Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Hardware security testing 101 (Null - Delhi Chapter)

180 views

Published on

Hardware Security Testing 101 - 12th July 2020

Published in: Education
  • Be the first to comment

  • Be the first to like this

Hardware security testing 101 (Null - Delhi Chapter)

  1. 1. By Arun Mane a.K.a r00tkill3r
  2. 2. § ./../Arun Mane § Founder and director of AmynaSec Labs § Security (Hardware,Vehicle, ICS,IoT ) § Speaker and Trainer – Defcon,Blackhat, Nullcon,HITB,HIP,Defcon….many § Reachable on twitter @rootkill3r § armane@amynasec.io 2
  3. 3. 3 • IoT Devices • Connected CAR/Vehicle devices – FMS,ECU etc • Medical Devices • Industrial Control System – PLC, RTU, IED, Sensors etc • Telco Devices
  4. 4. 4 • Publicly accessible i.e on public IP address • Backdoor access management • Hardcoded credentials • Crypto issues • Web application management issues • Etc
  5. 5. 5 • Web application/Cloud Security Testing • Mobile application testing • External communication testing with respect to embedded device (BLE,Wifi,Zigbee,LoRA etc.) • Hardware Testing
  6. 6. 6 • PCB reverse engineering (Interface or test pad identification etc) • Component identification • Analyzing Datasheet • Communication interception between IC’s (SPI,I2C etc) • Data Dump from storage • Data analysis of dumped data • Fault injection • Side channel analysis.
  7. 7. 7
  8. 8. 8
  9. 9. 9
  10. 10. 10
  11. 11. 11
  12. 12. 12
  13. 13. 13
  14. 14. 14
  15. 15. 15
  16. 16. 16
  17. 17. 17
  18. 18. 18
  19. 19. Questions ? 19

×