Security
Security issues, software and reports.

 
Home

Broadcast Flag

Privacy Digest

Children's Books

DVD & VHS Movies

Cool Electronics

Video Games

Lots Of Good Deals

Jewelry

Gourmet Foods

Beauty

Lots Of Good Books(Law)

Lots Of Good Books(Health)

Lots Of Good Books(Medicine)

Lots Of Good Books(Biography)

Lots Of Good Books(Law)


Subscribe to "Security" in Radio UserLand.

Click to see the XML version of this web page.

Click here to send an email to the editor of this weblog.

 
 

  Tuesday, February 27, 2007

Battle brewing over RFID chip-hacking demo | InfoWorld | 2007-02-26 | By Paul F. Roberts

Secure card maker HID Corp. is objecting to a demonstration of a hacking tool at this week's Black Hat Federal security conference in Washington, D.C. that could make it easy to clone a wide range of so-called "proximity" door access cards.

HID has sent a letter to IOActive, a security consulting firm, accusing Chris Paget, IOActive's director of research and development, of possible patent infringement over a planned presentation, "RFID for beginners," on Wednesday, a move that could lead to legal action should the talk go forward, according to Jeff Moss, founder and director of Black Hat.

[ See also our Video: "Hack in action" ]


10:04:59 PM    

Lawsuits, patent claims silence Black Hat talk | InfoWorld | 2007-02-27 | By Paul F. Roberts

A planned talk on RFID security by a security researcher has been pulled from this week's Black Hat Federal security conference after secure card maker HID claimed the talk violated the company's patent rights and threatened to take legal action against Chris Paget, the researcher, and IOActive, Paget's employer, if the talk went forward.

The company decided to cancel the talk after all-night negotiations with HID collapsed, said Josh Pennell, CEO of IOActive. In response, Black Hat organizers were forced to tear materials out of printed show proceedings and will instead present a discussion by a representative of the ACLU on the criticality of RFID security, said Jeff Moss, founder and director of Black Hat.

A spokeswoman for HID did not immediately respond to a request for comment.

The incident recalled a 2005 dispute over a presentation at Black Hat in Las Vegas involving Cisco Systems and Michael Lynn, a security researcher who worked for Internet Security Systems at the time.


9:59:50 PM    

New Controversy over Black Hat Presentation.
New Controversy over Black Hat Presentation. uniquebydegrees writes  "InfoWorld is reporting about a new controversy swirling around a planned presentation at Black Hat Federal in Washington D.C. this week. Security researcher Chris Paget of IOActive will demo an RFID hacking tool that can crack HID brand door access cards. HID Corp., which makes the cards, is miffed and is accusing IOActive of patent infringement over the presentation, recalling the legal wrangling over Michael Lynn's presentation of a Cisco IOS hole at Black Hat in 2005. Black Hat's Jeff Moss says they're standing by their speaker. A news conference is scheduled for tomorrow AM." Update: 02/27 20:10 GMT by Z :InfoWorldMike wrote with a link to story saying that the presentation has been pulled from the slate for Black Hat, as a result of this pressure. [Slashdot]
9:55:39 PM    

Administrivia: Now we have a overheated CPU ( 60 degrees centigrade )
OK, if the DDOS attack wasn't enough. Now our server went down with a temperature overload. We were up to 60 degrees centigrade when we shut down. The CPU and a broken fan have been replaced.

7:39:01 PM    

Administrivia: Our data-center was hit by a DDOS attack today.
Sorry for being either very slow or off the net for a while recently. The data-center we are part of was hit by a DDOS (Distributed Denial Of Service) attack recently. At the moment it looks to be under control, but we are keeping an eye on things.

5:19:59 PM    

Windows Genuine Advantage Gets More Lenient.
Windows Genuine Advantage Gets More Lenient. Troglodyte writes in with word that Microsoft is revamping its Windows Genuine Advantage program so that it labels fewer users pirates. WGA now has a third category besides "genuine and "not genuine," called "not sure." Quoting: "[I]t's quite obvious what is going on here: Microsoft has added 'not sure' as a way of cutting down on the number of false positives associated with WGA. As many as one in five PCs were failing WGA checks, but this new setting should both reduce this and give Microsoft the chance to investigate further the kinds of things that are landing folks in the 'not sure' category." [Slashdot]
4:37:02 PM    

Migrating to Windows Vista: Recognize the Security Risks.
Migrating to Windows Vista: Recognize the Security Risks. (Source: Messagelabs) What are the security risks involved in migrating to Microsoft Vista? This white paper examines the implications in terms of messaging and web security which IT managers urgently need to consider. [Computerworld Privacy News]
4:25:09 PM    

Click here to visit the Radio UserLand website. © Copyright 2007 Paul Hardwick.
Last update: 3/4/07; 10:44:47 AM.

February 2007
Sun Mon Tue Wed Thu Fri Sat
        1 2 3
4 5 6 7 8 9 10
11 12 13 14 15 16 17
18 19 20 21 22 23 24
25 26 27 28      
Jan   Mar