CARDIS 2020 is over. All pre-recordings and the recordings of the live sessions are now available on the CARDIS YouTube Channel.

Invited Talks

Jörn Eichler: Automotive security - a focal point for security challenges

Abstract

Automotive security is experiencing a turbulent period. More and more connectivity features widen the attack surface and impacts grow due to an increasing number of electronically controlled driving functions. Regulations are intensifying to a new all-time high for the industry. The talk presents important trends for automotive security, sketches new regulations, and details current questions regarding secure vehicles for individual mobility.

Bio

Prof. Dr. Jörn Eichler is responsible for security engineering of vehicle systems at Volkswagen passenger cars. Further, he is leading the working group on Secure Systems Engineering at the Institute of Computer Science at Freie Universität Berlin.

Nadia Heninger: Partial key recovery algorithms for side-channel cryptanalysis: results and open problems

Abstract

In this talk, I will survey cryptanalytic methods for recovering private keys from partial information in the context of side-channel attacks, and mention a few recent improvements. This talk will include joint work with Martin Albrecht and Gabrielle De Micheli.

Bio

Nadia Heninger is an associate professor in Computer Science and Engineering at the University of California, San Diego. Her research focuses on applied cryptography and security, particularly cryptanalysis of public-key cryptography in practice. She is the recipient of a 2017 NSF CAREER award, and her research has won best paper awards at CCS 2016, CCS 2015, Usenix Security 2012, and a best student paper award at Usenix Security 2008.
Previously, she was an assistant professor at the University of Pennsylvania. She received her Ph.D. in computer science in 2011 from Princeton and spent time as a postdoc at UC San Diego and Microsoft Research New England.

Hannes Molsen: Use Secure Boot, they said. It'll be fun, they said.

Abstract

It sounds so easy, right? Sign the executables, fuse some public keys, verify before boot, done. Turns out, it's not. In this presentation you will join me on an adventurous path through the endless swamps of documentation, we'll fight the deamons of time and space, dehydrate in the desert of defeat, climb and overcome the hills of grief, and finally reach the shining tower of trust.

Until we find out about the cracks in its foundation.

Bio

Hannes Molsen is a Product Security Manager with Dräger, a more than 130 year-old family company known, e.g., for medical devices and safety systems. He is responsible for creating and maintaining system architectures and an environment which enables Dräger to ship devices and applications that are secure to sustain in an interconnected world. Throughout the entire system's lifecycle, to protect life, data and system functionality.

At Dräger as well as during his activities as self-employed Software and Security professional, he also tests devices and applications, and gives security, development and architecture trainings for developers, product managers and software architects.

In addition he is and was working as a passionate secure coder, with over 15 years of experience in web application development, software for embedded systems and interconnected devices.