Conferences and supporting programme
Live Hacking: Hardware-enforced Virtualization of a Linux Home Gateway
Trust and security have never been more important to the embedded computing world, especially when it comes to network devices, such as home gateways, that are the first line of defense for the IoT devices connected to the smart home. Already this year a plethora of stories have confirmed that these devices are fundamentally broken from a security perspective. Last year, prpl Foundation Chief Security Strategist, Cesare Garlati, hosted a hugely successful live demonstration showing attendees how the non-profit’s new approach to embedded computing security actually works in a industrial Internet scenario - i.e. secure remote control of a robotic arm. He’s back this year with a new demonstration designed to show the application of the new capabilities of the prplSecurity Framework 2.0 to a completely different real word scenario: a typical Linux-based Internet router. Garlati will start by downloading the necessary code from various open source repositories. He will then configure, build and install a new hardened firmware image to create multi-domain security via hardware virtualization. He will then launch in real time several network attacks to exploit known vulnerabilities of the Linux instance. This will show how the breach is contained to the target VM, while the critical components of the system remain unaffected by the ongoing attack. This session is a must see for security architects, penetration testers and for anyone who wants to see how a real-world attack is conducted and how hardware virtualization can effectively mitigate the impact of network exploits.
--- Date: 28.02.2018 Time: 11:30 AM - 12:30 PM Location: Conference Counter NCC Ost