Week4 Board Notes
Mar 1, 2017
2 minutes read

week-4-notes-1

A classmate recommends Dark Territory: The Secret History of Cyber War. I’ve reserved it at the library :-) Excerpt from the New York Times review in which life imitates art:

Kaplan had access to several of these people, and so the book is peppered with many fascinating behind-the-scenes ­anecdotes. For example, it opens with the story of Ronald Reagan watching the 1983 Matthew Broderick hacker movie “WarGames,” which led him to ask for the first national security policy directive on information systems security.

We got to talking about Stuxnet when a classmate took us into the nasty details of how it infected embedded systems without leaving a trace.

Zero Days is a movie on the subject that was mentioned (I haven’t seen it yet).

We got into biometrics, including voice patterns. I had to mention that famous plot element from Sneakers (all-star cast!)

Nuance Voice Biometrics is one product that supports this.

Smshing – phishing via SMS – was a new word for me.

We reviewed various password managers just in time for the news of the week for Password Manager Vulnerabilities.

We also talked about different multi-factor authentication mechanisms, including things like Yubkey hardware. These are all “something you have” proof mechanisms (as opposed to your password, which is “something you know”)

The XKCD comic I’d hinted at:

xkcd

There are more good ones.

xkcd

Microsoft explains Pass the Hash attacks.

Stingrays are fake cellular base stations law enformcent can use for surveillance purposes.

What smartphone does POTUS use?

SIM card cloning is a thing

SIM Cloning Tool is only for forensic purposes. The cloned SIM will never connect to an operator’s network! The purpose of this tool is to isolate a phone from its network for secure investigations.

week-4-notes-2

Shamir’s Secret Sharing, Red October, Shibboleth, …

By coincidence (see above) we mentioned WarGames later, with the opening scene having an example of a dual-key or split-key protocol.


Back to posts