This paper discusses the hardware foundations of the cryptosystem employed by the Xbox TM video game console from Microsoft. A secret boot block overlay is buried within a system ASIC. This secret boot block decrypts and verifies portions of an external FLASH-type ROM. The presence of the secret boot block is camouflaged by a decoy boot block in the external ROM. The code contained within the secret boot block is transferred to the CPU in the clear over a set of high-speed busses where it can be extracted using simple custom hardware. The paper concludes with recommendations for improving the Xbox security system. One lesson of this study is that the use of a high-performance bus alone is not a sufficient security measure, given the advent of inexpensive, fast rapid prototyping services and high-performance FPGAs.
Read the rest of this entry »

• 0 Comments

The Web paradigm adds a whole new level of complexity to traditional application development. The phrase “You’ve got just 15 seconds to grab a user’s attention” is fast becoming a cliché, but it really sums up the idea. You’re no longer just creating an application, but a commercial or a TV show, and the user has his or her hand on the remote. It’s called surfing the Web for a reason. As a developer, you need to be keenly aware of the impact of architectural and implementation decisions on application performance and scalability. With this technology, as we are discovering, we are still dealing with a client/server model.
Read the rest of this entry »

• 0 Comments

The security mechanisms Known vulnerabilities Tools that are used Live demonstration Who is investigating Adam Laurie CSO of The Bunker Secure Hosting Ltd. DEFCON staff and organizer Maintainer of the Linux Bluetooth stack Marcel Holtmann Martin Herfurt
Security researcher Founder of trifinite.org What is this about What is Bluetooth Bluetooth SIG Trade association Founded 1998 Owns and licenses IP Bluetooth technology A general cable replacement Using the ISM band at 2.4 GHz Protocol stack and application profiles How it works Data and voice transmission ACL data connections SCO and eSCO voice channels Piconet and scatternet topology Frequency hopping 79 channels 1600 hops per second Creating the topology Hopping sequence defines the piconet
Read the rest of this entry »

• 0 Comments

Processor CPU Motorola 68HC000, 16-bit CMOS microprocessor 15.6672 MHz Addressing 32-bit internal registers 24-bit address bus 16-bit data bus Memory RAM 2 MB of 100 ns pseudostatic RAM (PSRAM) standard, expandable to 8 MB ROM 256K (two 128K by 8-bit devices); 150 ns access time; addressing supports up to 4 MB PRAM 128 bytes of parameter memory VRAM 32K of pseudostatic video display memory Clock/Calendar CMOS custom chip with long-life lithium battery Disk Storage Floppy Drive (Optional) External Macintosh HDI-20 1.4 MB drive 4.5 W startup power; 1.25 W random operation; 50 mW idle 20 MB Hard Drive 20 MB formatted capacity
Read the rest of this entry »

• 0 Comments

Setting Up Mac OS X Server for the First Time 41 Getting Help for Everyday Management Tasks 41 Getting Additional Information 41 1 Administering Your Server 43 Highlighting Key Features 43 Ease of Setup and Administration 43 Networking and Security 44 File and Printer Sharing 44 Open Directory Services 45 Comprehensive Management of Macintosh Workgroups 45 High Availability 46 Extensive Internet and Web Services 46 Highlighting Individual Services 46 Directory Services 47 Open Directory 47 Password Validation 47 Search Policies 48 File Services 48 Sharing 48 Apple File Service 49 Windows Services 49 Network File System (NFS) Service 49 File Transfer Protocol (FTP)
Read the rest of this entry »

• 0 Comments

The trend of data intensive grid applications has brought grid storage protocols and servers into focus. The objective of this study is to gain an understanding of how time is spent in the storage protocols and servers. The storage protocols have a variety of tuning parameters. Some parameters improve single client performance at the expense of in- creased server load, thereby limiting the number of served clients. What ultimately matters is the throughput of the whole system. Some param- eters increase the flexibility or security of the system at some expense. The objective of this study is to make such trade-o?s clear and enable easy full system optimization.
Read the rest of this entry »

• 0 Comments

Secure shell (SSH) can safely be called one of the rare successes in which a more secure technology has largely replaced a less secure but entrenched tool: telnet. We perform a market analysis to determine how and why SSH succeeded despite the existence of an entrenched legacy tool while similar technologies such as secure file transfer protocols have been far less successful. We show that network externalities, usually a first order effect, were not a significant factor impeding the adoption of SSH, and that SSH offered equivalent functionality and greater ease of use. We argue that these factors were the primary consideration in the willingness to change.
Read the rest of this entry »

• 0 Comments

What is SSH SSH (Secure SHell) is a network protocol which provides a replacement for insecure remote login and command execution facilities, such as telnet, rlogin and rsh. SSH encrypts traffic in both directions, preventing traffic sniffing and password theft. SSH also offers several additional useful features: Compression: traffic may be optionally compressed at the stream level. Public key authentication: optionally replacing password authentication. Authentication of the server: making man-in-the-middle attack more difficult Port forwarding: arbitrary TCP sessions can be forwarded over an SSH connection.
Read the rest of this entry »

• 0 Comments