine the use of big data in the context of predictive policing. Specifically, how does the data collected inform suspicion about a particular individual? In the context of U.S. law, can big data alone establish reasonable suspicion or should it just factor into the totality of the circumstances? How do we mitigate the biases that might exist in large data sets? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7457.html

CHINTERNET ART (32c3)

Wed, 30 Dec 2015 16:00:00 +0100

Since my move to China in 2012 I have actively engaged in the local art scenes of Beijing and Shanghai, focusing on collaborating with artists interested in technology and the internet. My own personal independent research of the Chinese internet and the popular Chinese social app, WeChat 微信, has contributed to an ongoing massive archive I began in 2014 called The Chinternet Archive. To date, I have over 15,000 pieces of content (and growing) documenting localized trends, memes, vernacular photography, online personas, .gif animations, videos, selfies, propaganda, retail, family/work life, and other such digital artifacts of online Chinese culture. This archive directly influenced my artistic and curatorial practice, resulting in an online art collection called Netize.net, or its Chinese name of 网友网 [wǎngyǒuwǎng] “Internet Friend Network”, which collaborates with emerging Chinese and international artists who are exploring or deconstructing East/West dichotomies, engaging in Sino-centric Web aesthetics, or investigating the East online. The goal of this talk is to explore through my Chinternet Archive and Netize.net collections, forms of creativity found in China in relationship to it’s early internet history, interactions with technology, localized networks and restrictions. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7216.html

Breaking Honeypots for Fun and Profit (32c3)

Wed, 30 Dec 2015 16:00:00 +0100

We will detect, bypass, and abuse honeypot technologies and solutions, turning them against the defender. We will also release a global map of honeypot deployments, honeypot detection vulnerabilities, and supporting code. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7277.html

Wie man einen Blackout verursacht (32c3)

Wed, 30 Dec 2015 16:00:00 +0100

Der steigende Anteil der Erneuerbaren Energien an der Stromerzeugung und der zunehmende Handel mit Strom erhöht die Belastung der Stromnetze. Welche Auswirkungen hat das auf die Netzstabilität? Wann kommen die Stromnetze an ihre Leistungsgrenze? Wie kann ein gezielter Angriff auf das Europäische Verbundnetz aussehen? Was müsste man tun, um einen Blackout zu verursachen? Und: Wie können wir unsere Stromnetze umbauen, damit das nicht passiert? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7323.html

When algorithms fail in our personal lives (32c3)

Wed, 30 Dec 2015 14:00:00 +0100

„Social Media Break Up Coordinator“ is a performance art piece and lecture performed by Caroline Sinders. Inspired by Facebook’s memories algorithms faux pas, such as parents being reminded of their child’s death, or of events with an ex. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7497.html

Top X* usability obstacles (32c3)

Wed, 30 Dec 2015 12:45:00 +0100

What do you want? Did you build your web/app for humans or NSA robots? Let's make it usable for human beings. I'd like to show you some basic design mistakes and how to avoid them to improve usability of your web or app. Why? Because it's worth it and I'm good in it. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7356.html

Jahresrückblick des CCC (32c3)

Mon, 28 Dec 2015 11:30:00 +0100

Wir werden einen Überblick über die Themen geben, die den Chaos Computer Club 2015 beschäftigt haben. Neben der Zusammenfassung und der Rückschau auf das vergangene Jahr wollen wir aber auch über zukünftige Projekte reden. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7306.html

The mummy unwrapped (32c3)

Sun, 27 Dec 2015 11:30:00 +0100

Eine zweite Büste der ägyptischen Königin sei gefunden worden, meldete Ägyptens größte Zeitung. Der Fund war jedoch Teil einer Kunstaktion, die Museen und Kunstmarkt für deren Umgang mit Antiken kritisiert. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7543.html

A New Kid on the Block (32c3)

Wed, 30 Dec 2015 12:45:00 +0100

The leading social networks are the powerful new gatekeepers of the digital age. Proprietary de facto standards of the dominant companies have lead to the emergence of virtual “information silos” that can barely communicate with one another. Has Diaspora really lost the war? Or is there still a chance to succeed? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7403.html

Maker Spaces in Favelas - Lecture (32c3)

Mon, 28 Dec 2015 11:30:00 +0100

There are two lines of research in the world about decreasing poverty in low-income communities: (1) to create solutions and share them with people living in low-income areas or (2) build the capacity of people from low-income areas to create their own solutions. Maker Spaces to BoP have showed great results to the strategy two. The lecture has the goal to expose all the experience we have learnt in the last three years to project, implement and manage a Maker Space in a favela in São Paulo - Brazil called Innovation Center Vila Nova Esperança (ICVNE). about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7540.html

Katastrophe und Kommunikation (32c3)

Wed, 30 Dec 2015 11:30:00 +0100

Ob diktatorischer Despot, der seiner Bevölkerung die Kommuninaktionsrechte einschränkt, oder ein Erdbeben, das die Kommunikationsinfrastruktur zerstört: Auch 2015 sind die Lösungsansätze noch nicht wesentlich über Zettel und Stift hinaus. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7567.html

Crypto Wars Part II (32c3)

Wed, 30 Dec 2015 12:45:00 +0100

Governments around the world are seeking to put a stop to secure end-to-end encryption, from the UK’s Data Retention and Investigatory Powers Act, to Australia’s Defence Trade Controls Act, to India’s draft proposal to require plain text copies of all secure messages, to the United States’ Federal Bureau of Investigation’s public pressure on global companies like Apple and Google to weaken their security and provide law enforcement access to plain text content. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7386.html

What is the value of anonymous communication? (32c3)

Sun, 27 Dec 2015 11:30:00 +0100

What does the fact that Tor users can’t edit wikipedia mean for the quality of the ``encyclopedia that anyone can edit?’’ How do captchas and blocking of anonymity services affect the experiences of Tor users when they are trying to contribute content? This talk will discuss the increasing limitations of active participation in the anonymous Internet and the findings of our interview study of Tor users and wikipedia editors concerning these issues. We believe that by understanding the contributions Tor users make—and that people denied access to anonymity tools don't make—we can help make the case for the value of anonymity online. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7324.html

“I feel like a criminal and I have to be god at the same time” (32c3)

Wed, 30 Dec 2015 11:30:00 +0100

News reports and political speeches are currently replete with references to hacking and hacktivism, i.e., politically motivated hacking. They often portray hackers and hacktivists negatively and put them onto the same level with, for example, terrorists. This talk is based on a PhD research project examining the perception of self-identified hackers and hacktivists on these (in)securitising developments. It investigates how hackers and hacktivists understand themselves and their activities, explores how they articulate the effects of this (in)securitisation, and outlines the ways they resist these processes. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7207.html

The state of Internet Censorship (32c3)

Mon, 28 Dec 2015 11:30:00 +0100

The techniques to control access to the Internet, and the ability to bring transparency to those processes are both continuing to evolve. We’ll give an update on the landscape of online information controls, and our ability to measure them. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7143.html

Replication Prohibited (32c3)

Wed, 30 Dec 2015 11:30:00 +0100

Physical keys and locks are one of the oldest security mechanisms still employed today. In this talk, we will discuss how 3D printing keys enable attacks against many modern lock systems. We will describe projects researchers and hobbyists have done involving 3D printed keys, and present our own research on automating several of these attacks in order to demonstrate how easy they are to do. Ultimately, we hope to describe the current state of 3D printed keys, and their impact on the physical security systems we most often take for granted. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7435.html

Hacker Jeopardy (32c3)

Wed, 30 Dec 2015 00:15:00 +0100

The Hacker Jeopardy is a quiz show. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7152.html

Free Software and Hardware bring National Sovereignty (32c3)

Tue, 29 Dec 2015 21:15:00 +0100

Free software and hardware are essential to sovereignty among developing nations, and can be used to secure infrastructure and information against sophisticated adversaries. Underdeveloped nations are leveraging Free software for these purposes, including Gaza and the Palestinian territories. This lecture discusses the Palestinian use of Free software and hardware to claim a kind of sovereignty, focusing on the health sector as one example where speaker Dr. Tarek Loubani has experienced and participated in efforts to incorporate Free culture. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7246.html

Crypto ist Abwehr, IFG ist Angriff! (32c3)

Tue, 29 Dec 2015 22:00:00 +0100

Die Landesverrat-Affäre um netzpolitik.org hat gezeigt, wie wichtig es ist, nicht nur aus staatlichen Dokumenten zu zitieren, sondern sie im Original zu veröffentlichen. Ideales Werkzeug dafür ist das Informationsfreiheitsgesetz (IFG). Wir geben einen Überblick über die Entwicklungen dieses Jahr rund um das IFG.

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7102.html

Grundrechte gelten nicht im Weltall! (32c3)

Wed, 30 Dec 2015 00:15:00 +0100

In den nunmehr Hunderte A4-Seiten füllenden Live-Protokollen des NSA-BND-Untersuchungsausschusses, die bei netzpolitik.org nachzulesen sind, verbergen sich interessante Antworten auf Fragen, die niemand gestellt hat, vorher unbekannte juristische „Theorien“ des BND und Perlen verlogener Rabulistik.

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7225.html

#GOIBlocks - Technical observations about recent internet censorship in India (32c3)

Tue, 29 Dec 2015 23:30:00 +0100

On 17th December 2014, the Government of India's Ministry of Communications and Information Technology issued an order to all licensed Internet Service Providers (ISPs) in the country to block access to 32 websites, effective immediately. The basis of this was a claim that the targeted web services were being used for "Jihadi Propaganda" by "Anti-National groups". As a response to this, a few technologists in Berlin got together and thought it would be a good idea to do some research using free and accessible tools and to look at how censorship has been implemented, as well as the various techniques that could be used to circumvent this censorship. This talk will discuss our findings and make recommendations about how ISPs can handle such censorship requests better, while being fair and transparent to their customers. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7263.html

Methodisch inkorrekt! (32c3)

Tue, 29 Dec 2015 00:15:00 +0100

Nicolas Wöhrl und Reinhard Remfort sprechen über interessante aktuelle Forschung, Experimente und ihren wissenschaftlichen Alltag an einer deutschen Hochschule. Fachübergreifend, abwechslungsreich, unstrukturiert, hoffnungslos subjektiv und immer garantiert methodisch inkorrekt. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7221.html

libusb: Maintainer fail (32c3)

Tue, 29 Dec 2015 23:30:00 +0100

In 2010 I was asked by the second maintainer in a row to take over as new maintainer of the libusb project. The first time I had declined. The second time I accepted, and sadly failed. Eventually a hostile fork emerged, with the explicit goal to take over the original project. I will tell you my story, which mistakes I made and what I learned - about independent and corporate contributors in open source projects, about package maintainers in downstream OS distributions, about trolls on the internet, about GitHub Inc. and about myself. The hostile fork? It wasn't merged. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7547.html

Stromtankstellen – eine neue öffentliche Infrastruktur (32c3)

Tue, 29 Dec 2015 22:45:00 +0100

Landauf landab entstehen zur Zeit tausende öffentlicher Stromtankstellen. Diese neue Infrastruktur bietet viel Potential für kreative Nutzungen und hat eine Reihe an Nutzungs-, Sicherheits- und Datenschutzproblemen, für die bislang Lösungen fehlen. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7202.html

Running your own 3G/3.5G network (32c3)

Sun, 27 Dec 2015 20:30:00 +0100

Seven years after presenting „running your own GSM network“, we are back presenting about how to do the same for 3G (UMTS/HSPA) networks. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7412.html

Maritime Robotics (32c3)

Tue, 29 Dec 2015 23:30:00 +0100

This talk will have a look at maritime related robots and projects. It is not all that difficult and expensive - and there are truly still dragons to find! about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7265.html

Technology and Mass Atrocity Prevention (32c3)

Tue, 29 Dec 2015 23:30:00 +0100

This lecture will give an overview on how technology can help and is helping to prevent or mitigate mass atrocity crimes. It focuses on the work and research of the Digital Mass Atrocity Prevention Lab (DMAP Lab) but will discuss other major projects as well. The goal is to inform the audience about ongoing efforts and spark their interest to help work at the intersection of technology and human rights. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7400.html

Craft, leisure, and end-user innovation (32c3)

Tue, 29 Dec 2015 22:00:00 +0100

Hacking receives growing attention among social scientists during the last five years. Researchers particularly in the fields of Human-Computer Interaction (HCI) and Computer-Supported Collaborative Work (CSCW) but also in the social sciences generally have begun to study hacking empirically—investigating hacking as a practice and as cultural phenomenon. The talk offers a glimpse of the spectrum of research about hacking in HCI, CSCW, and adjacent fields. Researchers in these fields portray hacking very differently. The spectrum ranges from “transgressive craft” to “innovative leisure practice,” from skilled craftsmanship to ad hoc kludging, from an individualist pursuit to a community mission, from an expression of liberalism to an exclusive practice of cultural distinction. Some researchers see hacking as an illustration of how to defy technological determinism, i.e., the conviction that the technological determines the social, a position that social scientists typically fight ferociously. Other researchers see it as the future of “end-user innovation.” This talks discusses these notions and describes the value---economic, pedagogical, cultural, conceptual---that different research perspectives perceive in hacking. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7114.html

On Computing Numbers, with an Application to Problems of our Society (32c3)

Tue, 29 Dec 2015 22:45:00 +0100

Journalists, while structurally and economically under threat, are bringing computer science into their newsrooms. Their tools and techniques benefit from computer science in areas such as databases, graph analysis and machine learning and allow journalists to tackle new kinds of stories. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7419.html

Österreich: Der Kampf gegen unkontrollierte Massenüberwachung (32c3)

Tue, 29 Dec 2015 22:45:00 +0100

Im April 2015 hat die österreichische Bundesregierung einen Entwurf für ein "Polizeiliches Staatsschutzgesetz" vorgelegt. Damit soll ein neuer Inlandsgeheimdienst mit weitreichenden Überwachungsbefugnissen geschaffen werden. Unabhängige Kontrolle durch Gerichte und das Parlament ist nicht vorgesehen. Bereits in der Begutachtungsphase wurde das Gesetz massiv kritisiert. Der AKVorrat gab mit einer umfassenden Stellungnahme die wichtigsten Argumente vor. Der Widerstand gegen das Gesetz und die Kampagne des AKVorrat haben zwar zu mehrfacher Verschiebung der Beschlussfassung geführt, aber die Geheimdienstpläne der Regierung sind trotz mehr als 22.000 Unterzeichnerinnen und Unterzeichnern der Petition auf www.staatsschutz.at nach wie vor nicht vom Tisch. Der Talk bietet Einblicke, wie Geheimdienste in der Post-Snowden-Ära öffentlich und nicht öffentlich diskutiert werden. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7413.html

Building and Breaking Wireless Security (32c3)

Tue, 29 Dec 2015 22:45:00 +0100

This talk gives an overview on state-of-the-art wireless security concepts: How can we analyze wireless protocols? How can we build mechanisms that are secure even when the attacker has unlimited computational power? Can we exploit wireless transmission for more? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7119.html

QRtistry (32c3)

Tue, 29 Dec 2015 20:30:00 +0100

QR codes have rapidly overtaken rival 2D bar code symbologies and are becoming quite ubiquitous. Most uses are rather pedestrian though, and even the more non-standard modifications to pure QR codes lack a certain technical finesse, opting to just overpaint part of the code and let error correction handle that instead. Let's see how we can do better. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7310.html

Internet Cube (32c3)

Tue, 29 Dec 2015 22:00:00 +0100

Two years after the invitation to build your own iSP at 30C3, I'd like to invite everyone to take part in building a better Internet with the Internet Cube project. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7401.html

the possibility of an army (32c3)

Tue, 29 Dec 2015 22:00:00 +0100

Using follower bombing as art performances, the artists Constant Dullaart continues the research into attention and identity as a commodity on social networks, and has recently created a large sum of custom created artificial Facebook identities. Many websites offer an option to login in with Facebook credentials due to the strict controle of the service on the reliability and verification of the social medium. In a time where the open borders in Europe are under pressure, and Syrian identities are sold to people that long for a better future, virtual identity systems, and their reliability become a topical analogy. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7517.html

20 OSCILLATORS IN 20 MINUTES (32c3)

Tue, 29 Dec 2015 20:30:00 +0100

20 OSCILLATORS IN 20 MINUTES is an experimental music performance/technical challenge/standup comedy act where I attempt to build twenty sound generating square wave oscillators in twenty minutes. This involves fabricating small electronic circuits with wires, chips, small components and nine-volt batteries under the pressure of limited time and expectation. This is a test of my technical abilities and an experiment in working with live troubleshooting as a method of musical improvisation. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7549.html

Intelexit (32c3)

Tue, 29 Dec 2015 21:15:00 +0100

Giant billboard vans, drone-operated leaflet drops over an NSA building and calls to secret service agents, Intelexit explores all routes to reach out to secret service agents and convince them to follow their conscience and quit their jobs. We will take a look at the highlights of the campaign from 2015 and what's around the corner for 2016. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7426.html

Media Coverage and the Public in the Surveillance Society (32c3)

Tue, 29 Dec 2015 20:30:00 +0100

How have the media reported the Snowden revelations? Does the public care about surveillance, and how do people react? Do we need a ‚data justice‘ movement? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7388.html

The plain simple reality of entropy (32c3)

Tue, 29 Dec 2015 21:15:00 +0100

Entropy, the randomness used in many critical cryptography processes including key generation, is as important as it is misunderstood. Many myths are fueled by misleading documentation. This presentation aims to provide simple and actionable information while explaining the core technical details and real world implementations. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7441.html

Trust us and our business will expand! (32c3)

Tue, 29 Dec 2015 21:30:00 +0100

The lecture outlines strategies by the "Artist against 419" online community that uses open source intelligence to gather data and file reports about fraudulent websites. The lecture presents the artistic installation "Megacorp." (created by KairUs) that tries to visualize the global phenomenon of fake business websites. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7219.html

Reversing UEFI by execution (32c3)

Tue, 29 Dec 2015 20:30:00 +0100

This talk will be an overview of how to reverse-engineer Unified Extensible Firmware Interface (UEFI) firmware, the replacement for BIOS. Various useful tools will be discussed, including those written by the presenter and those written by others. One of the highlights will be a tool that enables running parts of the firmware in userspace on a standard Operating System. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7245.html

The architecture of a street level panopticon (32c3)

Tue, 29 Dec 2015 18:30:00 +0100

Street level surveillance technology, such as surveillance cameras and iris scanners, is now a pervasive part of the daily lives of city dwellers, with disastrous consequences for freedom of expression. This talk will cover what kind of street level technology we’re seeing, how it’s spreading, and who’s making money off of it. We’ll also talk about some of the security flaws hackers have exposed on these technologies, and put out a call to action to CCC. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7374.html

3D printing on the moon (32c3)

Tue, 29 Dec 2015 18:30:00 +0100

3D printers are almost everywhere, but not on the moon yet. We want to change that and this talk gives you a little insight into the how and whys of 3D printing on the moon. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7336.html

Ten years after ‚We Lost The War‘ (32c3)

Tue, 29 Dec 2015 18:30:00 +0100

The talk „We Lost The War“ was presented at Congress ten years ago, causing quite a stir. It was a prediction of a dark future that did not sit well with many people, but unfortunately many predictions have come true meanwhile. This talk will try to address what comes next, as well as what the hacker community can do to make things better. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7501.html

Prediction and Control (32c3)

Tue, 29 Dec 2015 18:30:00 +0100

Mass quantities of data are being incorporated into predictive systems in an ever-broadening set of fields. In many cases, these algorithms operate in the dark and their use has implications both intentional and unintentional. This talk will cover some of the fairness and accountability issues involved in controlling algorithms for media, policy, and policing. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7449.html

Vehicle2Vehicle Communication based on IEEE 802.11p (32c3)

Tue, 29 Dec 2015 16:00:00 +0100

This talk is about Vehicle2Vehicle (V2V) communication in Europe and in the U.S. Next to the introduction of some requirements for V2V communication, the basic approaches of V2V communication based on IEEE 802.11p are presented. This includes an introduction to communication stack, concepts of message dissemination, message contents, privacy & security issues and an outlook to further developments. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7165.html

Unpatchable (32c3)

Mon, 28 Dec 2015 23:00:00 +0100

Gradually we are all becoming more and more dependent on machines, we will be able to live longer with an increased quality of life due to machines integrated into our body. However, our dependence on technology grows faster than our ability to secure it, and a security failure of a medical device can have fatal consequences. This talk is about Marie's personal experience with being the host of a vulnerable medical implant, and how this has forced her to become a human part of the "Internet-of-Things". about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7273.html

A Dozen Years of Shellphish (32c3)

Tue, 29 Dec 2015 17:15:00 +0100

How we built an automatic exploitation system and qualified for the DARPA Cyber Grand Challenge. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7218.html

The Price Of Dissent (32c3)

Tue, 29 Dec 2015 17:15:00 +0100

CAGE exists to highlight abuses of the War on Terror. It has uncovered many secrets of governments that they would like to remain secret, and is now one of the most targeted organisations in the UK. Hear how the state attempts to suppress dissent, and yet we manage to speak out. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7443.html

De-anonymizing Programmers (32c3)

Tue, 29 Dec 2015 17:15:00 +0100

Last year I presented research showing how to de-anonymize programmers based on their coding style. This is of immediate concern to open source software developers who would like to remain anonymous. On the other hand, being able to de-anonymize programmers can help in forensic investigations, or in resolving plagiarism claims or copyright disputes. I will report on our new research findings in the past year. We were able to increase the scale and accuracy of our methods dramatically and can now handle 1,600 programmers, reaching 94% de-anonymization accuracy. In ongoing research, we are tackling the much harder problem of de-anonymizing programmers from binaries of compiled code. This can help identify the author of a suspicious executable file and can potentially aid malware forensics. We demonstrate the efficacy of our techniques using a dataset collected from GitHub. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7491.html

Safe Harbor (32c3)

Tue, 29 Dec 2015 17:15:00 +0100

Introduction and consequences of the CJEU's "Safe Harbor" ruling, to invalidate the EU-US data sharing deal in the light of the revelations over US surveillance by Edward Snowden. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7513.html

Lightning Talks Day 3 (32c3)

Tue, 29 Dec 2015 12:45:00 +0100

Check your privileges! (32c3)

Tue, 29 Dec 2015 16:00:00 +0100

After defensive programming techniques and before attack method mitigations, the least privilege principle is our strongest weapon against exploitation. Much of the focus has been on how the admin can sandbox processes away. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7284.html

Say hi to your new boss: How algorithms might soon control our lives. (32c3)

Tue, 29 Dec 2015 16:00:00 +0100

Algorithms and „big data“ penetrate many aspects of our lives today. In the future, data collection and analysis will be even more ubiquitous and permeate our lives from morning to night. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7482.html

Gibberish Detection 102 (32c3)

Tue, 29 Dec 2015 16:00:00 +0100

DGAs (Domain Generation Algorithms) have become a trusty fallback mechanism for malware that’s a headache to deal with, but they have one big drawback – they draw a lot of attention to themselves with their many DNS request for gibberish domains. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7243.html

"Fluxus cannot save the world." (32c3)

Tue, 29 Dec 2015 14:00:00 +0100

The Fluxus movement came about in the early 1960ies and the talk will discuss its strenghts, dead-ends and promises for the creation of works and community in our digital environment. International, transdisciplinary, non-institutional, anti-art and playful. After several years of research and new art productions, Leo Findeisen and Markus Zimmermann will present their findings. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7421.html

State of the Onion (32c3)

Tue, 29 Dec 2015 14:00:00 +0100

Major changes are underway in the Tor Project, the Tor Network, and the Tor community. We want to tell you details and introduce the growing Tor community to the larger world.

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7307.html

Neither Snow Nor Rain Nor MITM… The State of Email Security in 2015 (32c3)

Tue, 29 Dec 2015 14:00:00 +0100

Is your email being sent in the clear? While PGP and S/MIME provide end-to-end encrypted mail, most users have yet to adopt these practices, and for users who have, these tools leave metadata, such as the subject, sender, and recipient, visible everywhere along a message’s path. SMTP—the ubiquitous mail transport protocol—has evolved over the years to add encryption and authentication, both of which take place behind the scenes and help guard against surveillance and spam. While these features are being increasingly deployed, our research shows that they are almost always configured in vulnerable ways—the details of which are hidden from the users sending and receiving mail. Even more disturbingly, these vulnerabilities are being widely exploited in the wild: in seven countries, more than 20% of inbound Gmail messages are downgraded to cleartext by network-based attacks. In the most severe case, 96% of messages sent from Tunisia to Gmail are downgraded to cleartext. In this talk, I’ll introduce the commonly used SMTP security extensions—including STARTTLS, SPF, DKIM, and DMARC—and describe the current state of mail security on the Internet. I'll describe several commonly occurring attacks our recent research has found and discuss how mail operators can configure their servers to secure email transport. Finally, I'll discuss several weaknesses in the protocols we're using and recent proposals for helping secure email transport. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7255.html

Computational Meta-Psychology (32c3)

Tue, 29 Dec 2015 12:45:00 +0100

Computational theories of the mind seem to be ideally suited to explain rationality. But how can computations be subverted by meaning, emotion and love? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7483.html

Tor onion services: more useful than you think (32c3)

Tue, 29 Dec 2015 12:45:00 +0100

We'll update you on what's going on with Tor onion services, aka Tor hidden services. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7322.html

How hackers grind an MMORPG: by taking it apart! (32c3)

Mon, 28 Dec 2015 21:45:00 +0100

When an online game no longer captivates interest, what do you do? Grind on the network protocol, of course! How does it work, is it secure - and, how can you still get away while doing this? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7493.html

Graphs, Drones & Phones (32c3)

Tue, 29 Dec 2015 12:45:00 +0100

The military use of Drones has profoundly changed warfare and is a central aspect of the globalized war on terror. The public debate including the respective talks at prior CCCs is dominated by questions of the ethical and juridical aspects of Drone use. This talk tries to shift the focus towards the enabling dimensions of Drone warfare. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7259.html

„Nach bestem Wissen und Gewissen“ – Floskeln in der Politik (32c3)

Tue, 29 Dec 2015 11:30:00 +0100

In der politischen Rede sind immer wieder Floskeln zu beobachten, zum Teil gibt es Moden, wie im Zusammenhang mit dem so genannten No-Spy-Abkommen, wo Handlungen wiederholt mit „bestem Wissen und Gewissen“ gerechtfertigt wurden. Auch das „volle/vollste Vertrauen“ der Kanzlerin ist auffällig. Der Vortrag vertritt die Hypothese, dass solche Phrasen nicht zufällig sind, dass sie eine Funktion besitzen. Es wird erläutert, was mit ihnen erreicht werden soll. Es wird außerdem der Frage nachgegangen, wie Floskeln sich durch häufigen Gebrauch in ihrer Bedeutung verändern bzw. verselbständigen und gegen den Sprecher wenden können. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7150.html

(In)Security of Embedded Devices' Firmware - Fast and Furious at Large Scale (32c3)

Tue, 29 Dec 2015 11:30:00 +0100

Embedded systems are omnipresent in our everyday life and are becoming increasingly present in many computing and networked environments. For example, they are at the core of various Common-Off-The-Shelf (COTS) devices such as printers, video surveillance systems, home routers and virtually anything we informally call electronics. The emerging phenomenon of the Internet-of-Things (IoT) will make them even more widespread and interconnected. Cisco famously predicted that there will be 50 billion connected embedded devices by 2020. Given those estimations, the heterogeneity of technology and application fields, and the current threat landscape, the security of all those devices becomes of paramount importance. In addition to this, manual security analysis does not scale. Therefore, novel, scalable and automated approaches are needed. In this talk, we present several methods that make *the large scale security analyses of embedded devices* a feasible task. We implemented those techniques in a scalable framework that we tested on real world data. First, we collected a large number of firmware images from Internet repositories and then performed simple static analysis. Second, since embedded devices often expose web interfaces for remote administration, therefore we developed techniques for large scale static and dynamic analysis of such interfaces. Finally, identifying and classifying the firmware files, as well as fingerprinting and identifying embedded devices is difficult, especially at large scale. Using these techniques, we were able to discover a large number of new vulnerabilities in dozens of firmware packages, affecting a great variety of vendors and device classes. We were also able to achieve high accuracy in fingerprinting and classification of both firmware images and live devices. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7252.html

re_cycle (32c3)

Tue, 29 Dec 2015 11:30:00 +0100

How can be 3d printing a dual use technology? Print more things, produce less waste, save money! about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7321.html

Beyond Anti Evil Maid (32c3)

Tue, 29 Dec 2015 11:30:00 +0100

In 2011, Joanna Rutkowska unveiled an easy-to-use tool for mitigating many attacks on system boot chains by using the TPM - the Anti Evil Maid. Unfortunately the implementation was difficult to incorporate into normal system boot in a secure manner - anybody able to observe a user could recreate the secret. This presentation describes a method to allow systems to prove their identity to the user without making it trivial for attackers to mimic a secure boot and extract secrets from the user, and why the state of modern hardware means this may still not be enough. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7343.html

goto fail; (32c3)

Mon, 28 Dec 2015 23:00:00 +0100

Legend has it, the first iteration of the Secure Sockets Layer (SSL) protocol was broken in ten minutes by Phillip Hallam-Baker and Alan Schiffman during a presentation by Marc Andreesen at MIT in 1994. In the following two decades the protocol has been improved and the implementations have been strengthened, but not without a steady stream of implementation vulnerabilities and protocol design errors. From the ciphersuite rollback attack to LogJam, SSL/TLS has seen a diverse set of problems. In this talk we’ll discuss the pitfalls in designing and implementing a cryptographic protocol and lessons learned from TLS up to version 1.2. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7438.html

Fnord-Jahresrückblick (32c3)

Tue, 29 Dec 2015 00:15:00 +0100

Wir helfen euch, die Fnords zu sehen, wenn nach einem klaren Fall von Selbstmord der Zensor pinkeln war und die Stahlbälle den maximalen Realitätsabstand eingenommen haben. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7282.html

Wie Jugendschutzprogramme nicht nur die Jugend schädigen (32c3)

Mon, 28 Dec 2015 17:30:00 +0100

Das Nonplusultra für hauptamtliche Jugendschützer sind Filterprogramme, auch „Jugendschutzprogramme“ genannt. Doch was machen die Programme, welche Wirkungen und vor allem Nebenwirkungen haben sie? Und was macht eigentlich der Zombie JMStV? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7415.html

Lessons learned: Freifunk für Geflüchtete (32c3)

Mon, 28 Dec 2015 16:45:00 +0100

Initiative Freifunk, ein Projekt des Chaos Darmstadt e.V. - Wie kamen wir mit den Verwaltungen, den Verbänden und Parteien ins Gespräch, um freifunk für refugees umzusetzen? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7230.html

Lightning Talks Day 2 (32c3)

Mon, 28 Dec 2015 12:45:00 +0100

(Un)Sicherheit von App-basierten TAN-Verfahren im Onlinebanking (32c3)

Mon, 28 Dec 2015 16:45:00 +0100

Neue App-basierte TAN-Verfahren sollen die etablierten Verfahren ablösen und Onlinebanking komfortabler machen. Die Notwendigkeit von dedizierter Hardware entfällt und Transaktionen können mit nur einem mobilen Endgerät durchgeführt werden. Was von den Kreditinstituten als Feature beworben wird, erweist sich in unserer Untersuchung als fatal. In einem Proof-of-Concept-Angriff demonstrieren wir die Manipulation von Transaktionsdaten und zeigen die konzeptionelle Schwäche von App-basierten TAN-Verfahren. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7360.html

Sanitizing PCAPs (32c3)

Mon, 28 Dec 2015 23:00:00 +0100

Sanitizing and anonymizing PCAP or PCAPng files is often necessary to be able to share information about attack vectors, security problems or incidents in general. While it may seem simple to replace IP addresses or ports there are still quite a number of network packet details that are hard to replace. This technical talk will shed a light on where those troublemakers are encountered and how to get around them. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7294.html

Iridium Update (32c3)

Mon, 28 Dec 2015 23:00:00 +0100

Listening to satellites and decoding is fun. We show interesting stuff we found, and how you can get into it.

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7154.html

Quantenphysik und Kosmologie (32c3)

Mon, 28 Dec 2015 21:45:00 +0100

Unsere Welt ist nach allem was wir heute wissen im kleinsten Massstab völlig bizarr aufgebaut und im grössten also im kosmologischen Massstab besteht sie ziemlich genau aus nichts. Wie hängt das zusammen und was hat das mit dunkler Materie und dunkler Energie zu tun und was zum Geier ist eigentlich die "spukhafte Fernwirkung" von der Einstein damals sprach und warum hat bis heute keiner so recht verstanden wie das alles zusammenpasst? Hast du schon mal davon gehört, dass die Quantenphysik irgendwie schräg ist, hast dich da aber noch nicht ran getraut, obwohl du das gerne besser verstehen wollen würdest? Denkst du manchmal drüber nach, wie zum Geier das komplette Universum mit allen Sternen und Planeten ganz früher mal in einen Tischtennisball oder sogar noch was kleineres gepasst haben soll? Hast du schon mal davon gehört, dass ein Proton angeblich aus drei Quarks besteht und denkst, "jaja, ihr könnt mir viel erzählen". Und klinkt sich dein Vorstellungsvermögen aus, wenn du versuchst dir so was wie ein "schwarzes Loch" vorzustellen, das unendlich klein sein soll und dabei unendlich schwer? Dann bist du hier genau richtig. Ich will dir ohne wesentliche Vorkenntnisse vorauszusetzen im Grossen und Ganzen den Zusammenhang näher bringen, deine Faszination für das Thema wecken oder füttern und dir Mut machen, dich weiter damit zu beschäftigen. Du darfst hier Fragen stellen, dich wundern, zweifeln und irritiert sein. Wenn du an Quantenheilung, Vortex Atome und holistische Quanten-Kinesiologie glaubst, dann bist du herzlich willkommen um zu lernen, dass das mit Quantenphysik nichts, aber auch wirklich gar nichts zu tun hat, aber sei bitte nicht enttäuscht, wenn ich auf diese Themen nicht eingehe. Eine Stunde ist viel zu Kurz um zusätzlich eine Einführung in die Prinzipien der Wissenschaft zu halten. Wenn du aber schon mal die Schrödingergleichung hergeleitet hast oder gerne über die Vorteile der M-Theorie gegenüber der Super-Stringtheorie schwadronieren möchtest oder wenn du diskutieren möchtest, ob es vielleicht auch noch ein Typ 3 Weyl Fermion geben kann, dann langweilst du dich hier vermutlich, das können wir dann ja gerne ein anderes mal machen ;-) about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7525.html

Hardsploit: A Metasploit-like tool for hardware hacking (32c3)

Mon, 28 Dec 2015 20:30:00 +0100

It is clear that something is needed to help the security community to evaluate, audit and control the security level of hardware products. Hardsploit is a complete tool box (hardware & software), a framework which aims to: - Facilitate the audit of electronic systems for industry 'security' workers (consultants, auditors, pentesters, product designers, etc.) - Increase the level of security (and trust !) of new products designed by the industry about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7496.html

Quantum Cryptography (32c3)

Mon, 28 Dec 2015 20:30:00 +0100

I will entertain the audience with a science talk about quantum cryptography, covering both some classics (Quantum Key Distribution) and the latest developments (position-based quantum cryptography) in this fascinating research field. [No previous knowledge of quantum mechanics is required to follow the talk.] about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7305.html

The Perl Jam 2 (32c3)

Mon, 28 Dec 2015 20:30:00 +0100

tl;dr EXPLOIT ALL THE PERL. AGAIN. After last year’s Perl crackdown, I decided I have to take the Perl abuse to the next level. This time I focused on Perl’s core, or more specifically, the referencing mechanism, and shattered the security of most Perl CGI projects in the world. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7130.html

Das Zahnrad aus Fleisch (32c3)

Mon, 28 Dec 2015 20:30:00 +0100

Kommentierendes im Internet ist neuerdings bedroht. Der unflätige Kommentierer hat den Pedonazi als Schrecken des Netzes abgelöst, als Strohmann für mehr Kontrolle über das Netz kann er auf breitere Gefolgschaft rechnen. Es “muss etwas geschehen” gegen den “Hass im Netz”, “Putintrolle” und Wutnetzbürger. Twitter, Mark Zuckerberg, Politiker, alle sollen mehr tun - aber was denn eigentlich, mehr Zensur und Moderation, andere Ausgestaltungen von Kommentarsystemen? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7249.html

Dissecting VoLTE (32c3)

Mon, 28 Dec 2015 21:45:00 +0100

Newly adopted VoLTE requires changes in all associated parties, such as 3GPP standard, device, operating system, and cellular core networks. Therefore, it is not too surprising that it has security problems. However, it turns out that it has way too many problems. In this talk, we introduce how you can freely send data in the cellular network, and how an attacker can perform caller spoofing and denial of service attacks on calls to disable the target’s calling. Furthermore, we explain how small implementation glitch on VoLTE may lead to break the whole cellular network down. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7502.html

Logjam: Diffie-Hellman, discrete logs, the NSA, and you (32c3)

Mon, 28 Dec 2015 21:45:00 +0100

Earlier this year, we discovered that Diffie-Hellman key exchange – cornerstone of modern cryptography – is less secure in practice than the security community believed. In this talk, we’ll explain how the NSA is likely exploiting this weakness to allow it to decrypt connections to at least 20% of HTTPS websites, 25% of SSH servers, and 66% of IPsec VPNs. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7288.html

Rowhammer.js: Root privileges for web apps? (32c3)

Mon, 28 Dec 2015 18:15:00 +0100

"Insanity: doing the same thing over and over again and expecting different results." Albert Einstein - Who did not live long enough to see Rowhammer Recent studies have found that repeated accesses to DRAM rows can cause random bit flips, resulting in the so called Rowhammer vulnerability. We present Rowhammer.js, the first remote software-induced hardware-fault attack, from JavaScript. We also extend our presentation with an overview of cache side-channel attacks, that use the same technique to evict data from the cache. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7197.html

Verified Firewall Ruleset Verification (32c3)

Mon, 28 Dec 2015 17:30:00 +0100

We develop a tool to verify Linux netfilter/iptables firewalls rulesets. Then, we verify the verification tool itself. Warning: involves math! This talk is also an introduction to interactive theorem proving and programming in Isabelle/HOL. We strongly suggest that audience members have some familiarity with functional programming. A strong mathematical background is NOT required. TL;DR: Math is cool again, we now have the tools for "executable math". Also: iptables! about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7195.html

One year of securitarian drift in France (32c3)

Mon, 28 Dec 2015 17:30:00 +0100

Earlier this year, following the tragic events of early January in Paris, the French governement pushed a bill to put a legal framework around Intelligence Services activities. Far from protecting civil liberties, this bill seem to be the translation of Snowden's revelations into law. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7423.html

All Our Shared Spectrum Are Belong to Us (32c3)

Mon, 28 Dec 2015 17:30:00 +0100

"Signal level is high but throughput is low" is a common experience in WLAN networks without central management. That causes a lot of frustration, mainly because there is no easy way for users to OBSERVE the presence of interference at all. In order to improve this situation we developed a patch for OpenWRT which makes interference from other sources visible and is able to display the current utilization-ratio (channel load). No additional hardware is required and no interruption of normal operation is necessary - because recent chipsets maintain internal counters for channel load tracking. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7314.html

apertus° AXIOM (32c3)

Mon, 28 Dec 2015 16:45:00 +0100

AXIOM is the first professional, extendable, affordable and modular cinema camera platform based on Free ("libre") Software, Open Design, Open Hardware, transparent development processes and extensive documentation. The community project establishes an ecosystem that offers a sustainable basis for a broad spectrum of imaging applications and empowers enthusiasts, videographers as well as developers in the technology and creative industry sectors. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7355.html

Plunge into Proxy Politics (32c3)

Mon, 28 Dec 2015 16:45:00 +0100

During this lecture presentation, Boaz Levin and Vera Tollmann, co-founders of the Research Center for Proxy Politics, will develop the proxy as a figure of thought by spinning and testing it in different contexts. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7570.html

Evolution of Brain-Computer Interfaces (32c3)

Mon, 28 Dec 2015 16:00:00 +0100

This talk is a brief recap into EEG / BCI for hackers, makers, researchers, and artists. It will give an overview of current consumer devices and their flaws, and subquently present fully open-source, high-quality hardware and software. Finally implications for the future of modern society are outlined, especially how commercial EEG consumer devices or services may be exploited by corporations to cloudsource market research, or spy on health conditions, brain states or even leak private information. Strategies to circumvent these risks and secure brain wave experience are being discussed. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7416.html

Cyber all the Wassenaars (32c3)

Mon, 28 Dec 2015 14:00:00 +0100

Transposition of the Wassenaar Arrangement, which now also covers export controls on exploits and surveillance technology, into European law is upon us. This panel discusses this, both on process and substance. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7280.html

Jugend hackt 2015 (32c3)

Mon, 28 Dec 2015 14:00:00 +0100

Auch in 2015 entstanden wieder zahlreiche Projekte bei Jugend hackt, die mit Code die Welt verbessern. Im Talk möchten die jugendlichen HackerInnen Einblick in ihre Ideen und Projekte geben, und ihre Perspektive auf die Welt vermitteln. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7562.html

Ling - High level system programming (32c3)

Mon, 28 Dec 2015 19:00:00 +0100

In this presentation I will present the experimental language Ling. We shall get an intuitive understanding of the language through familiar concepts from imperative programming. We shall cover how Ling enables a modular and precise control on memory allocation, through a general optimization called fusion. This optimization, fusion is a cost-free abstraction mechanism which brings high level programming to system programming. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7367.html

Ecuador: how an authoritarian government is fooling the entire world (32c3)

Mon, 28 Dec 2015 19:00:00 +0100

The Ecuadorian government received international visibility when in 2012 it agreed to grant Wikileaks founder Julian Assange political asylum and host him in Ecuador's London embassy. Ecuador has since been widely praised for standing up to the United States to defend the freedom of the press and freedom of expression. However, the reality is not consistent with this image Ecuador seeks to project. Journalists inside the country face oppressive laws, huge fines and lawsuits for reporting on government corruption. Digital and physical surveillance of journalists and activists is in fact getting worse. We will analyze some of the existing leaks that prove such activities. We will also give a first-hand account from someone who had to literally run away from Ecuador for publishing leaked materials proving illegal espionage against journalists and citizens. Is Ecuador really interested in free speech? We don't think so and we will tell you why. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7134.html

Let's Encrypt -- What launching a free CA looks like (32c3)

Mon, 28 Dec 2015 19:00:00 +0100

Let's Encrypt is a new free and automated certificate authority, that entered closed beta in October and has already issued a large number of valid certificates. This talk will provide a short overview of how the Let's Encrypt client and server software work, and explore statistics gathered during our closed beta and launch period. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7528.html

G’scheitern (32c3)

Mon, 28 Dec 2015 18:15:00 +0100

„Never ever say no, act your first thought and learn to love mistakes“ – these are the basic rules of improv theatre. I will show how this can be adopted for everyday life. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7138.html

Mobile Censorship in Iran (32c3)

Mon, 28 Dec 2015 18:15:00 +0100

As Internet users increasingly connect to the Internet through smartphones, this has transformed Iran’s Internet ecology towards an increasing reliance and production in apps. In Iran, a country that practises some of the most stringent censorship and surveillance techniques in the world has seen this transformation reshape the way the government implements information controls online. While applications with popular usage on browsers such as Facebook and Twitter remain blocked through their mobile applications, platforms that predominantly exist in app form such as WhatsApp, Viber, and Instagram remain unblocked in the country. This talk will look at how the government is counteracting these policies through various means, including local imitation apps, and new programs such as ‘intelligent filtering’, and the Revolutionary Guards' “Spider” program. Additionally, a discussion of how Iranian Internet users use these platforms, especially in reference to digital security awareness and practices will be included. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7529.html

Vector retrogaming (32c3)

Mon, 28 Dec 2015 18:15:00 +0100

In this talk I'll show how to build an open source vector gaming system with MAME, a microcontroller and an XY monitor or oscilloscope. Relive the joys of playing vector video games from 1979 and enjoy some of the retro-styled vector games of 2015. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7238.html

Ein Abgrund von Landesverrat (32c3)

Mon, 28 Dec 2015 16:00:00 +0100

Im Sommer kam heraus, dass der Generalbundesanwalt Ermittlungen gegen zwei Journalisten von netzpolitik.org in Gang gesetzt hatte. Das geschah, weil sich das Bundesamt für Verfassungsschutz dadurch auf den Schlips getreten fühlte, dass Auszüge aus ihren Haushaltsplänen der allgemeinen Bevölkerung bei netzpolitik.org zugänglich gemacht wurden. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7135.html

Profiling (In)justice (32c3)

Mon, 28 Dec 2015 16:00:00 +0100

This talk will focus on the potential ability of data disaggregated by race and ethnicity to reduce discriminatory policing in Germany. In the UK, data has been collected during police procedures, allowing for a monitoring and evaluation of discriminatory policing practices. Unfortunately, such an empirically driven policy approach is not currently possible in Germany. This talk will argue that, as a first step, a policy based off the UK approach towards data collection be implemented in Germany to incorporate, rather than ignore, Germany’s diverse identities, and to allow for empirically driven and more effective policing. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7264.html

Sicherheit von 125kHz Transpondern am Beispiel Hitag S (32c3)

Mon, 28 Dec 2015 16:00:00 +0100

Der Hitag S Transponder wird in verschiedensten Applikationen eingesetzt. Während Angriffe für den Hitag 2 bereits bekannt sind, gilt der Hitag S in der Literatur noch nicht als gebrochen. Wir haben die beschriebenen Angriffe auf den Hitag S übertragen. Wir sind in der Lage den Schlüssel zu brechen und Informationen wie das Kennwort zu ermitteln, obwohl diese zusätzlich vor Lesezugriff geschützt sind. In Abhängigkeit des gewählten Angriffs benötigen wir für das Brechen des Schlüssels zwischen mehreren hundert Tagen und 5 Minuten. Wir haben einen Emulator gebaut, der jeden Hitag S Transponder nachbilden kann. Wird der Transponder in einem Schließsystem eingesetzt, können wir so eine Schlüsselkopie erstellen. Basierend auf unseren Ergebnissen und den Erfahrungen mit anderen Transpondern aus dem 125kHz Bereich können wir nur vor dem Einsatz in sicherheitskritischen Bereichen warnen. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7166.html

Software and business method patents: call for action (32c3)

Mon, 28 Dec 2015 14:00:00 +0100

Ten years after the rejection of the European software patent directive by the European Parliament, the software patent problem still is not over. Political action is required.

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7283.html

CloudABI (32c3)

Mon, 28 Dec 2015 12:45:00 +0100

CloudABI is an alternative runtime environment for UNIX-like operating systems that is purely based on the principle of capability-based security. This makes it possible to create applications that are strongly sandboxed, easier to test and easier to maintain. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7231.html

Net Neutrality in Europe (32c3)

Mon, 28 Dec 2015 12:45:00 +0100

After two years the fight for net neutrality in Europe about the Telecom Single Market Regulation has come to a close. In this talk we will analyse the new net neutrality law and it's consequences and we give you the lessons learned from two years of EU campaigning. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7387.html

Shooting lasers into space – for science! (32c3)

Sun, 27 Dec 2015 21:45:00 +0100

Light of astronomical objects gets distorted as it passes earth’s atmosphere. Adaptive optics can correct this distortion and create images that are as sharp as those taken in space. The correction needs a bright reference star. If there is no such star nearby, an artificial Laser Guide Star can be created in the upper atmosphere. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7162.html

Household, Totalitarianism and Cyberspace (32c3)

Mon, 28 Dec 2015 11:30:00 +0100

In my talk I am 1) discussing philosophical concepts of privacy, especially Hannah Arendt's philosophy. I am 2) explaining why in a liberal-democratic system we need to protect our privacy and 3) what we can morally do to prevent catastrophes such as a totalitarian system from happening again. With Hannah Arendt's arguments and her analysis of totalitarian systems in mind, I am referring to three examples from today's privacy discussions: cybermobbing, Behavioral Advertising and secret services. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7342.html

New memory corruption attacks: why can't we have nice things? (32c3)

Sun, 27 Dec 2015 21:45:00 +0100

Memory corruption is an ongoing problem and in past years we have both developed a set of defense mechanisms and novel attacks against those defense mechanisms. Novel defense mechanisms like Control-Flow Integrity (CFI) and Code-Pointer Integrity (CPI) promise to stop control-flow hijack attacks. We show that, while they make attacks harder, attacks often remain possible. Introducing novel attack mechanisms, like Control-Flow Bending (CFB), we discuss limitations of the current approaches. CFB is a generalization of data-only attacks that allows an attacker to execute code even if a defense mechanism significantly constrains execution. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7163.html

Console Hacking (32c3)

Sun, 27 Dec 2015 23:00:00 +0100

In 2011 the Nintendo 3DS was released. Today it is the most popular current-gen handheld console, having sold more than 50 million units worldwide. The 3DS features a completely redesigned architecture from its predecessors the DS and the DSi. This talk will focus on the security features of the 3DS, and how we got around them. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7240.html

APT Reports and OPSEC Evolution, or: These are not the APT reports you are looking for (32c3)

Sun, 27 Dec 2015 23:00:00 +0100

With the advancement of defensive security and the constant release of research papers into their toolsets, advanced threat actors have had to adapt with new operational security practices, as well as with new technology. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7260.html

Shopshifting (32c3)

Sun, 27 Dec 2015 21:45:00 +0100

Payment systems are old and have – unlike card protocols – seen little scrutiny so far. This talk enumerates design and implementation flaws in payment processing systems, which can defraud consumers and merchants. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7368.html

PQCHacks (32c3)

Sun, 27 Dec 2015 23:00:00 +0100

Last year your friend Karen joined the alternative music scene and sent you a sound track. The government is recording everything, and this year announced that alternative music is a gateway drug to terrorism (see http://www.theguardian.com/australia-news/2015/sep/25/radicalisation-kit-links-activism-and-alternative-music-scene-to-extremism). Fortunately, Karen encrypted the email.

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7210.html

My Robot Will Crush You With Its Soft Delicate Hands! (32c3)

Sun, 27 Dec 2015 23:00:00 +0100

In this talk Matthew Borgatti, Lead Scientist at Super-Releaser, will take you through the process of turning a puddle of goo into a working soft robot. He will take you through the different mechanisms that can be created, simple processes for fabricating soft robots, and methods for joining elements together into sophisticated assemblies. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7389.html

When hardware must „just work“ (32c3)

Sun, 27 Dec 2015 21:45:00 +0100

Software design and testing is hard, but what happens when each bug fix can cost months of delay and millions of dollars? In this talk we’ll take a behind-the-scenes look at the challenges in the design of a very complex, yet critical piece of hardware: the modern x86 CPU. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7171.html

Public Library/Memory of the World (32c3)

Sun, 27 Dec 2015 17:15:00 +0100

Public Library is the synergy of two efforts. First, it makes the case for the institution of public library and its principle of universal access to knowledge. Second, it is an exploration and development of distributed internet infrastructure for amateur librarians. If Public Library is a proposal/RFC Memory of the World is its proof of concept and reference implementation. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7279.html

Datahavens from HavenCo to Today (32c3)

Sun, 27 Dec 2015 20:30:00 +0100

Datahavens have long been discussed as a solution to user security and privacy needs. Instinctively, the idea of physical locations where servers for communications, financial privacy, and other services can work is easily understood and seems appealing. As a founder of the HavenCo datahaven on Sealand in 2000, I saw firsthand the potential and the pitfalls of this approach. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7432.html

So you want to build a satellite? (32c3)

Sun, 27 Dec 2015 20:30:00 +0100

CubeSat are small standardized satellites typically flown as secondary and containerized payloads piggybacking on the launches of larger satellites. Their low entrance cost have been a revolution in opening access to space for a broad range of institutions. In this talk the basics of CubeSat standards, technology and development are going to be presented. The goal is to proliferate the knowledge of what it takes to successfully build, launch and operate a CubeSat within and beyond the hacker community. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7341.html

Thunderstrike 2 (32c3)

Sun, 27 Dec 2015 20:30:00 +0100

Last year at 31c3 we disclosed Thunderstrike, the first firmware attacks against Macbooks. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7236.html

What does Big Brother see, while he is watching? (32c3)

Sun, 27 Dec 2015 18:30:00 +0100

In the past years there has been a lot of discussion on the topic of state sponsored surveillance. But hardly any material can be accessed to support the general debate due to vaguely declared security concerns. So we are debating Big Brother with little knowledge about what he actually sees, while he is watching. Over the course of three years, I was able to research the archives left by East Germany's Stasi to look for visual memories of this notorious surveillance system and more recently I was invited to spend some weeks looking at the archive by the Czechoslovak StB. Illustrating with images I have found during my research, I would like to address the question why this material is still relevant – even 25 years after the fall of the Iron Curtain. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7209.html

Beyond your cable modem (32c3)

Sun, 27 Dec 2015 18:30:00 +0100

Did you ever want to have access to a few hundred thousand network end points? Or a few hundred thousand phone numbers? A short look behind the curtains of how not to do network security. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7133.html

How the Great Firewall discovers hidden circumvention servers (32c3)

Sun, 27 Dec 2015 17:15:00 +0100

Several years ago, the Great Firewall of China was silently upgraded to find and block circumvention servers that employ encryption to defeat deep packet inspection. The system is now used to block protocols such as Tor, SoftEther, and SSH. In this talk, we will give an overview of how this system works, and how it can be circumvented. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7196.html

The Great Train Cyber Robbery (32c3)

Sun, 27 Dec 2015 18:30:00 +0100

For years SCADA StrangeLove team speaks about vulnerabilities in Industrial Control Systems. Now we want to show by example of railway the link between information security and industrial safety and demonstrate how a root access gained in a few minutes can bring to naught all the years of efforts that were devoted to the improvement of fail-safety and reliability of the ICS system. Railroads is a complex systems and process automation is used in different areas: to control power, switches, signals and locomotives. At this talk we will analyze threats and vulnerabilities of fundamental rail-road automation systems such as computer based interlocking, automatic train control and automatic train protection. No vendor names and vulnerabilities details will be released, for obvious reasons. By the way, all research based on hands-on security exercises and most of issues are confirmed and processed by vendors.

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7490.html

The Ultimate Amiga 500 Talk (32c3)

Sun, 27 Dec 2015 18:30:00 +0100

The Amiga was one of the most powerful and wide srpead computers in the late 80's. This talk explains its hardware design and programming. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7468.html

Windows drivers attack surface (32c3)

Sun, 27 Dec 2015 17:15:00 +0100

This presentation covers windows kernel driver security issues. It'll discuss some background, and then give an overview of the most common issues seen in drivers, covering both finding and fixing issues. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7510.html

Netzpolitik in der Schweiz (32c3)

Sun, 27 Dec 2015 16:00:00 +0100

2015 und 2016 sind wichtige Jahre für die Netzpolitik in der Schweiz, denn die Parlamente entscheiden sowohl die Revision des BÜPF (Bundesgesetz betreffend die Überwachung des Post- und Fernmeldeverkehrs) als auch das NDG (Nachrichtendienstgesetz). about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7205.html

Lifting the Fog on Red Star OS (32c3)

Sun, 27 Dec 2015 16:00:00 +0100

Angae means "Fog" in Korean. The term is widely used in parts of custom code used by the Red Star OS. We will lift the fog on the internals of North Korea's operating system. Our talk will provide information about how privacy is invaded for all users of Red Star OS and how an operating system designed by a totalitarian dictatorship works. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7174.html

Key-logger, Video, Mouse (32c3)

Sun, 27 Dec 2015 17:15:00 +0100

Key-Loggers are cool, really cool. It seems, however, that every conceivable aspect of key-logging has already been covered: from physical devices to hooking techniques. What possible innovation could be left in this field? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7189.html

A Free and Open Source Verilog-to-Bitstream Flow for iCE40 FPGAs (32c3)

Sun, 27 Dec 2015 16:00:00 +0100

Yosys (Yosys Open Synthesis Suite) is an Open Source Verilog synthesis and verification tool. Project IceStorm aims at reverse engineering and documenting the bit-stream format of Lattice iCE40 FPGAs and providing simple tools for analyzing and creating bit-stream files, including a tool that converts iCE40 bit-stream files into behavioral Verilog. Currently the bitstream format for iCE40 HX1K and HX8K is fully documented and supported by the tools. Arachne-PNR is an Open Source place&route tool for iCE40 FPGAs based on the databases provided by Project IceStorm. It converts BLIF files into an ASCII file format that can be turned into a bit-stream by IceStorm tools. This three projects together implement a complete open source tool-chain for iCE40 FPGAs. It is available now and it is feature complete (with the exception of timing analysis, which is work in progress). about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7139.html

Hardware-Trojaner in Security-Chips (32c3)

Sun, 27 Dec 2015 16:00:00 +0100

Dr. Peter Laackmann und Marcus Janke zeigen mit einem tiefen Einblick in die Welt der Hardware-Trojaner, auf welchem Wege „Institutionen“ versuchen können, sich versteckten Zugang zu Sicherheits-Hardware zu verschaffen. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7146.html

Internet Landscapes (32c3)

Sun, 27 Dec 2015 14:00:00 +0100

In Internet Landscapes, Evan Roth with discuss his work as it relates to visualizing, archiving and understanding the Internet and its effects on culture with a focus on the misuse of communication technologies. Roth will trace his personal and creative history within an Internet landscape that has changed significantly in the last 16 years. The presentation will include a range of work culminating in his more recent pilgrimages to the beaches of the UK, New Zealand and Sweden, where submarine Internet fiber optic cables reach the land. Armed with an array of paranormal technologies, Roth will recount his personal quest to visualize and reconnect with a changing Internet landscape. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7538.html

PLC-Blaster (32c3)

Sun, 27 Dec 2015 14:00:00 +0100

Unser Vortrag demonstriert einen PLC-only Wurm. Der PLC-Wurm kann selbstständig ein Netzwerk nach Siemens Simatic S7-1200 Geräten in den Versionen 1 bis 3 durchsuchen und diese befallen. Hierzu ist keine Unterstützung durch PCs oder Server erforderlich. Der Wurm „lebt“ ausschließlich in den PLCs. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7229.html

The exhaust emissions scandal („Dieselgate“) (32c3)

Sun, 27 Dec 2015 14:00:00 +0100

Analysis of the emission scandal shaking the German automotive industry from a procedural, organizational and technical level. Includes insight into cheating for advanced managers and code extraction from ECUs from Ebay. And from Volkswagen. Initially. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7331.html

rad1o++ (32c3)

Sun, 27 Dec 2015 14:00:00 +0100

News about the rad1o half a year later – cool stuff that happened, and why you need an SDR. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7153.html

Avoiding kernel panic: Europe’s biggest fails in digital policy-making (32c3)

Sun, 27 Dec 2015 12:45:00 +0100

In recent years, NGOs have been struggling to defend civil rights in Brussels. As human rights defenders, it is part of our job to detect failures in the EU’s digital policy-making. But we rarely have the opportunity to explore the underlying reasons and to debug Europe’s kernel package. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7227.html

Towards (reasonably) trustworthy x86 laptops (32c3)

Sun, 27 Dec 2015 12:45:00 +0100

Can we build trustworthy client systems on x86 hardware? What are the main challenges? What can we do about them, realistically? Is there anything we can? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7352.html

REXUS/BEXUS - Rocket and Balloon Experiments for University Students (32c3)

Sun, 27 Dec 2015 12:45:00 +0100

The REXUS/BEXUS programme allows students from universities and higher education colleges across Europe to carry out scientific and technological experiments on research rockets and balloons. Each year, two rockets and two balloons are launched, carrying up to 20 experiments designed and built by student teams. By reference of two experiments we were involved in, we will explain the way from the experiment idea to the launch and test of it. about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7325.html

NSA-Untersuchungsausschuss: Zwischen Aufklärungswillen und Mauern aus Schweigen (32c3)

Sun, 27 Dec 2015 12:45:00 +0100

Im März 2014 wurde der NSA-Untersuchungsausschuss im Bundestag eingesetzt, der die Verwicklungen um die deutschen Geheimdienste aufklären soll. Ein Rück- und Ausblick: Was wissen wir heute, was erwartet uns noch?

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7228.html

Hacking EU funding for a decentralizing FOSS project (32c3)

Sun, 27 Dec 2015 11:30:00 +0100

FOSS and hacker culture meeting the EU buereaucracy. What can possibly come out of that? We'll discuss what is involved for FOSS projects and other interested parties to get $$$ funding by the European Union. Hackers deal with rule systems and their execution. And the European Union issues a lot of rules which are executed by the "commission" and its employees. Within the Horizon2020 framework programme 80.000.000.000 Euros will be distributed towards research projects across Europe between 2014-2020. Shouldn't some of that money go to purposes deemed useful by 32c3 attendants? about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7300.html

32C3 Keynote (32c3)

Sun, 27 Dec 2015 11:30:00 +0100

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7565.html

32C3 Opening Event (32c3)

Sun, 27 Dec 2015 11:00:00 +0100

about this event: https://events.ccc.de/congress/2015/Fahrplan/events/7550.html