Difference between revisions of "AFSecurity Seminar"

From mn/ifi/AFSecurity
Jump to: navigation, search
Line 5: Line 5:
 
| '''TIME:'''&nbsp; 10:00h, Friday 4 October 2019<br />'''PLACE:'''&nbsp;  Kristan Nygaards Hall (Room 5370), IFI, UiO - OJD House<br /><br />'''AGENDA:'''<br />
 
| '''TIME:'''&nbsp; 10:00h, Friday 4 October 2019<br />'''PLACE:'''&nbsp;  Kristan Nygaards Hall (Room 5370), IFI, UiO - OJD House<br /><br />'''AGENDA:'''<br />
 
10:00h Welcom at UiO<br />10:15h Invited Talk:
 
10:00h Welcom at UiO<br />10:15h Invited Talk:
| [[File:Logo-SINTEF.png|300px|link=https://sintef.no/]]
+
| [[File:Logo-Tulsa.jpg|102px|link=https://utulsa.edu/]]
 
|}
 
|}
 
* '''TALK:''' &nbsp;''Case Studies in Invasive Embedded Device Forensics: Evidence Extraction and Firmware Verification''<br />'''SPEAKER:''' ''Sujeet Shenoi'' (University of Tulsa, USA) &nbsp; <br />'''ABSTRACT:'''  This presentation describes various electronic, physical and chemical techniques for extracting data and firmware from embedded devices.  The techniques range from basic non-invasive techniques to sophisticated invasive techniques using chip desoldering and chemical etching or laser ablation to expose bond wires inside chip packages and extract data.  Several case studies related to evidence extraction from embedded devices are presented.  Also, case studies dealing with the extraction and verification of firmware in suspected supply chain compromises are presented.
 
* '''TALK:''' &nbsp;''Case Studies in Invasive Embedded Device Forensics: Evidence Extraction and Firmware Verification''<br />'''SPEAKER:''' ''Sujeet Shenoi'' (University of Tulsa, USA) &nbsp; <br />'''ABSTRACT:'''  This presentation describes various electronic, physical and chemical techniques for extracting data and firmware from embedded devices.  The techniques range from basic non-invasive techniques to sophisticated invasive techniques using chip desoldering and chemical etching or laser ablation to expose bond wires inside chip packages and extract data.  Several case studies related to evidence extraction from embedded devices are presented.  Also, case studies dealing with the extraction and verification of firmware in suspected supply chain compromises are presented.
Line 17: Line 17:
 
14:00h Welcom at UiO<br />
 
14:00h Welcom at UiO<br />
 
14:15h Invited Talk:
 
14:15h Invited Talk:
| [[File:Logo-SINTEF.png|300px|link=https://sintef.no/]]
+
| [[File:Logo-Tulsa.jpg|102px|link=https://utulsa.edu/]]
 
|}
 
|}
 
* '''TALK:''' &nbsp;''How Open-Source Intelligence is Used to Attack Critical Infrastructure Assets''<br />'''SPEAKER:''' ''Sujeet Shenoi'' (University of Tulsa, USA) &nbsp; <br />'''ABSTRACT:'''  This case-study-based presentation demonstrates how open-source information can be collected and leveraged to attack critical infrastructure assets.  The case studies include the Stuxnet malware, information operations on an offshore oil and gas platform and a cyber and physical penetration of a financial entity.
 
* '''TALK:''' &nbsp;''How Open-Source Intelligence is Used to Attack Critical Infrastructure Assets''<br />'''SPEAKER:''' ''Sujeet Shenoi'' (University of Tulsa, USA) &nbsp; <br />'''ABSTRACT:'''  This case-study-based presentation demonstrates how open-source information can be collected and leveraged to attack critical infrastructure assets.  The case studies include the Stuxnet malware, information operations on an offshore oil and gas platform and a cyber and physical penetration of a financial entity.

Revision as of 16:42, 27 September 2019

Embedded-Device Forensics

TIME:  10:00h, Friday 4 October 2019
PLACE:  Kristan Nygaards Hall (Room 5370), IFI, UiO - OJD House

AGENDA:

10:00h Welcom at UiO
10:15h Invited Talk:

Logo-Tulsa.jpg
  • TALK:  Case Studies in Invasive Embedded Device Forensics: Evidence Extraction and Firmware Verification
    SPEAKER: Sujeet Shenoi (University of Tulsa, USA)  
    ABSTRACT: This presentation describes various electronic, physical and chemical techniques for extracting data and firmware from embedded devices. The techniques range from basic non-invasive techniques to sophisticated invasive techniques using chip desoldering and chemical etching or laser ablation to expose bond wires inside chip packages and extract data. Several case studies related to evidence extraction from embedded devices are presented. Also, case studies dealing with the extraction and verification of firmware in suspected supply chain compromises are presented.

11:00h Discussion

Threat of Open-Source Intelligence

TIME:  14:00h, Friday 4 October 2019
PLACE:  Kristan Nygaards Hall (Room 5370), IFI, UiO - OJD House

AGENDA:

14:00h Welcom at UiO
14:15h Invited Talk:

Logo-Tulsa.jpg
  • TALK:  How Open-Source Intelligence is Used to Attack Critical Infrastructure Assets
    SPEAKER: Sujeet Shenoi (University of Tulsa, USA)  
    ABSTRACT: This case-study-based presentation demonstrates how open-source information can be collected and leveraged to attack critical infrastructure assets. The case studies include the Stuxnet malware, information operations on an offshore oil and gas platform and a cyber and physical penetration of a financial entity.

15:00h Discussion


SPEAKER BIO
Sujeet Shenoi is the F.P. Walter Professor of Computer Science and a Professor of Chemical Engineering at the University of Tulsa, Tulsa, Oklahoma; and a member of the technical staff at Johns Hopkins University Applied Physics Laboratory, Laurel, Maryland. An active researcher with specialties in cyber security, cyber operations, critical infrastructure protection and digital forensics, Dr. Shenoi works on exciting “problems” ranging from helping solve homicides to penetrating telecommunications systems, oil and gas pipelines, wind farms and voting machines. Dr. Shenoi is the Editor-in-Chief of the International Journal of Critical Infrastructure Protection (Elsevier); and Editor of the Advances in Digital Forensics and Critical Infrastructure Protection (Springer) series, now in their thirteenth and eleventh volumes, respectively. He spearheads the University of Tulsa's elite Cyber Corps Program that trains “MacGyvers” for U.S. government agencies, and is the Director of the Cyber Security Education Consortium, a National Science Foundation ATE Center that is building a high-tech workforce in the Southwestern United States. For his innovative strategies integrating academics, research and service, Dr. Shenoi was named the 1998-1999 U.S. Professor of the Year by the Carnegie Foundation.

AFSecurity-small.png AFSecurity is organised by the UiO Research Group on Information & Cyber Security Sec-uio-light-1000.png