- More porn sneaks onto the iPhone
- 'Swatting' case shows need to ban caller-ID spoofing
- Why the iPhone can't be "killed"
- Nortel enterprise chief wants to bring back Bay
- US sets final emergency responder wireless pilot
A presentation scheduled for Black Hat USA 2007 that promised to undermine chip-based desktop and laptop security has been suddenly withdrawn without explanation.
The briefing, “TPMkit: Breaking the Legend of [Trusted Computing Group’s Trusted Platform Module] and Vista (BitLocker),” promised to show how computer security based on trusted platform module (TPM) hardware could be circumvented
“We will be demonstrating how to break TPM,” Nitin and Vipin Kumar said in their abstract for their talk that was posted on the Black Hat Web site but was removed overnight Monday.
“The demonstration would include a few live demonstrations. For example, one demonstration will show how to login and access data on a Windows Vista System (which has TPM + BitLocker enabled),” the abstract said.
BitLocker is disk-encryption technology in Microsoft’s Vista operating system that relies on TPM to store keys.
In an e-mail, Vipin Kumar says, “We have pulled back our presentation from … Black Hat. So, we won't be presenting anything related to TPM/BitLocker in Black Hat. . . . We would not like to say anything about the TPM/BitLocker for the time being.” He didn’t respond to inquiries about why the brothers withdrew.
A spokeswoman for the conference was unable to offer more information. “At their request, they are no longer presenting. That is all the info I have,” said the spokeswoman, Nico Sell, in an e-mail.
The conference brings together technically savvy security experts from business, government and the hacking community to discuss the latest security technologies. Frequently, Black Hat briefings become controversial because they point out previously unknown weaknesses in products or technologies.
The Kumars’ promised exploit would be a chink in the armor of hardware-based system integrity that TPM is designed to ensure.
TPM is also a key component of Trusted Computing Group’s architecture for network access control (NAC). TPM would create a unique value or hash of all the steps of a computer’s boot sequence that would represent the particular state of that machine, according to Steve Hanna, co-chair of TCG’s NAC effort.
This initial hash of a known, trusted machine would be stored in the TPM and compared to the hash that is created when that machine last booted up. As part of TCG’s NAC plan, if the hash values don’t match, that indicates the machine has been altered and might no longer be secure, says Hanna.
The Leader in Network Knowledge
Comments (6)
Black Hat Orgy-goers uniteBy Schratboy on July 3, 2007, 10:47 amIt's about time the dark underbellied technologists get some character. The predatory nature of the market encourages people to undermine and challenge the orthodoxy...
Reply | Read entire comment
You have a point about the DMCA.By nighthawk808 on July 2, 2007, 9:38 pmLook what happened to Dmitry Sklyarov back in 2001. And this was before the USA became a dictatorship after 9/11; it would only be worse now.
Reply | Read entire comment
Probably not a conspiracyBy Anonymous on June 29, 2007, 2:13 pmThis year, every speaker at Black Hat is required to provide their slides AND a paper about their presentation. Last weekend we were all asked if we would have our...
Reply | Read entire comment
Don't blame them....By Anonymous on June 29, 2007, 1:08 pmThey would probably be thrown in jail after they stepped off of the plane thanks to the wonderful DCMA
Reply | Read entire comment
Not wise to pull this presentationBy Anonymous on June 29, 2007, 11:13 amIt is the most egregious error of any organization to implement the model of 'Security-Through-Obscurity" Pulling this presentation and not deseminating this information...
Reply | Read entire comment
View all comments