|PRESENTER:||Chris Valasek, Director of Security Intelligence for IOActive|
|PRESENTATION:||Adventures in Automotive Networks and Control Units|
|CONFERENCE:||Duo Tech Talks|
|LOCATION:||Duo Offices, 617 Detroit St, Ann Arbor, Michigan|
|DATE & TIME:||Friday December 13th, 2013 at 6:00pm|
Automotive computers, or Electronic Control Units (ECUs), were originally introduced to help solve the fuel efficiency and emissions problems of the 1970s. They have since evolved to become integral parts of in-car entertainment, safety controls, and enhanced functionality. In his presentation, Mr. Valasek will examine ECUs in two modern automobiles from a security researcher’s point of view. Mr. Valasek will begin by covering the tools and software required to analyze a Controller Area Network (CAN) bus and demonstrate to read and write data to the CAN bus. He will then show how a device can perform critical car functions, such as braking and steering, and replay certain proprietary messages through the On-Board Diagnostics (OBD-II) connector. Finally, Mr. Valasek will discuss how an ECU’s firmware can be read and modified.
About Chris Valasek
Chris Valasek is the Director of Security Intelligence at IOActive, where he specializes in attack methodologies, reverse engineering, and exploitation techniques. While widely regarded for his research on Windows heap exploitation, Valasek also regularly speaks on the security industry conference circuit. His previous tenures include Coverity, Accuvant LABS, and IBM/ISS. He is also the Chairman of SummerCon, the nation’s oldest hacker conference. He holds a B.S. in Computer Science from the University of Pittsburgh.
About Duo Tech Talks
Duo Tech Talks is a monthly gathering of engineers and technologists in Ann Arbor and southeast Michigan. Talks are held at Duo Security’s Ann Arbor office. They cover a variety of topics of strong interest to the local technology community. Topics range across the spectrum of computer science and technology, including software engineering, hardware hacking, user experience design, cloud computing, programming languages, computer security and more!
IOActive is a comprehensive, high-end information security services firm with a long and established track record in delivering elite security services to its customers. Our world-renowned consulting and research teams deliver a portfolio of specialist security services ranging from penetration testing and application code assessment to chip reverse engineering. Global 500 companies across every industry continue to trust IOActive with their most critical and sensitive security issues. Founded in 1998, IOActive is headquartered in Seattle, USA, with global operations through the Americas, EMEA, and Asia Pac regions. Visit www.ioactive.com for more information. Read the IOActive Labs Research Blog: http://blog.ioactive.com/. Follow IOActive on Twitter: http://twitter.com/ioactive.