Book details of 'Black Hat Physical Device Security : Exploiting Har'

Title	Black Hat Physical Device Security : Exploiting Har
Author(s)	Drew Miller, Rob Shein, Black Hat Services
ISBN	193226681X
Language	English
Published	June 2003
Publisher	Syngress

---

Amazon.com info for Black Hat Physical Device Security : Exploiting Har

Score:

Vote for this book

The Virtual Bookcase Reviews of 'Black Hat Physical Device Security : Exploiting Har':

Reviewer Rob Slade wrote:
The introduction asserts that products are insecure, and also tries to say something about trust. There is no clear statement in regard to the purpose or intent of the book, however. In addition, there are an alarming number of grammatical and spelling errors, and this error rate doesn't get any better in the course of the text. Chapter one notes that it is possible to program safely. Most systems have bugs, notes chapter two, but despite the fact that we have to rely on insecure systems, the document points out that we can retrofit security onto systems. Encryption is covered in chapter three, which also contains ten pages of C language source code, which apparently is an attempt to convince you how simple encryption is. There is also some discussion of standard authentication forms and biometrics: it seems rather odd, but is tied in towards the end of the chapter with a discussion of how encryption can protect authentication data. Chapter four describes a number of attacks involving input, and suggests mitigating procedures. Monitoring of data submitted is recommended in chapter five. Various hardware security devices are considered in chapter six. Chapter seven is mostly authentication, and a little bit of cryptography. There is more on monitoring in chapter eight. Chapter nine closes off with discussions of notification. Given no stated purpose for the book, it is very difficult to say whether it reaches its own, or any other, objective. There are scraps of useful information contained in these pages, but little structure and no apparent purpose. copyright Robert M. Slade, 2005
Add my review for Black Hat Physical Device Security : Exploiting Har

Book description:

Attacking & Defending Physical Devices for Software and Hardware EngineersThe security devices of today are much more complex than those long ago. While some still are just electronic transistors, diodes, capacitors and resistors, many now have software and communication-based features. Easy-to-use and easy-to-deploy, microprocessors and hard drives are common and used in car Global Positioning Systems (GPS), telephones, and even portable video game systems. Black Hat Physical Device Security looks at the risk involved with network hardware, home security, security installation companies, biometric devices, and much more. This is the book that answers the questions: * How can I protect against physical device exposures if I already have these systems in place? * How do I factor risk from not having a secure method of communication over a network that is not trusted? * I have one or more tools that I use to test for these types of exposures in software and hardware that we manufacture. Do I need to do more than that? * So much of the data that I would record through monitoring can be spoofed, so why record it at all? * Can you break any embedded device with physical access? * If we place high-level communication processes within our devices, isn't that creating more problems then simply plugging wires that carry raw signals into these devices? And many more... Table of Contents:The Enveloping ParadigmInheriting Security ProblemsInformation SecurityMitigating ExposuresMonitoring Software ExposuresTaking a Hard Look at HardwareAuthenticating PeopleMonitoring and Detecting DeviationsNotifying SystemsTerms In ContextFactoring By Quadratic Relationships: A ConstructionFactoring Source Code For Fun