UCONN | UNIVERSITY OF CONNECTICUT

Secure Computation Laboratory

Professor Marten van Dijk
Advertisment
Purpose

These seminars are open for attendance to anyone interested in security research

Mailing List
Anyone can subscribe to the list by going to: https://listserv.uconn.edu/scripts/wa.exe?INDEX.
Register, login, find "SECURITYSEMINAR-L", and subscribe. Instructions are available here.
Contact
For any questions, please contact: Haibin Zhang

The Embedded Capture the Flag Challenge Report

Speaker: Waldemar Cruz, Patrick Dunham

MITRE Corporation is sponsoring an Embedded Capture the Flag Challenge centered around a secure firmware distribution mechanism for embedded automotive control. MITRE invited several universities to compete in the competition. Teams are expected to design a secure firmware bootloader and associated tools and deliver that to MITRE. In the second phase, teams will then attack the designs of all other teams and attempt to collect "flags" embedded in downloaded firmware. In this presentation, explain the rules and other background information about the competition. We will then describe the different attacks that we have researched such as brownout attacks, clock glitching, power-side channel attacks and decapping. Furthermore, we will present the countermeasures we have developed to protect against the aforementioned vulnerabilities.