Samy Kamkar - FPGA Glitching & Side Channel Attacks

Рет қаралды 25,735

Күн бұрын

Пікірлер: 28

@Xoferif 4 жыл бұрын

Common problem with Hackaday talk videos: Edited to show the presenter talking and misses lots of slides. Perhaps a picture-in-picture view, or something?

@u0000-u2x 4 жыл бұрын

relevant slides are not shown in the video... is there a link to the presentation?

@simonstergaard 4 жыл бұрын

Samy is great! Also loving the sound of "the party van" at 15:20

@alpagutsencer 4 жыл бұрын

Correct me if i am wrong but you dont need to erase eeprom for write new info. Erasing means chage all bytes to 0xFF which is actually write operation. And you dont need that. Just put new info.

@frab88 4 жыл бұрын

EEPROM works like UV (EPROM). A "write" operation means that you can only flip a bit from "1" to "0" (not viceversa). You cannot "write" a "1" where there's already a "0". Hence you need to perform an "erase" operation to reset all bits to a known default state (i.e. 0xFF) before the actual "write" operation. In other words you could say that the EEPROM "write" is NOT atomic.

@Evil_ddddd 4 жыл бұрын

Nice talk, Thanks for Samy's share.

@element4element4 4 жыл бұрын

The comments under the video say "Note: Due to technical difficulties with the live stream, Samy's talk slides are shown for the first portion of the talk, with live video beginning at about the @ mark." I think you are apologizing for the wrong thing. The problem was not that there were slides in the first portion, the problem is that the live video started at 6:30 mark and removed the slides and made it much harder to follow. The people editing talks like this are clearly not among the people watching these talks. In the institute where I did my theoretical physics PhD we had a team hired to record all lectures and talks. But they always insisted on fancy cutting the camera between different angles, showing the speaker speak from different perspectives, while the scientists at the institute just wanted the slides (or sometimes blackboard) + the voice. There is little info in looking at the speaker while he is pointing to slides we can't see.

@element4element4 4 жыл бұрын

The best way to record talks like this is to have picture in picture, where the slides are shown in nearly full screen and the speaker in a small picture in the corner.

@sudocdhome 3 жыл бұрын

Nice talk. Thank you HACKADAY.

@fernandoblazin 4 жыл бұрын

Hey haven't seen anything new from this guy in a while

@Munden 4 жыл бұрын

Very nice work Samy!

@mehrdaddashad6159 4 жыл бұрын

Wonderful!!!!!!

@syntempl2426 4 жыл бұрын

hey so if a non volatile sram is used it is much more vulnerable to memory imaging?

@emilio_wayne 4 жыл бұрын

Chipwhisperer is a great tool. Side Channel Attack and Correlation Power Analyze. Excellent efficiency vs prices...Great video pip...

@TS-jm7jm 4 жыл бұрын

Why are some of the links redacted?

@TS-jm7jm 4 жыл бұрын

@@Willam_J ah, noted thanks

@KeiranR 4 жыл бұрын

Love this bloke ....

@melkenhoning158 3 жыл бұрын

Sammy is my hero!

@hobrin4242 3 жыл бұрын

your timing hack reminds me of what I tried in minecraft once we figured out remote chunk loading, to see if it was loaded from disk or generated newly or already loaded. We tried using timings but over the network that was too unreliable. Then we tried out to do the timing on the server's side, so you could time the delay between 2 events and inbetween those you do the chunk loading. Didn't find a good second event though.

@godfather7339 2 жыл бұрын

I remember using some mod that showed whether a chunk was already generated or not and mark the pre generated ones red on screen. Do the mods these days use the timing hack or something else? The mods were pretty accurate and we would follow the trails to find people's bases.

@hobrin4242 2 жыл бұрын

@@godfather7339 yeah so how that works is that minecraft generetes chunks in 2 phases but it loads chunks in 1. So when the chunk generation sends an additional large block update packet when loading the chunk, so therefore it must have been newly generated your client assumes. This works most of the time.