File:DEF CON 14 - Strom Carlson - Hacking FedEx Kinko's - How Not To Implement Stored-Value Card Systems.webm
DEF_CON_14_-_Strom_Carlson_-_Hacking_FedEx_Kinko's_-_How_Not_To_Implement_Stored-Value_Card_Systems.webm (WebM audio/video file, VP9/Opus, length 47 min 16 s, 720 × 480 pixels, 323 kbps overall, file size: 109.13 MB)
Captions
Summary
[edit]DescriptionDEF CON 14 - Strom Carlson - Hacking FedEx Kinko's - How Not To Implement Stored-Value Card Systems.webm |
English: Strom Carlson: Hacking FedEx Kinko's: How Not To Implement Stored-Value Card Systems
"ExpressPay is a stored-value cash card system which utilizes the Infineon SLE4442 chip; it was developed by enTrac Technologies of Toronto, Ontario, and its largest application is as the pre-paid cash card system in use at FedEx Kinko's. Analysis of a few dozen cards reveals that the data stored on the card is unencrypted and poorly protected against fraud, and a simple attack can be used to obtain the security code necessary to alter the data on the card. This talk will step the audience through the analysis, research, attack, and subsequent tests performed on the ExpressPay system, and conclude with recommendations on how to implement a more secure stored-value card system. Bio: Strom Carlson is a hardware security researcher at Secure Science Corporation, the organizer of the Los Angeles area Defcon Groups chapter (DC213), and the co-host of Binary Revolution Radio. He enjoys tinkering with technology, playing with telephones, and having a good time with whatever he happens to be involved in. |
Date | |
Source | YouTube: Analysis of FedEx ($FDX) - Stock Investment Research – View/save archived versions on archive.org and archive.today |
Author | Ostrich Investing |
Social network tags InfoField | YouTube Tags:.
|
Genre InfoField | Science & Technology |
Family Friendly InfoField | True |
Licence and copyright information
[edit]- You are free:
- to share – to copy, distribute and transmit the work
- to remix – to adapt the work
- Under the following conditions:
- attribution – You must give appropriate credit, provide a link to the license, and indicate if changes were made. You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use.
This file, which was originally posted to YouTube: Analysis of FedEx ($FDX) - Stock Investment Research, was reviewed on 10 November 2020 by the automatic software YouTubeReviewBot, which confirmed that this video was available there under the stated Creative Commons license on that date. This file should not be deleted if the license has changed in the meantime. The Creative Commons license is irrevocable.
The bot only checks for the license, human review is still required to check if the video is a derivative work, has freedom of panorama related issues and other copyright problems that might be present in the video. Visit licensing for more information. If you are a license reviewer, you can review this file by manually appending | |
File history
Click on a date/time to view the file as it appeared at that time.
Date/Time | Thumbnail | Dimensions | User | Comment | |
---|---|---|---|---|---|
current | 20:17, 26 September 2020 | 47 min 16 s, 720 × 480 (109.13 MB) | Gone Postal (talk | contribs) | c:User:Rillke/bigChunkedUpload.js: YouTube video |
You cannot overwrite this file.
File usage on Commons
The following page uses this file:
Transcode status
Update transcode statusMetadata
This file contains additional information such as Exif metadata which may have been added by the digital camera, scanner, or software program used to create or digitize it. If the file has been modified from its original state, some details such as the timestamp may not fully reflect those of the original file. The timestamp is only as accurate as the clock in the camera, and it may be completely wrong.
Short title | DEF CON 14 - Strom Carlson: Hacking FedEx Kinko's: How Not To Implement Stored-Value Card Systems |
---|---|
Software used | Lavf57.83.100 |