Breaking Samsung's Root of Trust: Exploiting Samsung S10 Secure Boot
Being the highest market share smartphone manufacturer, Samsung conducts a series of protection on Android called Knox Platform to ensure the security of its smartphones. During the booting process, Samsung uses S-boot (Secure Boot) to make sure it can only boot a stocked image. If the device tries to boot a custom image, it will trip a one-time programmable bit e-fuse (a.k.a Knox bit). Once a trustzone app (trustlet) detects the Knox bit tripped, it will delete the encryption key for the sensitive data to prevent unauthorized data access to the locked phone. In this presentation, we'll present several vulnerabilities we found in S-Boot that are related to USB request handling.
By Cheng-Yu Chao, Hung Chi Su and Che-Yang Wu
Full Abstract & Presentation Materials: https://www.blackhat.com/us-20/briefings/schedule/#breaking-samsungs-root-of-trust-exploiting-samsung-s-secure-boot-20290
Видео Breaking Samsung's Root of Trust: Exploiting Samsung S10 Secure Boot канала Black Hat
By Cheng-Yu Chao, Hung Chi Su and Che-Yang Wu
Full Abstract & Presentation Materials: https://www.blackhat.com/us-20/briefings/schedule/#breaking-samsungs-root-of-trust-exploiting-samsung-s-secure-boot-20290
Видео Breaking Samsung's Root of Trust: Exploiting Samsung S10 Secure Boot канала Black Hat
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Stealthily Access Your Android Phones: Bypass the Bluetooth Authentication
Demigod: The Art of Emulating Kernel Rootkits
Flutter Tutorial for Beginners - Build iOS and Android Apps with Google's Flutter & Dart
IoT Skimmer: Energy Market Manipulation through High-Wattage IoT Botnets
Word 2016 Tutorial Complete for Professionals and Students
The Memory Sinkhole - Unleashing An X86 Design Flaw Allowing Universal Privilege Escalation
Hardware root of trust with Google Cloud IoT Core and Microchip
You have No Idea Who Sent that Email: 18 Attacks on Email Sender Authentication
Ochko123 - How the Feds Caught Russian Mega-Carder Roman Seleznev
PKI - trust & chain of trust -why, who and how?
A Decade After Stuxnet's Printer Vulnerability: Printing is Still the Stairway to Heaven
Repurposing Neural Networks to Generate Synthetic Media for Information Operations
Programming in Visual Basic .Net How to Connect Access Database to VB.NET
Hardware Security - CompTIA Security+ SY0-501 - 3.3
Como Solucionar AVISO LOGO INICIAL - TRUCO Samsung Bootloader por FIN REVELADO
OpenCV Course - Full Tutorial with Python
Pulling Back the Curtain on Airport Security: Can a Weapon Get Past TSA?
Hacking the Supply Chain – The Ripple20 Vulnerabilities Haunt Tens of Millions of Critical Devices
Recovery y Root - Android 11 One UI 3.X - Samsung Galaxy S10 Series
Photoshop for Beginners | FREE COURSE