Session
Programm EH18

Failmap: transparency == better security for everyone!

Heisenberg 2
Elger "Stitch" Jonker
Transparency on basic security has helped fixing thousands of vulnerabilities and counting. The failmap project publicly names, shames and fames organizations, a strategy that works.

Willing or not, there are organizations that process (your) private information: governments, hospitals and so on. They have to be at the forefront of making sure that this information is not handed out to others, manipulated or lost…

It's very hard to see how well these organizations are doing their job. That's why we've created Failmap: this website scans organizations for subdomains and the most basic levels of information security. The results are published on a trivially simple map for the world to see.

This approach, including the naming and shaming, lead to thousands of vulnerability fixes in the Netherlands and it's time to move to other countries. Hello, friends in Germany! :)

Additional information

Type Talk
Language English

More sessions

3/30/18
Jürgen Tautz
Heisenberg 1
Biology: Honeybees build their combs as communication platform for the exchange of signals. The complete darkness inside their nest and a never ending background noise are two problems the bees do overcome. IT: In a project called we4bee we build on top and merge bee colonies to a hyper network for hacking a complex superorganism.
3/30/18
grindhold
Heisenberg 2
Die Licht- und Schattenseiten einer viel zu wenig beachteten Programmiersprache.
3/30/18
RFguy
Heisenberg 1
In moderenen Campingfahrzeugen gibt einen Schlüssel für alles, wie sicher sind diese Systeme, was sind Ihre Schwachstellen. Gibt es da etwa noch weitere Öffennungsmöglichkeiten und etwa jeder Händler einen Schlüssel.
3/30/18
Habrok
Heisenberg 1
Im Talk möchte ich verschiedene Eigenkonstruktionen vorstellen, die spezielle Anforderungen unserer Katzen mittels Automaten erfüllen.
3/30/18
Heisenberg 1
Deutsche Digitalisierungsprojekte sind meist obskure Insellösungen, so auch das "besondere elektronische Anwaltspostfach" und der elektronische Rechtsverkehr. Im Talk erklären wir, was da alles kaputt ist, was wir gefunden haben und was seit dem 34c3 so gelaufen ist.
3/30/18
Unbenannter Nutzer
Heisenberg 1
Computereinspieler & Fake-Software in (deutschen) TV-Produktionen mit vielen Beispiele und Geschichten drumherum.
3/31/18
Heisenberg 1
We'll show you how we reverse engineered Fitbit firmware, applications and their ecosystem.