#Side Channel Attacks

Side-Channel Attacks on Shared Search Indexes

Explore side-channel attacks on shared search indexes, uncovering vulnerabilities in multi-tenant systems. Learn about STRESS attack techniques and their implications for popular services.

Add to list

17 Lesons

21 minutes

On-Demand

Free-Video

Port Contention for Fun and Profit

Explore SMT execution engine sharing as a side-channel leakage source, targeting ports to create a high-resolution timing side-channel for attacks on various architectures and applications.

Add to list

14 Lesons

22 minutes

On-Demand

Free-Video

Leave Me Alone - App-Level Protection against Runtime Information Gathering on Android

Explores app-level protection against runtime information gathering on Android, proposing App Guardian to pause suspicious background processes and thwart malicious monitoring attempts without system modifications.

Add to list

17 Lesons

18 minutes

On-Demand

Free-Video

Private Resource Allocators and Their Applications

Introduces private resource allocators to prevent allocation-based side-channel attacks in systems like anonymous messaging, with various constructions offering different privacy guarantees and trade-offs in efficiency.

Add to list

16 Lesons

17 minutes

On-Demand

Free-Video

WaveSpy - Remote and Through-Wall Screen Attack via mmWave Sensing

Explores a novel screen attack method using mmWave sensing to remotely capture display content through walls, bypassing traditional security measures and demonstrating vulnerabilities in isolated environments.

Add to list

24 Lesons

16 minutes

On-Demand

Free-Video

USENIX Enigma Conference

LLC Cache Attacks: Applicability and Countermeasures

Exploring Last Level Cache attacks, their applicability across various scenarios, and potential countermeasures to enhance system security and protect user privacy.

Add to list

11 Lesons

20 minutes

On-Demand

Free-Video

The Cyber Academy

Practical Side-Channel Attacks on Embedded Device Cryptography - Dr Owen Lo and Doug Carson

Explore side-channel attacks on embedded devices, including techniques, history, and real-life examples. Learn about power analysis methods and their implications for cryptography.

Add to list

26 Lesons

52 minutes

On-Demand

Free-Video

Raccoon Attack - Finding and Exploiting Most-Significant-Bit-Oracles in TLS-DH(E)

Explore the Raccoon Attack on TLS-DH(E), its impact on cryptographic protocols, and potential countermeasures. Learn about side-channel vulnerabilities in key derivation processes.

Add to list

26 Lesons

39 minutes

On-Demand

Free-Video

TPM-FAIL - TPM Meetings Timing and Lattice Attacks

Explore TPM vulnerabilities, timing attacks, and lattice-based cryptanalysis. Learn about ECDSA nonce issues and their impact on digital signatures in trusted computing.

Add to list

17 Lesons

34 minutes

On-Demand

Free-Video

LadderLeak

Explore ECDSA and Schnorr signatures, focusing on randomness vulnerabilities and side-channel attacks. Learn about new attack records and countermeasures in cryptographic implementations.

Add to list

31 Lesons

46 minutes

On-Demand

Free-Video

Pseudorandom Black Swans: Cache Attacks on CTR_DRBG

Explore vulnerabilities in CTR_DRBG cryptographic algorithm, focusing on cache attacks and key rotation flaws. Learn about potential risks in TLS handshakes and SGX execution.

Add to list

23 Lesons

29 minutes

On-Demand

Free-Video

Side-Channel Attacks

Explore side-channel attacks, including Spectre, timing attacks, and countermeasures. Learn about developer knowledge, resistance techniques, and future directions in cybersecurity.

Add to list

31 Lesons

1 hour 14 minutes

On-Demand

Free-Video

Colin O'Flynn

Blackhat EU 2013- Power Analysis for Cheapskates

Explore power analysis attacks on embedded systems, from basic concepts to advanced techniques. Learn practical methods for implementing these attacks using affordable tools and hardware setups.

Add to list

37 Lesons

50 minutes

On-Demand

Free-Video

Hackaday

FPGA Glitching & Side Channel Attacks

Explore side channel analysis and fault injection attacks on modern systems using low-cost hardware like FPGAs. Learn about powerful techniques once reserved for governments and researchers.

Add to list

22 Lesons

31 minutes

On-Demand

Free-Video

Practical Side Channel Attacks on Modern Browsers - Lecture 6

Explore practical side channel attacks on modern browsers, covering XSS filters, timing attacks, clipboard vulnerabilities, and more. Learn about login history exploits and data URI schemes.

Add to list

15 Lesons

58 minutes

On-Demand

Free-Video

Dependency Hijacking Vulnerability in Microsoft Teams - Supply Chain Security Gaps

Explore real-world dependency hijacking in Microsoft Teams, understanding software supply chain vulnerabilities and learning strategies to protect infrastructure, SDLC, and code.

Add to list

14 Lesons

56 minutes

On-Demand

Free-Video

Statistical Tools for Side-Channel Collision Attacks

Statistical techniques enhance side-channel collision attacks, improving their effectiveness against cryptographic implementations. Higher-order moments and general forms address practical issues in various scenarios.

Add to list

11 Lesons

23 minutes

On-Demand

Free-Video

Proactive Software Defense Against Side Channel Attacks

Explore Intel's strategies for proactive OS-level defense against side channel attacks, focusing on Linux kernel improvements and community collaboration for enhanced security.

Add to list

1 Lesons

30 minutes

On-Demand

Free-Video

Exploiting Hardware Glitches and Side Channels in Perfect Software

Uncover vulnerabilities in flawless software through hardware glitches and side-channel attacks. Learn advanced exploitation techniques for enhancing cybersecurity defenses.

Add to list

1 Lesons

51 minutes

On-Demand

Free-Video

The Less Hacked Path - Exploring Modern Security Vulnerabilities

Explore fascinating side-channel attacks and low-cost tools used against modern technology. Learn about innovative hacking methods and how to secure against them from renowned security researcher Samy Kamkar.

Add to list

1 Lesons

59 minutes

On-Demand

Free-Video

Leaky Processors - Stealing Your Secrets With Foreshadow

Explore the Foreshadow vulnerability in modern processors and its implications for data security. Learn about potential exploits and mitigation strategies.

Add to list

1 Lesons

41 minutes

On-Demand

Free-Video

Lessons from Trusting JavaScript Cryptography - Biting into the Forbidden Fruit

Exploring real-world JavaScript cryptography implementations, debunking myths, and providing an updated perspective on JS crypto security through vulnerability analysis and practical examples.

Add to list

1 Lesons

59 minutes

On-Demand

Free-Video

Cooper

Practical and Affordable Side-Channel Attacks

Explore affordable side-channel attacks with practical demonstrations, learning techniques to exploit vulnerabilities in cryptographic implementations and secure systems.

Add to list

1 Lesons

28 minutes

On-Demand

Free-Video

Alan Turing Institute

Meltdown and Spectre - Professor Mark Handley, UCL

Comprehensive explanation of Meltdown and Spectre vulnerabilities in modern CPUs, their impact on computer systems, and mitigation strategies. Explores CPU architecture, speculative execution, and side-channel attacks.

Add to list

1 Lesons

1 hour 43 minutes

On-Demand

Free-Video

media.ccc.de

TETRA Radio Security: Uncovering Secret Cryptography in Law Enforcement Communications

Unveiling TETRA cryptography: Journey through radio jailbreaking, reverse-engineering, and exploiting vulnerabilities to analyze the proprietary algorithms used in critical communication systems worldwide.

Add to list

1 Lesons

48 minutes

On-Demand

Free-Video

Gadgets II - Advanced Cryptographic Hardware Techniques

Explore advanced cryptographic hardware techniques and implementations in this CHES 2024 session, chaired by Rei Ueno.

Add to list

1 Lesons

48 minutes

On-Demand

Free-Video

Confidential Computing Consortium

Pandora: Symbolic Validation of SGX

Explore symbolic validation techniques for Intel SGX, enhancing security in confidential computing environments.

Add to list

1 Lesons

45 minutes

On-Demand

Free-Video

Confidential Computing Consortium

BlindAI: Secure Remote ML Inference with Intel SGX Enclaves

Explore secure remote ML inference using Intel SGX enclaves, balancing security, privacy, and performance. Learn about BlindAI's open-source solution for confidential computing.

Add to list

20 Lesons

57 minutes

On-Demand

Free-Video

Hardware Security III - CHES 2024

Explore cutting-edge hardware security research presented at CHES 2024, covering innovative techniques and advancements in the field of cryptographic hardware and embedded systems.

Add to list

1 Lesons

1 hour 17 minutes

On-Demand

Free-Video

Hardware Security I - CHES 2024

Explore hardware security topics presented at CHES 2024, chaired by Jan Richter-Brockmann. Gain insights into cutting-edge research and developments in the field of cryptographic hardware and embedded systems.

Add to list

1 Lesons

1 hour 12 minutes

On-Demand

Free-Video

Hardware Security II - CHES 2024

Explore cutting-edge hardware security research at CHES 2024, featuring innovative papers and presentations chaired by Thomas Eisenbarth.

Add to list

1 Lesons

1 hour 5 minutes

On-Demand

Free-Video

Paul G. Allen School

Building Trusted Systems on Top of Leaky Abstractions

Exploring secure system design in complex tech stacks. Covers side-channel attacks, browser security, and trusted execution environments. Insights on building robust systems against known and unknown threats.

Add to list

1 Lesons

57 minutes

On-Demand

Free-Video

Faults in Our Bus - Novel Bus Fault Attack to Break Trusted Execution Environments in Embedded Systems

Uncover novel bus fault attacks on Trusted Execution Environments in embedded systems, exploring vulnerabilities in SoC system buses and their implications for IoT security and TEE implementations.

Add to list

1 Lesons

32 minutes

On-Demand

Free-Video

Linux Plumbers Conference

Attack Vector Controls for Speculation Mitigations

Explore advanced techniques for mitigating speculative execution vulnerabilities in Linux systems, focusing on attack vector controls and their implementation.

Add to list

1 Lesons

20 minutes

On-Demand

Free-Video

SystemUI as EvilPiP - Hijacking Attacks on Modern Mobile Devices

Reveals new Android attack surface 'PiP', exploiting vulnerabilities to bypass security measures and perform stealthy hijacking attacks on modern devices without permissions or user awareness.

Add to list

1 Lesons

33 minutes

On-Demand

Free-Video

WEareTROOPERS

Say Hello to Your New Cache Flow

Explore innovative cache flow techniques in IT security with experts Geoffrey Bertoli, Rémi Jullian, and Théo Gordyjan at TROOPERS24 conference in Heidelberg, Germany.

Add to list

1 Lesons

46 minutes

On-Demand

Free-Video

OffensiveCon

From Phantom to Inception: Leaking Data Using Branch-Free Predictor Training

Explore data leakage techniques using branch-free predictor training, from phantom to inception, in modern processors.

Add to list

1 Lesons

1 hour

On-Demand

Free-Video

Confidential Computing and Privacy-Enhancing Technologies - The Landscape

Explore confidential computing and privacy-enhancing technologies for secure cloud adoption. Compare approaches, discuss open source's role, and see a demo using the Enarx project.

Add to list

16 Lesons

40 minutes

On-Demand

Free-Video

Squid: Schools for Quantum Information Development

Unbounded Leakage-Resilience and Intrusion-Detection in a Quantum World

Explore groundbreaking quantum cryptographic schemes that provide security against unlimited side-channel attacks and intrusion, advancing beyond classical bounded leakage limitations for enhanced data protection.

Add to list

1 Lesons

33 minutes

On-Demand

Free-Video

Side Channel Metrics and Masking Schemes - CHES 2022 Session

Explore advanced side channel metrics and masking schemes in cryptography, enhancing security against hardware attacks and information leakage.

Add to list

1 Lesons

1 hour 25 minutes

On-Demand

Free-Video

MIRACLE: MIcRo-ArChitectural Leakage Evaluation - Best Paper Award Session

Explore groundbreaking research on micro-architectural leakage evaluation in cryptographic hardware, presented by award-winning experts at CHES 2022.

Add to list

1 Lesons

1 hour 29 minutes

On-Demand

Free-Video

Efficient Masking Techniques in Cryptography

Explore advanced techniques in efficient masking for cryptographic implementations, enhancing security against side-channel attacks in hardware and software systems.

Add to list

1 Lesons

1 hour 30 minutes

On-Demand

Free-Video

Side Channel Attacks on Post-Quantum Implementations - Session 1

Explore cutting-edge research on side channel attacks targeting post-quantum cryptographic implementations, presented at CHES 2022 conference.

Add to list

1 Lesons

1 hour 27 minutes

On-Demand

Free-Video

Leakage Resilience and Masking Verification in Cryptography

Explore cutting-edge techniques in cryptographic hardware security, focusing on leakage resilience and masking verification methods for enhanced protection against side-channel attacks.

Add to list

1 Lesons

1 hour 30 minutes

On-Demand

Free-Video

Masking Techniques in Cryptographic Hardware - Session I

Explore advanced masking techniques for cryptographic hardware security, presented by experts at CHES 2023. Gain insights into cutting-edge research and practical applications.

Add to list

1 Lesons

50 minutes

On-Demand

Free-Video

Side Channel Attacks and Masking - Eurocrypt 2023 Session

Explore cutting-edge research on side channel attacks and masking techniques in cryptography, featuring presentations from leading experts in the field.

Add to list

1 Lesons

1 hour

On-Demand

Free-Video

Side Channels in Cryptography - Part 1

Explore cutting-edge research on side channel attacks in cryptography, presented at a leading conference. Gain insights into vulnerabilities and potential countermeasures.

Add to list

1 Lesons

25 minutes

On-Demand

Free-Video

Side Channels in Cryptography - Part 2

Explore advanced cryptographic concepts and side channel attacks in this session from Crypto 2023, chaired by Chitchanok Chuengsatiansup.

Add to list

1 Lesons

21 minutes

On-Demand

Free-Video

Side Channels in Cryptography - Session 2

Explore advanced cryptographic concepts and latest research on side channel attacks in this Crypto 2023 session, chaired by Chitchanok Chuengsatiansup.

Add to list

1 Lesons

55 minutes

On-Demand

Free-Video

SCA LDPC: A Code-Based Framework for Key Recovery Side-Channel Attacks on Post-Quantum Encryption

Explore a framework for key recovery side-channel attacks on post-quantum encryption, focusing on LDPC code-based systems and their vulnerabilities.

Add to list

1 Lesons

22 minutes

On-Demand

Free-Video

ACM SIGPLAN

Leakage Models: A Leaky Abstraction in Cryptographic Software Verification

Explore gate-level verification for cryptographic software timing, abandoning leakage models. Discover a novel approach to ensure constant-time execution in hardware implementations.

Add to list

1 Lesons

12 minutes

On-Demand

Free-Video

secwestnet

Speculative Execution Vulnerabilities: From Spectre to Control Flow Hijack

Comprehensive exploration of speculative execution attacks, from original Spectre to new vulnerabilities. Clear explanations of exploitation challenges and processor vulnerabilities, with insights on high-resolution timers as potential weapons.

Add to list

1 Lesons

1 hour 3 minutes

On-Demand

Free-Video

Spectre Attacks Exploiting Speculative Execution

Explore speculative execution vulnerabilities in modern processors, their impact on system security, and potential countermeasures to protect against Spectre attacks.

Add to list

11 Lesons

21 minutes

On-Demand

Free-Video

Verifying and Synthesizing Constant-Resource Implementations with Types

Explores a type system for verifying constant-resource implementations, enhancing security against side-channel attacks while allowing natural programming models. Introduces resource-aware noninterference and automated repair techniques.

Add to list

11 Lesons

19 minutes

On-Demand

Free-Video

Fields Institute

Multiphoton and Side-Channel Attacks in Mistrustful Quantum Cryptography

Explore advanced quantum cryptography threats, focusing on multiphoton and side-channel attacks in mistrustful settings. Learn about cutting-edge research and potential countermeasures.

Add to list

1 Lesons

55 minutes

On-Demand

Free-Video

Identity-Based Encryption Resilient to Continual Auxiliary Inputs

Explore identity-based encryption resilient to auxiliary inputs, featuring novel theorems, constructions, and extensions for enhanced security in cryptographic systems.

Add to list

18 Lesons

21 minutes

On-Demand

Free-Video

The Cyber Academy

Cracking Light-weight Cryptography with Side Channels

Explore side-channel attacks on lightweight cryptography systems, understanding vulnerabilities and defense strategies for secure implementation in resource-constrained environments.

Add to list

1 Lesons

22 minutes

On-Demand

Free-Video

Masking Schemes and Their Analysis - Session at CHES 2022

Explore advanced masking schemes and analytical techniques for enhancing cryptographic security in hardware implementations.

Add to list

1 Lesons

1 hour 24 minutes

On-Demand

Free-Video

Hertzbleed: Turning Power Side-Channel Attacks Into Remote Timing Attacks on x86 - Session 3

Explore how power side-channel attacks transform into remote timing attacks on x86 processors, examining DVFS, frequency leakage, and implications for cryptographic systems like SIKE.

Add to list

15 Lesons

27 minutes

On-Demand

Free-Video

Side Channel Attacks on Post-Quantum Implementations - Part I

Explore cutting-edge side channel attacks on post-quantum cryptography implementations in this CHES 2023 session, chaired by Thomas Eisenbarth. Gain insights into emerging security challenges and countermeasures.

Add to list

1 Lesons

50 minutes

On-Demand

Free-Video

Side-Channel Attacks on Post-Quantum Implementations - Part 2

Explore advanced side-channel attacks on post-quantum cryptography implementations, featuring cutting-edge research and expert insights from CHES 2023.

Add to list

1 Lesons

1 hour 14 minutes

On-Demand

Free-Video

Threshold Implementations in Software: Micro-architectural Leakages in Algorithms - Best Paper CHES 2023

Explore award-winning research on threshold implementations in software, focusing on micro-architectural leakages in algorithms and their impact on cryptographic security.

Add to list

14 Lesons

31 minutes

On-Demand

Free-Video

Dealing with Microarchitectural Effects - CHES 2023

Explore microarchitectural effects in cryptographic hardware and embedded systems, focusing on security implications and mitigation strategies for modern computing architectures.

Add to list

1 Lesons

47 minutes

On-Demand

Free-Video

Side-Channel Attacks on Post-Quantum Implementations - Part 3

Explore cutting-edge side-channel attacks on post-quantum cryptography implementations in this CHES 2023 session, chaired by Matthias Kannwischer.

Add to list

1 Lesons

49 minutes

On-Demand

Free-Video

Side-Channel Attacks on Symmetric Algorithms II

Explore advanced side-channel attacks on symmetric algorithms in this CHES 2023 session, chaired by Thorben Moos. Gain insights into cutting-edge research and developments in cryptographic hardware security.

Add to list

1 Lesons

1 hour 15 minutes

On-Demand

Free-Video

Side-Channel Attacks on Symmetric Algorithms - Part I

Explore cutting-edge research on side-channel attacks targeting symmetric cryptographic algorithms, presented by experts at CHES 2023. Gain insights into vulnerabilities and potential countermeasures.

Add to list

1 Lesons

1 hour 17 minutes

On-Demand

Free-Video

Masking Techniques in Cryptography - Part II

Explore advanced masking techniques for cryptographic hardware security, presented by experts at CHES 2023. Gain insights into cutting-edge research and practical applications.

Add to list

1 Lesons

1 hour 5 minutes

On-Demand

Free-Video

Cryptanalysis - Session 10

Explore cryptanalysis techniques and methods for breaking encryption systems, enhancing your understanding of cryptographic vulnerabilities and security measures.

Add to list

1 Lesons

52 minutes

On-Demand

Free-Video

Co-Design and Co-Verification of Masked Software Implementations on CPUs

Explore co-design and co-verification of masked software implementations on CPUs, focusing on physical side-channel attacks, hardware/software gaps, and innovative solutions.

Add to list

12 Lesons

25 minutes

On-Demand

Free-Video

Machine Learning for Side-Channel Attacks

Explore machine learning techniques for side-channel attacks, enhancing cybersecurity knowledge and practical skills in this cutting-edge field of information security.

Add to list

1 Lesons

1 hour 2 minutes

On-Demand

Free-Video

CHES Test-of-Time Award Session

Explore the CHES Test-of-Time Award, its background, and the impact of the winning paper on cryptographic notation, discoveries, and applications.

Add to list

13 Lesons

31 minutes

On-Demand

Free-Video

Simons Institute

The Rise of Tractable Circuits - From Cryptography to Continuous Generative Models

Exploring tractable circuits' applications in cryptography and continuous generative models, showcasing advancements in neuro-symbolic approaches and probabilistic inference for AI reasoning.

Add to list

1 Lesons

44 minutes

On-Demand

Free-Video

Using Hardware Protected Keys with the Linux Crypto API

Learn to use hardware-protected keys with Linux Crypto API for enhanced security in embedded systems. Explore implementation, benefits, and potential challenges in this in-depth presentation.

Add to list

12 Lesons

36 minutes

On-Demand

Free-Video

Side-Channel Countermeasures

Explore cutting-edge side-channel countermeasures in cryptography at this Eurocrypt 2024 session, featuring expert presentations on the latest research and advancements in the field.

Add to list

1 Lesons

1 hour 5 minutes

On-Demand

Free-Video

Leakage Resilience - Eurocrypt 2024

Explore cutting-edge research on leakage resilience in cryptography at this Eurocrypt 2024 session, featuring presentations on advanced security techniques and protocols.

Add to list

1 Lesons

55 minutes

On-Demand

Free-Video

Leakage Resilience in Cryptography - FSE 2024 Session

Explore cutting-edge research on leakage resilience in cryptography, examining advanced techniques to protect against side-channel attacks and enhance data security.

Add to list

1 Lesons

39 minutes

On-Demand

Free-Video

ACM SIGPLAN

Lifting Compiler Security Properties to Stronger Attackers: The Speculation Case

Explore compiler security properties against speculative execution attacks, focusing on lifting guarantees to stronger attacker models and developing a formal framework for well-formedness conditions.

Add to list

1 Lesons

20 minutes

On-Demand

Free-Video

Ekoparty Security Conference

Side Channel - Panel Voto Electrónico Local

Expertos debaten sobre la seguridad y desafíos del voto electrónico en Argentina, analizando sus implicaciones técnicas, legales y democráticas.

Add to list

1 Lesons

27 minutes

On-Demand

Free-Video

Ekoparty Security Conference

Exec ASLR - Abusing Intel Branch Predictors to Bypass ASLR

Explore a new Spectre v2 technique to bypass ASLR on Intel CPUs by abusing branch predictors, with demos on x86 internals, side-channel attacks, and speculative execution.

Add to list

1 Lesons

46 minutes

On-Demand

Free-Video

BruCON Security Conference

Weaknesses in WPA3's Dragonfly Handshake

Uncovers critical vulnerabilities in WPA3's Dragonfly handshake, demonstrating password partitioning attacks and discussing practical implications for Wi-Fi security. Explores countermeasures and assesses WPA3's effectiveness as a modern security protoco…

Add to list

34 Lesons

1 hour 1 minute

On-Demand

Free-Video

USENIX Enigma Conference

A Sound Mind in a Vulnerable Body - Practical Hardware Attacks on Deep Learning

Explores hardware vulnerabilities in deep learning systems, demonstrating how fault injection and side-channel attacks can compromise model accuracy and steal proprietary information, highlighting the need for robust ML-level defenses.

Add to list

14 Lesons

22 minutes

On-Demand

Free-Video

FIESTA - An HTTPS Side-Channel Party

Explore HTTPS side-channel vulnerabilities and a new tool, FIESTA, for testing and exploiting these issues. Learn about a novel side-channel affecting major tech companies and its implications for online security.

Add to list

22 Lesons

42 minutes

On-Demand

Free-Video

Association for Computing Machinery (ACM)

A Software Approach to Defeating Side Channels in Last-Level Caches

Explore techniques to mitigate side-channel attacks in last-level caches, focusing on Copy-On-Access and Cacheability Management methods for enhanced cloud security.

Add to list

16 Lesons

27 minutes

On-Demand

Free-Video

Association for Computing Machinery (ACM)

On Code Execution Tracking via Power Side-Channel

Explore power side-channel analysis for code execution tracking in embedded systems, covering key extraction attacks, control flow integrity, and Hidden Markov Models for security applications.

Add to list

20 Lesons

29 minutes

On-Demand

Free-Video

Bypassing KPTI Using the Speculative Behavior of the SWAPGS Instruction

Unveiling a new speculative execution attack exploiting SWAPGS instruction, bypassing existing CPU and kernel protections. Explores side-channel vulnerabilities and their implications for system security.

Add to list

6 Lesons

49 minutes

On-Demand

Free-Video

Practical Side-Channel Attacks Against WPA-TKIP

Explore practical side-channel attacks against WPA-TKIP in Wi-Fi networks, analyzing vulnerabilities and countermeasures in this widely-used legacy protocol.

Add to list

19 Lesons

34 minutes

On-Demand

Free-Video

Meltdown - Basics, Details, Consequences

Explore Meltdown, a critical security vulnerability that breaks fundamental isolation between user applications and operating systems, allowing unauthorized access to system memory and sensitive data.

Add to list

33 Lesons

47 minutes

On-Demand

Free-Video

Screaming Channels - When Electromagnetic Side Channels Meet Radio Transceivers

Novel side-channel attacks on mixed-design chips exploiting electromagnetic leaks in radio signals, potentially breaking cryptography over large distances. Explores discovery, impact, and countermeasures.

Add to list

20 Lesons

46 minutes

On-Demand

Free-Video

A Hacker's Guide to Reducing Side-Channel Attack Surfaces Using Deep Learning

Explore deep-learning techniques to identify and reduce side-channel attack vulnerabilities, leveraging AI explainability for efficient implementation assessment and improved security.

Add to list

11 Lesons

47 minutes

On-Demand

Free-Video

nullcon

Side-Channel Attacks

Explore side-channel attacks and machine learning in cybersecurity with expert Stjepan Picek. Learn practical techniques, profiling methods, and key outcomes in this informative webinar.

Add to list

13 Lesons

20 minutes

On-Demand

Free-Video

Hack In The Box Security Conference

Bypassing Hardware-Based Trusted Boot Through x86 Downgrade

Exploiting microcode loader vulnerability to downgrade CPU microcode, enabling attacks on Intel security technologies like Boot Guard and TXT by loading older, vulnerable versions of Authenticated Code Modules.

Add to list

19 Lesons

33 minutes

On-Demand

Free-Video

I Block You Because I Love You - Social Account Identification Attack Against a Website Visitor

Practical side-channel attack to identify social web service accounts of website visitors, compromising anonymity through user profiles and activities.

Add to list

1 Lesons

40 minutes

On-Demand

Free-Video

TLBleed - When Protecting Your CPU Caches is Not Enough

Explore TLBleed, a novel side-channel attack leaking information from Translation Lookaside Buffers, demonstrating vulnerabilities beyond CPU caches and challenging current security measures.

Add to list

1 Lesons

53 minutes

On-Demand

Free-Video

Demystifying Key Stretching and PAKEs

Explore key stretching and PAKEs: their history, best practices, and applications in encrypted cloud services. Learn to create toy algorithms and understand their importance in cybersecurity.

Add to list

1 Lesons

40 minutes

On-Demand

Free-Video

Unboxing the White-Box - Practical Attacks Against Obfuscated Ciphers

Explore practical attacks on obfuscated ciphers, focusing on White-Box Cryptography. Learn techniques to assess security, understand vulnerabilities, and evaluate robustness against key extraction in software implementations.

Add to list

29 Lesons

57 minutes

On-Demand

Free-Video

Exploiting Out-of-Order Execution for Covert Cross-VM Communication

Explore a novel side channel attack exploiting CPU out-of-order execution for covert cross-VM communication in cloud environments, with live demos and mitigation techniques.

Add to list

1 Lesons

26 minutes

On-Demand

Free-Video

HEIST - HTTP Encrypted Information can be Stolen Through TCP-Windows

Unveils HEIST, a browser-based attack exploiting SSL/TLS vulnerabilities without network access. Demonstrates how to leak cross-origin response sizes, enabling compression-based attacks and sensitive information extraction from popular websites.

Add to list

1 Lesons

50 minutes

On-Demand

Free-Video

Over the Edge - Silently Owning Windows 10's Secure Browser

Exploiting Windows 10's memory deduplication feature to silently compromise Microsoft Edge, bypassing security measures and gaining arbitrary memory access through JavaScript-based attacks.

Add to list

10 Lesons

33 minutes

On-Demand

Free-Video

Leakage-Resilient Symmetric Cryptography under Empirical