Posts

WAC3 Talk About KNOB and BIAS Attacks

I’m glad to give a talk about the KNOB and BIAS attacks on Bluetooth at the third Workshop on Attacks in Cryptography (WAC) co-located with
CRYPTO 2020. The Workshop will be held online on Zoom the 16th of August 2020, and my talk will be from 13:20 to 14:00 (EDT) in the Attacks on Standards session (session IV).

Tutor Island: Matematica & Codice

Condivido con piacere Tutor Island il nuovo canale YouTube del mio amico e collega Paolo. Su questo canale potrete trovare tutorial in Italiano (e prossimamente anche in Inglese) su argomenti matematici, informatici e ingegneristici. Per esempio linko qui sotto una playlist con un corso per ingegneri che vogliono programmare in MATLAB/Octave:

Slides and video from our hardwear.io 2020 talk

Here are the slides and the recording of our hardwear.io talk titled From Bluetooth Standard to Standard-Compliant 0-days:

Key Negotiation Downgrade Attacks on Bluetooth and Bluetooth Low Energy

Our new paper Key Negotiation Downgrade Attacks on Bluetooth and Bluetooth Low Energy will appear in the ACM Transactions on Privacy and Security.

Our paper extends our previous work on the KNOB attack on Bluetooth BR/EDR to Bluetooth Low Energy (BLE), presents an updated evaluation of the KNOB attack for Bluetooth BR/EDR and discusses some of the countermeasures put in place by vendors such as Google and Apple after the disclosure of the KNOB attack and the amendment of the Bluetooth standard.

KNOB Attacks Talk at Hardwear.io 2020

I’m glad to give a talk titled From the Bluetooth Standard to Standard Compliant 0-days together with Mathias Payer at the virtual edition of Hardwear.io 2020.

Our talk covers, among others, the technical details behind the Key Negotiation Of Bluetooth (KNOB) attack on Bluetooth BR/EDR, its extension to BLE, and the countermeasures adopted by vendors, such as Google and Apple, to mitigate the KNOB attacks.

InspiredResearch Newsletter University of Oxford

The InspiredResearch (Winter 2019 Issue 15) twice-yearly newsletter from the Computer Science Department of the University of Oxford features a nice article about the KNOB attack by Prof. Kasper Rasmussen.

Security Engineering Third Edition (SEv3)

Recently, I’ve stumbled upon the webpage about Security Engineering – Third Edition (SEv3) by Prof. Ross Anderson. I’m particularly attached to this book, as it is the first book about information security that I bought (I bought SEv2 in 2012), and it was very helpful to introduce me to security engineering (coming from an EE background) and to tackle my master thesis about Random Number Generators. Actually, I have to thank Prof. Wayne Burleson for the book recommendation!