News – Page 2 – ISG Smart Card and IoT Security Centre

Smart Card and IoT Security Centre Open Day 2019

The ISG Smart Card and IoT Security Centre Open-Day 2019 marks the 17th anniversary of the Smart Card Centre. It will be held in the Picture Gallery at Royal Holloway, and acts as a relaxed networking and exhibition event for its sponsors, supporters and industry representatives. There will also be VIP guests and students in attendance (some of whom will be looking for jobs).

This year’s event will be held in memory of Professor Mike Walker, who help to set up the Smart Card Centre in 2002. We really hope you can support us and we look forward to welcoming you in August.

The event is held biannually and comprises a mix of exhibits from our students and industry/organisations. There is also a distinguished guest lecture by Prof Steve Babbage, Vodafone Group. Our Open Days include practical demonstrations and lectures from recognised experts. A buffet lunch and refreshments will be provided.

To attend this event, please click here to get your free ticket.

Quote from Professor Konstantinos Markantonakis, Director of the Smart Card and IoT Security Centre:

“The SCC Open Day was once again a great success attracting more than 100 visitors and 8 exhibiting companies. Our twenty-eight Undergraduate, Master and PhD student posters included topics from drone security, trusted execution environments, automotive security, Internet-of-Things (IoT), smart home and e-health, trusted supply chains, carbon labelling, as well as overall application/system security solutions. All our students demonstrated professionalism, commitment and expertise that was widely recognised by all visitors. Their hard work is leading into academic publications and commercialisation activities. This year’s event was held in memory of Professor Mike Walker, who help to set up the Smart Card Centre in 2002 and demonstrated that the SCC research and commercialization activities maintain their highly respected academic and real world significance.”

Agenda:

09:00 ~ Registration/Coffee
10:00 ~ Introduction and Welcome to the Event
* Welcome to Royal Holloway: Prof. Paul Layzell (Principal)
* Welcome to the Open-Day: Prof. Konstantinos Markantonakis (Director of the SCC)
10:20 ~ Exhibition Morning Session Start
12:00 ~ Buffet Lunch Start
13:00 ~ Exhibition Afternoon Session Start
14:30 ~ Exhibition Awards Ceremony
15:00 ~ Guest Lecture (Main Lecture Theatre), in the memory of Prof. Mike Walker
* Introduction by Prof. Keith Mayes and TBC
* Guest Speaker: Prof. Steve Babbage (Vodafone Group) (see description below)
16:00 ~ Speaker thanks and closing remarks from Prof. Konstantinos Markantonakis

Guest Lecture, Steve Babbage (Vodafone Group): “The History of Mobile Network Security”

This lecture is a tribute to Professor Mike Walker (1947 – 2018). Steve will talk about the history and motivation behind different generations of mobile network security, including the roles played by Mike and by Royal Holloway.

Exhibitors List:

[slideshow_deploy id=’3008′] [slideshow_deploy id=’3016′]

Gallery:

[slideshow_deploy id=’3153′]

Student best poster awards

[slideshow_deploy id=’3183′]

ISG SCC Workshop 2018

On the 1st of November 2018, the ISG SCC Workshop 2018 showcased the excellent work carried out by its summer internship recipient students of the 2017-2018 academic year. The SCC provided the necessary funding and had the privilege of collaborating with eleven amazing undergraduate (UG) Computer Science students investigating a range of topics including data provenance, machine/deep learning, visualisation, blockchain, smart contracts, e-voting, syscall and database monitoring.

The ISG SCC undergraduate internship programme is designed to provide a first-hand experience of research and development at the highest level, by enabling undergraduate students to work with experienced researchers on real world problems related to cybersecurity and privacy.

The ISG SCC staff provides support and direction in selecting a real world research question, co-developing it, finding the core issues that need to be tackled and propose realistic solutions. The programme has a significant active research and programming (development) component, along with extensible emphasis towards exploring commercialisation opportunities.

During the workshop, each intern delivered a soundbite talk summarising their work, the skills they gained and the challenges they had to overcome during the 10 week programme.

Results

All projects achieved their identified objectives.
One proposal is already in the commercialisation stage (by RHUL).
Four papers accepted (published) in international conferences; another paper is under submission and a journal paper under development.

Responsible Disclosure: XiongMai uc-httpd 1.0.0 – Buffer Overflow

As part of his MSc Project, Andrew Watson discovered a previously unknown buffer overflow vulnerability in ‘XiongMai uc-httpd 1.0.0’ – a web server used in multiple IoT devices including routers, CCTV cameras and DVR’s. Following best practice and with the full support of RHUL ISG, he attempted responsible disclosure to assist XiongMai in fixing the vulnerability, but unfortunately the company did not respond to any of the multiple attempts to discuss the vulnerability with them. After 111days of no responses, he released the 0day exploit publicly, further details available here.

The vulnerability (CVE ID: CVE-2018-10088) has since been given a CVSS score of 10.0 – the highest any vulnerability can score.

Andrew’s Proof of Concept exploit (PoC) was accepted to the Offensive Security Exploit Database as EDB-ID: 44864 and is also included in Kali Linux via the SearchSploit tool.

Soon after the PoC exploit was publicly released, it was reported that the Satori Botnet integrated the PoC exploit into their botnet code. Quoting Security Affairs: “The code recently included in the Satori botnet exploits a buffer overflow vulnerability, tracked as CVE-2018-10088, in XionMai uc-httpd 1.0.0. The exploit could be used by remote attackers to execute arbitrary code by sending a malformed package via ports 80 or 8000.”

The vulnerability was also reported by Bleeping Computer: “The sudden surge in port 8000 activity turned the heads of multiple security experts specialized in botnet tracking, as it came out of nowhere and at an incredible scale”.

Visiting Researcher Awarded European Emerging Forensic Scientist 2018

Doctor Heckmann Thibaut, who was a SCC’s academic visitor from 2017 to 2018, was rewarded with the “European Emerging Forensic Scientist Award 2018-2021” at the European Acadamy of Forensic Science (EAFS) conference, which took place in Lyon from August 27 to 31, 2018, and which brings together all the European forensic laboratories.

This prize rewards a process of collaboration between the RHUL, the Ecole Normale Superieure of Paris (ENS), and the Forensic Science Laboratory of the French National Gendarmerie (IRCGN). In that sense, when considering the latest generation of encrypted mobile devices (BlackBerry’s PGP,Apple’s iPhone), data extraction by forensic experts is an increasingly complex task. Forensic analyses even become a real challenge following an air crash or a terrorist attack. The collaboration between the SCC, the ENS and the IRCGN has helped to develop physical recovery of data on encrypted systems for the purpose of forensic analysis.

The EAFS committee noted that “the recovery of data and exploitation of electronic devices is a fast growing investigation field in forensic IT. Only a limited number of scientists are available in this discipline and all possible incentive needs to be going their ways. Data extraction from embedded and encrypted mobile phone devices is a highly complex task. Those data extractions are most important and fundamental in terrorist cases. In our opinion reading encrypted data is one of the most essential fields of Forensic Sciences in future”.

The techniques developed during SCC/ENS/IRCGN collaboration , put end-to-end and coupled with physical devices (X-ray 3D tomography, laser, SEM, fuming acids), have made it possible to have successful forensic transplants of encrypted systems in degraded conditions and applied, for the first time, on a PGP-encrypted BlackBerry mobile phone (used by terrorist networks and drug traffickers).

Finally, beyond the field of research, the work of the SCC, the ENS and IRCGN had a significant impact on the work of international forensic experts, particularly in the recovery of damaged and encrypted phones.

PhD Studentship in IoT Threat Modelling

Applications are invited for a PhD studentship on threat modelling of IoT devices starting in October 2018, supervised by Daniele Sgandurra. The focus of the PhD studentship is on threat modelling of Internet of Things (IoT) devices, and the successful candidate will join the Smart Card and IoT Security Center of the Information Security Group. Please note that only British applicants can apply for this position.

More information can be found at this link.

SCC Joins FutureTPM Project

Academics from the Smart Card Center at the Information Security Group (ISG) at Royal Holloway, University of London, are part of an international consortium focusing on developing the next generation TPM (Trusted Platform Module) – which is embedded into computing systems to make its host computer platform trustworthy and secure.

TPMs are currently incorporated into over a billion computers worldwide but the team working on the new H2020 Project ‘FutureTPM‘ will be focusing on developing next generation security solutions to mitigate against quantum computers. These computers are anticipated to be able to break some of the cryptographic algorithms currently used in existing TPMs.

Royal Holloway’s project activities will be led by Dr Daniele Sgandurra, who has received a grant of €375,065 from the European Commission to carry out the work alongside Professor Konstantinos Markantonakis, Professor Chris Mitchell, and Dr Elizabeth Quaglia, also from the ISG.

Dr Sgandurra said: “We are thrilled to be part of this project that will combine the expertise of high calibre industrial and academic partners from across Europe to develop quantum-resistant algorithms suitable for inclusion in future TPMs. We hope this project will positively affect people’s everyday lives, in terms of building their trust in securely using online services, such as online banking and Cloud storage.”

The FutureTPM project partners are:

Royal Holloway, University of London, United Kingdom
Huawei Technologies Düsseldorf GmbH, Germany
IBM Research GmbH, Switzerland
INESC-ID – Instituto de Engenhariade Sistemas e Computadores, Investigacao e Desenvolvimento em Lisboa, Portugal
Infineon Technologies AG, Germany
Infineon Technologies Austria AG, Austria
Suite5 Data Intelligence Solutions Limited, Ireland
TECHNIKON Forschungs- und Planungsgesellschaft mbH, Austria
UBITECH Limited, Cyprus
University of Birmingham, United Kingdom
Université du Luxembourg, Luxembourg
University of Piraeus Research Center, Greece
University of Surrey, United Kingdom
VIVA Payment Services SA, Greece

Responsible Disclosure: Firmware Vulnerabilities in iSmartAlarm CubeOne

As part of the final MSc project, one of our MSc students, Yee Ching Tok, supervised by Daniele Sangdurra, investigated the firmware of a popular smart home security device – the iSmartAlarm CubeOne. Two vulnerabilities (CVE-2017-13663 and CVE-2017-13664) were found and disclosed responsibly to the vendor. A detailed explanation of the vulnerabilities and of disclosure timeline is available here: https://poppopretn.com/2017/11/30/public-disclosure-firmware-vulnerabilities-in-ismartalarm-cubeone/

Funded PhD Position – Applications Welcome

There is a funded PhD position on “Control flow verification and integrity of executed instructions for the protection of run-time data in Tokens, Internet-of-Things, Mobile Devices and Cyber Physical Systems”, supervised by Konstantinos Markantonakis.

More information can be obtained from https://www.findaphd.com/search/projectdetails.aspx?PJID=44472

Presentation at 7th INFOCOM SECURITY CONFERENCE in Athens

The ISG Smart Card and Internet of Things Security Centre (SCC) was invited to deliver a presentation in the

7th INFOCOM SECURITY CONFERENCE (http://www.infocomsecurity.gr/en/),

29 – 30 March 2017 – Athens, Divani Caravel, Athens, Greece.

Professor Konstantinos Markantonakis presented the main findings of the recently completed “Secure High-Availability Avionics Wireless Network” (SHAWN) project funded by Innovate UK, in terms of the security and privacy challenges on the wireless networks in the Avionics environments. Along with the newly started three-year project, “Data to Improve the Customer Experience” (DICE), funded by EPSRC. The project, among others aims to examine new challenges in security and privacy that were not present in the exiting smart ticketing infrastructures.

The ISG was offered a stand among the conference exhibitors. It was an excellent opportunity to disseminate the ISG’s promotional material and to meet prospective students.

“It is now the top annual event for information security in Greece. Since 2011, it has been charting a rising course, mirrored by numbers and attendance statistics, as well as the overall recognition by this industry, the scientific and technology community of IT professionals. The 2017 event attracted more than 2.200 visitors and was supported by more than 45 sponsor companies, covering a wide range of subjects on information security, through 40 main presentations and 15 parallel-running workshops, that took place.”

SCC Open Day 2017

Save the date!

The next Smart Card Centre Open Day will be on August 30th 2017, in the Picture Gallery, Founders Building, Royal Holloway, University of London.

The Smart Card Centre Open Day is a free exhibition (50:50 mix of industry and student exhibits) for sponsors, supporters, lecturers, students and visitors as a friendly and informal networking event.

More details can be found at this page.

Save the date!

Latest News