Project Flow Control Luftfahrtmuseum Finowfurt Finowfurt 2011-08-10 2011-08-14 5 Version 1.4 06:00 00:30 00:00 01:00 Kourou ihr_kotzt_mich_alle_an We have problems. But you don't even notice. Community lecture en What we suck at, why we suck at it, and some ideas on fixing that. Es muss um 1990 gewesen sein, als ich zufällig in meiner Dorfbücherei über die Hackerbibeln gestolpert bin. Seitdem ist der CCC eine für mich gestorbene Familie. Und das könnte mir egal sein, ist es aber leider nicht. Auch wenn ich keinen Bock drauf hab, irgendwer muss es ja machen. Dass wir Probleme haben, und welche, scheint ja irgendwie in den letzten Jahrzehnten in Vergessenheit geraten zu sein. Dass sich aus Problemen Ziele ableiten lassen, also dass es durchaus Ziele gibt, sowieso. (presentation is in English; ask someone to translate this primer for you) Moritz Bartl 12:00 00:30 Kourou opening Welcome to the Chaos Communication Camp 2011 Misc lecture en 12:30 00:30 Kourou hackers_in_space A Modest Proposal for the Next 23 Years Hacker Space Program lecture Four years ago, the global Hackerspace movement was kicked off at the 2007 CCCamp, having led to a worldwide, decentralised, collaborative network of hackerspaces on every continent. Fueled by the DIY and hacker spirit, we have come a long way. Now that we have the infrastructure in place, what do we do with it? In times when nation states abandon their space programs, we see the exploration of outer space as our goal for the coming decades. We propose a three phase Hacker Space program we feel can be accomplished in the next 23 years. Phase one is the launch of an open, free and globally accessible sattelite-based network built by hackers as the ultimate defense against terrestrial censorship of the Internet. If that sounds too easy, let's go to phase two: Put a hacker into orbit. This will be the preparation for phase three. By 2034, we plan on landing a hacker on the moon. Join us! Participate! Bring your own space suit and inspiration! Jens Ohlig Lars Weiler Nick Farr Space Program of the Hacker Scene 13:30 01:30 Kourou rocket_propulsion An introduction to rocket engines and their application for space travel Hacker Space Program lecture en We will discuss the basic principles of thermochemical engines and their application for rocket propulsion. The three main types of chemical rocket engines, i.e. solid, liquid, and hybrid, will be presented and compared. The main subsystem of every space flight system is the propulsion system also called the rocket engine. The present paradigm is the thermochemical engine that produces thrust by expanding hot gas produced by an exothermic reaction through a nozzle. Present rocket engine designs can be categorized in three classes dependent on the state of the propellant(s), i.e. solid, liquid or hybrid. We will sketch the underlying physical processes present in all engine designs necessary to get a basic understanding of the different approaches and compare their specific advantages and drawbacks. 15:00 01:00 Kourou satellite_communications the joy and challange of operating satellite communication systems; illustrated with postage stamps Hacker Space Program lecture en In this lecture, I'll cover some satellite communication basics like pros and cons of different orbits, the characteristics of a satellite communications link and the difficulties regarding noise and attenuation when handling high frequency satellite communication systems. After a brief introduction to the history and development of satellites in general, we'll talk about different orbits and their characteristics regarding space conditions. After that, we'll have a look at a typical satellite communications link including channel characteristics, communications equipment and frequency considerations, before moving on to access techniques. If there's still time, there might be a short part about satellite navigation, too. And yes, to meet our need for pretty pictures, thematically related postage stamps (partly from a private collection) will be used to illustrate the topic. Irmi Meister 16:30 01:00 Kourou strahlung_im_weltall Hell yeah, it's radiation science! Hacker Space Program lecture de Wer eine Mission zum Mond plant, muss sich über das, was die Umgebung dort bereithält, Gedanken machen. Neben Temperaturen von -180 bis +120° C ist Strahlung eine der größten Herausforderungen bei einer derartigen Mission. So genannte Single Event Upsets (SEU) können in einer Speicherzelle Datenbits flippen. Mit diesen umgekippten Bits muss man dann zurechtkommen. Im Talk wird erklärt, welche Effekte auftreten können, wenn ein geladenes Teilchen auf Elektronik trifft. Solche Single Event Effects beeinflussen den Verlauf einer Weltraummission ungemein. Den Schwerpunkt des Talks bilden SEUs, bei denen Bits in Speicherzellen umkippen können. * Wie entstehen SEUs? * Welche Auswirkungen hat es, wenn ein Bit geflippt ist? * Wie kann man verhindern, dass eine Mission wegen eines SEUs scheitert? * Und was soll das überhaupt mit dieser Mondmission da? Karsten Becker http:// PTS Twitter Evil Facebook Seite PTS Team Seite 18:00 01:00 Kourou space_federation Linking and Launching Earth-Based Hackerspaces Community lecture en Our mission is to provide financial and organizational support to open communities in shared physical spaces who use innovative methods and technology in hands-on education. We'll speak to the global community about the progress in America. Hacker and maker spaces are where people go to teach and learn their passions. Even as each space typically shares a common set of values – transparency, hands-on, collaboration – they are all tremendously different in terms of structure, funding sources, and sustainability. While a huge movement to create new hacker and maker spaces has been catalyzed in the United States, in part because of the Hackerspace Design Patterns release from the 2007 CCCamp, the sustainability of these spaces and the movement they represent is far from certain. The School Factory, a non-profit organization that formed an early American hackerspace/makerspace called Bucketworks in 2002, has been extrapolating the models and values of these spaces into programming that helps communities understand and take advantage of potential in the maker and hacker movements. Banding together, four established spaces have launched the Space Federation, which provides a sharing of best practices and fiscal infrastructure amongst each other and to interested communities. By linking our resources we are able to help other facilitators launch and sustain their own spaces. Resources take the form of fiscal sponsorship, a governance and taxation support model for donations that gives these spaces non-profit status without the overhead and delays of supporting their own legal status. Guidelines and programming that help spaces build healthy community by connecting their members on a personal level are also a focus. This is not a franchising of spaces but a celebration of individuation while ensuring the administrivia which often kills spaces is taken care of efficiently and effectively. We are a segue from the current culture into a new world of self-empowerment, involved communities, and free sharing of knowledge. But these ideals must exist in the current paradigm until they become the norm. In short, we still have to figure out how to pay rent. In the meantime, American schools and libraries are failing. Conservative government officials are eliminating teachers and setting standards which the current educational system cannot meet. Schools are decreasingly preparing students for work within a global economy, and struggle to stay apace with the technological and social advances brought about by the dedicated volunteer work of the open source community. Similarly, public libraries in America struggle to retain relevance when books are available online, and rules require silence. The community-building purpose of a library, and the free access to knowledge it represents, is an idea at risk in a modern political culture of conservatism. Low income and smaller communities will pay the price of lost innovation and learning for their citizens. Globally, countries wildly differ in terms of their legal structures and cultural support for hackerspaces and makerspaces. Education systems are equally variable, in some nations still biased towards certain genders, age groups, and skill domains. We believe that hackerspaces and their relatives are primordial seeds in a new system of global learning and education that spans generations, interests, and political fashions. These communities represent a low-cost, highly effective alternative to overly burdensome systems of public learning and the public distribution of knowledge and potential. It may take many generations for these environments to have a lasting impact on civilization. If we start good conversations with governments, communities, and businesses today - along with amongst ourselves - we can ensure that every possible value these spaces can contribute to global society is developed for the longer term. Challenges Faced by the Hackerspace and Makerspace Movement Clique-ish social communities Financial challenges Difficult to insure Unsympathetic landlords Challenging infrastructure requirements Not well understood by general public Dis-integrative structures Zoning and classification “but they’ll see the big board” - the perceived threat of transparency Inconsistent cultural norms Informal environments create barriers to entry Questions we would like to discuss with the CCC community: How does the hackerspace/makerspace movement look globally? In America? What has changed since 2007? Since 2002? What spaces are in the Space Federation? What are their experiences? What is the Space Federation? What is the School Factory? What is the Space Kit? How is it related to the Hackerspace Design Patterns presentation? What do we have in the Space Kit so far? - we have the steps but need a way to take people through it. It includes more of things like how to assess a neighborhood and local government, less of what tools you should have. What does it still need? Why is this important? (not just in USA but globally) What does having global concept of spaces like these mean for future humanity? What has been working? What hasn’t been working? What do we need help with? Conclusion: We would like to engage the CCC community in an open discussion on these questions, and facilitate a separate co-working session to further develop tools and models that will extend the potential of the hackerspace and makerspace movement across the globe. There will be LEGOs. James Carlson willowbl00 Building a Hacker Space reference School Factory Bucketworks Sector67 Jigsaw Renaissance Pumping Station: One TEDx talk - similar to what we'd be doing here Space Federation short talk TEDx Slides 19:30 01:00 Kourou building_and_giving_away Culture lecture What motivates people to create and freely distribute their works? This presentation will draw on personal experience, research literature, and existing communities of those who build and give away. Open source software, hardware, community building. The presenter will draw upon over 20 years experience with Project Gutenberg, as well as numerous other activities in which the focus is on building (things, software, communities, infrastructure) and giving them away (free and open source software, free literature, and physical artifacts). What motivates individuals to spend thousands of hours -- often in detriment to time spent with family, work, or other endeavors -- on activity which is primarily devoted to the well being of other people? Often, other people who are not personally known. Is there overlap in motivations for online communities versus volunteerism at the local level? Can such behaviors be learned? What motivates people to create and freely distribute their works? This presentation will draw on personal experience, research literature, and existing communities of those who build and give away. Open source software, hardware, community building. Characterizations of different types of motivations, levels and types of involvement, and outcomes will be made. Anomalies will be identified between individual values and targeted community outcomes, along with their sometimes disastrous impact on community identity-building or planning. Different leadership styles, and their impacts on emerging communities of contributors, will be compared. The presentation will draw some conclusions about how it might be possible to foster altruism in such communities, and to encourage increased interests in their outcomes. The audience will be asked to contribute their own experiences, especially advice about what works and what doesn't work to foster new member involvement. What are impediments to personal time investment, to sharing common goals, and to taking leadership roles? What lifecycles, governance structures, and other characteristics of successful projects (both large and small scale) can we learn from? We have seen hugely beneficial projects of all types where communities sprung up to support the building of things, software and ideas; we also have many examples of projects which did not seem to achieve their goals. How might future builders learn from these past experiences? Greg Newby 21:00 01:00 Kourou r0ket The CCC-Badge Hacking lecture en The r0ket is the badge for the Chaos Communication Camp 2011. Besides being a shiny electronic name tag, the r0ket is an easy to use full featured microcontroller development board. We want to encourage you to tinker with your badge. Write your own software or build a pluggable hardware m0dul. Surprise the camp audience with your creative ideas! lilafisch Stefan 'Sec' Zehl r0ket wiki r0ket soup 22:30 01:00 Kourou cyberpeace_and_datalove How do we counter the memes of control? Society lecture en Governments and corporations craft powerful memes to justify their repressive policies, it is time for us to provide with solid countermeasures. Will we get "cyberwar", censorship, and repression of sharing, or impose that Internet remains the instrument of (cyber)Peace, (data)Love and (hackers)Unity? The turn of 2010/2011 has been decisive for the ecology of the Internet, as well as for its perception in the eye of the general public. From Cablegate to the "Arab spring", it is now clear for everyone that Internet is the tool for freedom of expression and democratic participation. At the same time, the violent attacks against Wikileaks, repression in the Arab countries, as well as the finalization of the ACTA agreement or the notion of a "civilized Internet" pushed by Nicolas Sarkozy clutter in our skies like a dense, dark storm. Between the "eG8" and the G20, governments talk of cooperation and exceptional measures... In the name of an upcoming "cyberwar", control over the network they might obtain could become the perfect tool to restrict our freedoms. What is this "cyberwar" about anyway? Isn't it just a state of permanent war, like in Orwell's "1984", justifying the unjustifiable, beyond the rule of law? As these political and commercial attacks against a free, open, universal therefore neutral Internet intensify, citizens get more and more trained to react against legislative attacks, by coordinated advocacy. But when powerful memes are crafted in order to justify restrictions on our freedoms, how can we react? As diverse hacker communities loving the Internet and the flow of data, we must address mass manipulation and anti-democratic influence designed at imposing restriction of our freedoms. Jérémie Zimmermann La Quadrature du Net 13:30 01:00 Baikonur openleaks where leaking meets engineering Society lecture This talk will introduce the next phase of the OpenLeaks project. We will present a more detailed insight into the project and take you on a tour around the different OL subprojects. We will also announce the activities we are planning for this years camp. This talk will introduce the next phase of the OpenLeaks project. Where last years congress was still too early, we would like to take the chance to present a more detailed insight into the project and its technicalities, and take you on a tour around the different subprojects OL is comprised of. We will also announce the activities we are planning for this years camp, including some workshops and a special surprise. OpenLeaks OpenLeaks homepage http:// 15:00 01:00 Baikonur strong_encryption_of_credit_card_information Attacks on common failures when encrypting credit card information Hacking lecture en The PCI DSS standard require strong cryptography or secure hashing as ways to protect cardholder information. But one important factor is missing; detailed instructions for how to correctly apply cryptography to credit card numbers. The primary objective of the Payment Card Industry Data Protection Standard (PCI DSS) is to safeguard cardholder information such as the Primary Account Number (PAN) and the sensitive authentication data (CVV2, Track 1 and 2). Chapter 3.4 deals with the details regarding encryption and key management. > 3.4 Render PAN unreadable anywhere it is stored (including on portable digital media, > backup media, and in logs) by using any of the following approaches: > * One-way hashes based on strong cryptography > * Truncation > * Index tokens and pads > * Strong cryptography with associated key-management processes and procedures What constitutes strong cryptography is further detailed in the glossary and in the PCI SSC FAQ documents as well as in periodic communication to security assessors. But one important factor is missing from the communication; the modes of operation for the cryptographic primitives. The PCI DSS glossary specifically mentions AES, 3DES, RSA, ECC, Elgamal and SHA1 as “industry-tested and accepted standards and algorithms for encryption” but fails to address important issues such as RSA padding and cipher block chaining for 3DES and AES. The requirements are quite clear on the fact that encryption and hashing needs to be implemented properly, but gives little guidance to developers or assessors as to what strong cryptography actually means. There are at least three different scenarios where cardholder information appears to be protected in compliance with the standard but remains vulnerable if disclosed. This presentation describes attacks for common failure scenarios when encrypting credit card information. Torbjörn Lofterud 16:30 01:00 Baikonur is_this_the_mobile_gadget_world_we_created The story of the world's first socially responsible mobile phone. Society lecture The most ubiquitous device on the planet is arguably the mobile phone. Tragically, it is also a device built under some of the worst living and working conditions in the world. This is the story of a mission - To build the world's first ethical phone. The most ubiquitous device on the planet is arguably the mobile phone. We use them, we need them, we get new ones every few years. Our old phones are either in a drawer, a landfill, or in the hands of those people in places like China and Brazil where old electronics are broken down or repurposed. Meanwhile in many parts of one of the most troubled nations in the world, the minerals that make are new phones are being mined under some very questionable circumstances. From some of the worst labor conditions in the world comes the cobalt and other essential minerals that will one day be your iphone. -- Is this how it simply has to be? -- A group in the Netherlands has embarked on an ambitious, risky, and little known quest - To build the world's first ethical phone. Are where did they start? In the Congo of course... Bicyclemark 18:00 01:00 Baikonur stuff_you_dont_see_every_day GNU Radio Internals - how to use the Framework Science lecture en Software Defined Radio defines a new approach to analyze signals with software. With the flexibility of software SDR literally opened a new spectrum of hacking. However the internals of Digital Signal Processing, especially from the perspective of informatics and computer science, are hard to explore. The lecture delivers a case-study on how to analyze 802.15.4 (alias Zigbee, as an easy protocol) with USRPs (modular popular hardware for SDR) on a real-time protocol (for send time verification, sniffing etc.). Furthermore internals on DSP will be explained - as simple as possible. The intent is to also give a non-academic start point and to seed motivation to explore more advanced projects (like osmocom*). So practically the lecture explains what a Software Spectrum Analyzer or a Software Oscilloscope does: from a Hacker's perspective. It gives insight into a USRP(2) internals and goes into programming C++ and Python with GNU Radio. All demo-analysis will remain within the ISM band. - No GSM/Tetra will be captured. It's about the SDR technology and its use-cases - for a clear and constructive adaption by the Hacker's community to assist interesting making projects (of home-automation devices using 802.15.4 e.g.). In many media articles - especially from last Chaos Congress - a misunderstanding can arise to reduce SDR to (GSM) attack scenarios while this is not the only/general use-case. The lecture however clearly aims to assist any intended understanding how the osmocom* implementations work - for example. Or other projects on cgran[1]. [1] https://www.cgran.org/ Marius Ciepluch GNU Radio About Modulations [pdf] 19:30 01:00 Baikonur transition_telecom Telecommunications and networking during energy descent Society lecture en We'll need to come to grips with the challenges that declining oil production and increasing temperatures present. This talk explores positive future scenarios for the world of networking and communications past the great global energy free-for-all. "Business-as-usual" and "surely-they'll-think-of-something" scenarios are increasingly for dreamers. The time of perpetual growth is over and the cracks are beginning to show everywhere. But let's get past doom and gloom: there's a growing movement that acts to prepare themselves and their communities for "energy descent": cold turkey while kicking the oil habit. Too many are stuck thinking the future is either going to be apocalyptic or very much like today. (Both futures conveniently have in common that you don't have to do all that much.) In so-called Transition Towns, groups of inhabitants are working together to rethink the future of agriculture and land-use to effectively re-localize food, goods and services. All over the place, people are thinking, acting and (importantly) having a good time doing so. This talk will explore a number of future scenarios and try to assess the impact on the world of computers, networking and telecommunications. Most people in this transition movement are inspired (but not blinded) by technologies and methods from a time past. Modern communications technology has no set pre-industrial state to fall back on. But it would still be very nice if any future still featured a phone to call the fire brigade, not to mention as much of this internet thing as we can carry. So which technologies are resilient and which are brittle? What can we keep and what do we leave behind as energy consumption of everything becomes a design criterium, business models change, whole economies collapse and some central structures crumble? How do we best prepare for a variety of possible futures? And can we maybe have (even) more meaningful and fulfilling lives in the present by doing so? Needless to say our community has a defining role to play in figuring out the answers to these and other big questions in this field. Frank Rieger Rop Gonggrijp 21:00 01:00 Baikonur the_blackbox_in_your_phone Some details about SIM cards Hacking lecture This talk sheds some light on a cellphone-component, that's inevitable, virtually unclonable and as closed as it gets: the SIM. The SIM can do a lot more than just user-authentication nowadays: the SIM Application Toolkit gives it control over your phone Recently, location tracking in major smartphones caused quite a stir. Closed systems make discovering such unwanted behavior more difficult. While projects like osmocomBB aim at creating an open cellphone architecture, the SIM seems to be mostly inconsiderable and harmless. It's little known, that the SIM Application Toolkit (SAT) gives the SIM extensive control over the phone. Via the SAT, the SIM can obtain location information, monitor and redirect calls and send/receive short messages, as well as IP packets. The SIM-firmware can be updated over-the-air. Most of these features can even be used without the user noticing. Along with the mentioned SAT, this talk will illuminate the classic GSM SIM, as well as the 3G USIM altogether. After a quick introduction to smartcards in general, communication with the SIM will be explained in more detail. The most important SIM commands and files will be explained and how one can monitor communication with a SIM and inject arbitrary data into the session. hunz 22:30 01:00 Baikonur gprs_intercept Wardriving phone networks Hacking lecture GPRS data networks provide the backbone for our mobile society. Just like their siblings, GSM networks, the GPRS infrastructure is often lacking an appropriate level of protection. This talk introduces the concepts behind GPRS transmissions and illustrates how GPRS data can be sniffed. We will release tools to be used at the camp. Karsten Nohl Luca Melette 00:00 00:30 Kourou who_is_snitching_my_milk Nonlinear dynamics/analysis of vanishing bovine products in an office environment. Science lecture en Nowadays many office environments offer small tea kitchens for their employees. From subjective experiences there seems to be a milk drain in these environments. However, fundamentel research is still missing. Therefore, in this talk we will present experiments and the experimental setup to determine the volatility of milk in tea kitchens and possible causes. The experimental setup consists of a device for determining the amount of vanished milk (DDAVM), a device for counting fridge door openings (DCFDO) and a device for measuring the consumed electrical energy (DMCEE). The light diode based DCFDO is hidden in a regular yoghurt cup. Additional to these measurements we will present some model canditates which are based on plausible psychological behavior of the employees. With innovative model discrimination techniques, model candidates are falsified by suggesting model-based experimental designs. With these experiments and mathematical models we strongly believe to contribute to a better understanding of vanishing bovine products in office environments. This can help to predict the present state of milk in refrigerators, which leads to a more efficient milk consumption. Further, deep insights into social-psycological interplays between colleagues may be extrapolated to generic properties of different societies. The snitching milk consumption curve may also hint, which kind of social system (e.g. communism, socialism, capitalism), people belong to. André Franz 12:00 01:00 Kourou giving_great_workshops You can create your own successful workshop Community lecture en Mitch Altman has taught well over 10,000 people to solder and make cool things at workshops around the world. Drawing from his experiences, this lecture will show you how to create and give your own successful workshops about what you know. We all know something that others can benefit from, that others want to learn. A workshop is a gratifying way to share what you know with others. One of the reasons for the increasing popularity of Maker Faires, hacker conferences, and hackerspaces is that they all provide workshops. Workshops are not only fun, but they work. They incorporate learning-by-doing, a very effective method of teaching, learning, and sharing knowledge and skills. They also make use of the community that forms during the workshop, where all participants become available to help one another. Creation within community is a very compelling combination that we can all make use of and enjoy. This is what a successful workshop is all about. In this lecture Mitch Altman will share what he has learned from his experience giving workshops around the world for the last few years. Although he teaches people how to solder and to make cool things with microcontrollers, what Mitch has learned about giving workshops is applicable to giving a workshop on just about any topic. Topics included: Choosing an objective that can be accomplished in the allotted time, including setup and cleanup. Choosing a topic that is appropriate for a workshop format, where all participants can create something. Making the workshop an enjoyable process for all. Building confidence and enthusiasm that will be shared with others during and after the workshop. Making your workshop appear effortless and easy to the participants. Preparation needed before planning the workshop. Taking your workshop on the road. Mitch NYC Resistor workshop, USA Baltimore Node workshop, USA TOG workshop, Ireland Harkopen workshop, Romania 13:30 01:00 Kourou solid_rocket_engines Design and implementation of engines with solid propellant Hacker Space Program lecture en We will present the design and construction of a solid rocket motor and discuss results from recent test campaigns. Solid rocket motors are cheap, reliable and have been used for several centuries. Although inferior in specific impulse compared to hybrid and liquid engines, this class of thermochemical engines have still advantages regarding complexity and reliability. 15:00 01:00 Kourou inertial_navigation Rigid body dynamics and its application to dead reckoning Hacker Space Program lecture en The motion of objects through space can be observed in everyday life and the analysis of their dynamics leads to a fundamental notion of theoretical mechanics, the rigid body. Inertial navigation is based on continuous measurement of acceleration and angular velocities and the inversion of the rigid body's equations of motion. Additionally, the modeling of noise and error propagation is essential to correctly estimate position and attitude. 16:30 01:00 Kourou life_foods Benefits of use of microbial fermentations in food and beverage preparations. Hacker Space Program lecture en The regular consumption of life foods was very important for healthy life style thousands years ago and the same applies for today. The use of today's scientific knowledge in combination with current technology will allow us to optimise these techniques. Cultural heritages of human societies around the world include sets of traditional techniques for life-culture foods and beverages preparations the consumption of which was part of everyday life. Documentation and analysis of these techniques can result in deeper understanding of the relationships of the local communities and their environments that has allowed them to live in these locations for many generations. This project discovers and distinguishes key functional elements of these relationships to promote them. This can result in more efficient and environmentally friendly food and beverage culturing approaches combining traditional wisdom with today's scientific understanding and technology, activity described as food and beverage hacking. Open source practices will facilitate promotion of these newly developed approaches and techniques in various communities around the world, improving their sustainability and decreasing their impact on the environment. Key words: life-culture foods; life-culture beverages; food culturing; beverage culturing; food hacking; beverage hacking; traditional societies; sustainable development; local communities; open source Frantisek Apfelbeck home page for the project basic info about fermented foods 18:00 01:00 Kourou post_hacker_ethics_cyberwar Applied loss of control to hacker-ethics? Culture lecture en Several newly formed hacker groups were in the press, like Anonymous and lulzsec. We will analyze and discuss how these fit into the world, and how the different groups (politics, press, media, hackers) react to this new movement. Set sail for fail! There are more and more interesting groups active in the internet, apart from the usual lolpicz and pictures of kittens. There was wikileaks which had a big impact to mainstream media, similar to the BTX and the KGB hack from the CCC in the last century. The politicians now discuss about wikileaks and declare cyberwar and want to privatize the internet ("the main problem of the internet is the open content"). Additionally there are new groups, anonymous and lulzsec, which discovered a major problem in wikileaks, that there is a single face connected to it. They get over it and act anonymously without a clear political agenda (simply because every new activity attracts a different set of people). "Anonymous" also eases participation of non-hackers in some activities, like DDoS VISA/paypal etc). While some hacker groups join the establishment and react, others finally wake up from their powerlessness and act, in a sensefull or senseless way. We will compare different approaches and look into history and achievements of non-parliamentary groups. We want to provide useful discourse and provoke a fruitful discussion. Hannes Jens Ohlig 19:30 01:00 Kourou latest_developments_around_the_milkymist_system_on_chip A roundup of one the most advanced open hardware projects Hacking lecture en Milkymist develops a comprehensive solution for the live synthesis of interactive visual effects. It features one of the first open source system-on-chip designs. This talk gives a roundup of what has happened during the last 1.5 year in this project. The Milkymist project is an informal organization of people and companies who develop, manufacture and sell a comprehensive open source hardware and software solution for the live synthesis of interactive visual effects for VJs. The project goes great lengths to apply the open source principles at every level possible, and is best known for the Milkymist system-on-chip (SoC) which is among the first commercialized system-on-chip designs with free HDL source code. As a result, several Milkymist components have been reused in applications unrelated to video synthesis. For example, NASA's Communication Navigation and Networking Reconfigurable Testbed (CoNNeCT) experiment uses the memory controller that was originally developed for the Milkymist system-on-chip and published under the GNU GPL. A lot has happened since the introduction to the project at the 26C3. We have designed and are now producing and selling our own hardware called Milkymist One. The system-on-chip design has reached a very usable state, with improved graphics acceleration capabilities, support for all the interfaces on the Milkymist One (e.g. video digitizer, USB, Ethernet, MIDI, DMX, ...) and a GDB-compatible in-system debugger. On the software side, we have ported the RTEMS real time operating system and up-leveled the Linux port. We also have developed our own end-user video synthesis application which runs on RTEMS and uses the MTK embedded GUI toolkit (based on Genode FX). Several third-party applications and many libraries were successfully run on the Milkymist SoC, such as the MuPDF document viewer and the Lua and Ruby programming languagues. The SoC software can also be run and debugged in the latest versions of the QEMU emulator. This talk presents all this, and more. Demonstrations included. Sébastien Bourdeauducq Project homepage 21:00 01:00 Kourou accessblocking How citizens can hack the legislative process to protect their freedoms online Society lecture en The german access-blocking debate in 2009 only was a prelude to the EU-wide introduction of a blocking infrastructure in the Internet. Only delayed by the Lisbon Treaty compulsory, blocking by all EU-Memberstate has been discussed in the European Parliament since March 2010. Jérémie Zimmermann and Christian Bahls will describe how to get involved with policy-making in the EU using the discussion around Access-blocking as a case study. Christian Bahls MOGiS e.V. Jérémie Zimmermann 22:30 01:00 Kourou tempo_phythm_echo Science lecture This talk explains how the tempo of music can accurately be measured and how it can be used afterwards to extract rhythmical information and composition properties. These can further be used to find similar songs, generate synthetic rhythms and mix music. The peaks/valleys in autodifference/autocorrelation plots correspond potentially to the perceived tempo of music. Consequently, they can be used to measure the tempo of music. The problem with these techniques is that reported tempos might be off by a multiplication factor. This presentation discusses removal of such biases as to flatten out the autodifference/autocorrelation plots. Secondly, we discuss how the problem of tempo-harmonics (120 BPM reported as 90 BPM for instance) can be reduced from a multi-class classification problem to a binary classification problem. The resulting tempo information makes it further possible to extract rhythm and composition extraction from music. Werner Van Belle BpmDj homepage Latest tempo article First tempo article Rhythm extraction article Presentation given at the Insomia Festival Presentation given at the music department Dortmund 12:00 01:00 Baikonur what_is_brewing_in_brussels What is coming down the political pipeline in the EU Society lecture en Right now the European Union is in a bit of a lawmaking frenzy on areas that are relevant to the internet in general. This Commission has several ambitious undertakings going on with regard to: * enforcement of so-called intellectual property rights * data protection * data retention directive * Passenger Name Records (PNR) Furthermore, several recent efforts are wrapping up and are moving to the national level, such as ACTA and webfilters against child pornography. During this lecture Katarzyna Szymielewicz (Panoptykon Foundation Poland) and Walter van Holst (European Digital Rights) will explain the main topics in Brussels, what you can do to get involved to defend your freedoms. Walter van Holst 13:30 01:00 Baikonur digitale_gesellschaft_ev Ein neuer Ansatz, um digitale Bürgerrechte zu erhalten Society de Im April 2011 wurde mit "Digitale Gesellschaft" ein neuer Verein zum Erhalt und Ausbau von digitalen Bürgerrechten präsentiert. Die Ziele von "Digitale Gesellschaft" sind der Aufbau einer eigenen Kampagneninfrastruktur, eine andere Herangehensweise an Kampagnen, die sich visuell und kommunikativ auch an Nicht-Nerds richten und für unsere Themen Bewusstsein schaffen sollen, sowie der Aufbau einer Interessenvertretung für Nutzerrechte in Berlin und Brüssel. Dieser Vortrag mit anschließender Diskussion möchte einen Einblick in die Ziele und Arbeitsweise von "Digitale Gesellschaft" liefern, sowie Pläne für die Zukunft / nächste Kampagnen / Ansätze zur Diskussion stellen. Markus Beckedahl Digitale Gesellschaft 15:00 01:00 Baikonur die_psychologischen_grundlagen_des_social_engineerings Science lecture de Dieser Vortrag zeigt, wie Social-Engineering funktioniert und erklärt die zugrundeliegenden Tricks und Kniffe anhand sozialpsychologischer Studien und Experimente. Außerdem werden Beispiele, Warnsignale und Gegenmaßnahmen vorgestellt. Social-Engineering ist eine Angriffsstrategie, die nicht die Technik als Opfer auserkoren hat. Stattdessen wird hier viel lieber - und vor allem effizienter - der Mensch, bzw. sein Verhalten angegriffen. Ein Angreifer verwendet verschiedene Strategien und Taktiken, um aus Benutzern der Systeme Informationen wie Passwörter oder IP-Adressen herauszuholen. Mithilfe dieser Informationen kann er erfolgreiche Angriffe gegen Zielsysteme fahren. Dieser Vortrag zeigt, wie Social-Engineering funktioniert und erklärt die zugrundeliegenden Tricks und Kniffe anhand sozialpsychologischer Studien und Experimente. Außerdem werden Beispiele,Warnsignale und Gegenmaßnahmen vorgestellt. Der Vortrag richtet sich an Sicherheitsverantwortliche und Systemadministratoren, die verstehen wollen, wie Social-Engineering funktioniert und dieses Wissen in ihre Sicherheitsmaßnahmen integrieren wollen. Vorgestellt werden die sozialpsychologischen Grundlagen der Psychologie der Manipulation. Es handelt sich hierbei um einen wissenschaftlichen Vortrag, der Methoden und Werkzeuge der Sozialpsychologie nutzt und vorstellt. Psychologische Grundlagen der Manipulation<br /> Reziprozität <br /> Wer A sagt -- von Commitment und Konsistenz<br /> Soziale Bewährtheit <br /> Sympathie <br /> Attraktivität<br /> Ähnlichkeit<br /> Komplimente <br /> Kontakt und Kooperation<br /> Konditionierung und Assoziation<br /> Autorität<br /> Schein und Sein<br /> Knappheit<br /> Stefan Schumacher 16:30 01:00 Baikonur steal_everything_kill_everyone_cause_financial_ruin Or: How I walked in and misbehaved Hacking lecture en This is not a presentation where I talk about how I would get in or the things I might be able to do. This is a talk where I am already in and I show you pictures from actual engagements that I have been on. They say one picture is worth a thousand words I show you how one picture cost a company a million dollars and maybe even a few lives. In a community where we focus so much on the offensive I also make sure with every attack I highlight. I spend time discussing what would have stopped me. We need to know the problems but we need more talks providing solutions and that is what I hope people will get from this. I show the dangers of Social engineering and how even an employee with no SE experience can be an eBay James Bond which can cause total financial ruin to a company. These Security threats are real. So are these stories! I talk about how there is only 1 fact that should concern a business I am GETTING IN! No need to discuss defense we are way past that! I discuss the 2 rules I operate under "I aim to misbehave" & "Let's go be bad guys" notice nothing about audits or PCI, HIPPA or Gramm–Leach–Bliley Act I just want to do as much evil as I can get away with and what causes you the most harm I could care less if you are 'compliant' on anything. Those 2 rules gives me these 3 outcomes which I discuss in depth. 1. Steal everything I show with actual pictures how I could steal purses, backpacks, cell phones, cars, laptops, etc? I also provide a real world story from the news showing it is not theory but known practice of thieves. 2. Kill everybody I show pictures of mechanical rooms that I was able to get in. Pictures of the fire suppression and alarm systems I could have turned off even a video of me walking into the back of a hotel going to their hazardous chemical closet that was unlocked and then walking unchallenged through the kitchen where I could have used those chemicals to poison all the food and also start a fire with them. I also provide a real world story from the news showing it is not theory but known practice of killers and terrorist. 3. Cause total financial ruin I will show offices of VPs and CEOs that I had access to and where I would have been able to steal company secrets and actual formulas that are the livelihood of the companies I breached. I also provide a real world story from the news showing it is not theory but known practice of corporations. Countermeasures With every outcome I provide the ways I could have been stopped and things that should have been in place that would have prevented me from carrying out any of these attacks. Some of the defenses are the same for everyone though once again defense in depth is what could have saved the day. Jayson E. Street 18:00 01:00 Baikonur ich_und_23 Fingerabdrücke der DNA Science lecture Der Vortrag wird zunächst die Grundlagen des DNA-Fingerprinting auf unseren 23 Chromosomenpaaren zusammenfassen. Dabei wird besprochen, wie ein genetischer Fingerabdruck praktisch für die Verwendung in der Forensik entsteht und in welcher Form die Speicherung in einer Datenbank vorgenommen wird. Darauf aufbauend werden Stärken und Risiken der Technologie erörtert. In der modernen Forensik spielt der DNA-Fingerabdruck eine immer wichtigere Rolle, die Landeskriminalämter sprechen regelmäßig von hohen Aufklärungsraten dank der DNA-Analysedateien und des sogenannten genetischen Fingerabdrucks. Welche konkreten Risiken vom genetischen Fingerabdruck einerseits und von den Datenbanken andererseits für unsere Bürgerrechte ausgehen, kann man zunächst nur dann bewerten, wenn zumindest die einfachen molekulargenetischen Grundlagen klar sind. Der Vortrag wird genau hier ansetzen und zuerst kurz in die biologischen Zusammenhänge einführen. Darauf aufbauend wird praktisch illustriert, wie im forensischen Labor aus einem Asservat ein Datensatz mit dem genetischen Fingerabdruck entsteht. Weiterhin wird die Sicherheit des Abdrucks mithilfe der Biostatistik besprochen. Danach diskutieren wir abschließend mögliche Zukunftsvisionen - und damit auch berechtigte Ängste und Vorbehalte in Bezug auf molekulargenetische Datenbanken. Mirko Swillus 19:30 01:00 Baikonur hacking_dna Compiling code for living systems Science lecture en Genetic modification is getting cheaper and biohackers are making it more accessible. This talk outlines the state of DIYbio and institutional synthetic biology; current challenges in biological programming and why you should be hacking biology. The technology to program biological self-replicating machines is here now. Synthetic biologists are reverse-engineering living cells and building bio-compilers that will facilitate abstract design of complex genetic programs. This talk will show how such a genetic program can be written using freely available parts and design tools. How the DNA can be synthesized, assembled, inserted into a cell culture and the result debugged. The tools to accomplish this exist in two spaces: The wetlab (biological) and the drylab (software). Wetlab access continues to be a limiting factor in participation by the wider community of citizen scientists, hackers and makers. Access restrictions both technological and legal are not foreign to hackers, and biohackers are currently facing obstacles such as GMO laws, expensive lab equipment and restricted access to materials, yet DIYbio groups around the world are building labs, acquiring expertise and making this technology available to everyone. This talk gives an overview of the gap in capabilities between professional labs and DIYbio labs, how it can be overcome, and the unique challenges of biosafety, ethics and intellectual property in biology. Marc Juul 21:00 01:00 Baikonur ios_application_security A look at the security of 3rd party iOS applications Hacking lecture Over the last few years there has been a signifant amount of iPhone and iPad application development going on. Although based on Mac OSX, its development APIs are new and very specific to the iPhone and iPad. In this presentation, Ilja van Sprundel, Principal Security Consultant at IOActive, will discuss lessons learned from auditing iPhone and iPad applications over the last year. It will cover the use of specific APIs, why some of them aren't granular enough, and why they might expose way too much attack surface. The talk will cover ssl, xml, url handling, UIWebViews and more. Furthermore, it will also cover what apps are allowed to do when inside their sandbox once an application has been hacked. Ilja van Sprundel 22:30 01:00 Baikonur imagine_the_future_of_money Economic transformations, hacker culture and why we should be so lucky Society lecture en What comes after capitalism? We will give an overview on the development of complementary and alternative monetary systems: Which ones are there to stay, how they influence social development, how they can be improved and why hackers should really care. DYNDY is an effort to inform and empower communities with concepts and tools to overcome scarcity. Since the beginning of 2010 it unfolds as an academic research conducted in cooperation with experts from various fields: economists, philosophers and hackers. Its outcomes are visible as publications which, still being grounded in scholarly written theory, aim at divulgation of innovative concepts and at interaction with existing and future implementations of monetary systems. Quoting Bernard Lietaer: “We can’t imagine to enter the Information Age without changing the fundamental and most used communication tool: Money”. At the CCC camp 2011 we intend to follow this call and break the foremost taboo of our time which is, indeed, money. With our research we intend to establish a theoretical and practical framework for further development of this ancient media, which is widely used around the world and can finally benefit from the innovative drive that hackers have given so far to networking technologies. After about 2 years of research, in this lecture we intend to present in detail our findings, mostly answering impelling questions as: How financiarization is leading to the dissolution of the capitalist market and which values will naturally arise afterwards, what is the meaning of General Sentiment and how affect converges in the information economy, what peer 2 peer cryptographic currencies mean to the global markets and what we can still develop to benefit and share wealth among all those who are using money around the World. The language used will be both technical and theoretical, still no particular knowledge is needed, but pure interest on the subject and inclination to follow an interdisciplinary discourse between humanities and science. Jaromil radium Bitcoin vs old-World banks A Pattern Language for Alternative and Complementary Money Systems DYNDY research on Witcoin Freecoin.ch Video of the lecture 00:00 01:00 Kourou stalker Ein audiovisuelles Live-Hörspiel Culture lecture de Die atomar verstrahlten Ruinen eines ehemaligen Kernkraftwerkes sind Symbole für das bevorstehende Ende der Zivilisation, aber gleichzeitig die Wunschmaschine, die alle Sehnsüchte stillen kann. Dieser Ort ist nicht Fukushima und auch nicht Tschernobyl, sondern der Zielort der Protagonisten im Roman „Picknick am Wegesrand“ der russischen Autorenbrüder Arkadi und Boris Strugazki. Der aktuellen Generation wurde diese Geschichte allerdings durch ein Computerspiel bekannt: „Stalker“. Und doch lebt in diesem Spiel noch das ursprüngliche Hauptthema der Strugazki-Brüder weiter: Kritik am Kommunismus im Allgemeinen und der Auslöschung des Individuums durch den Staat im Speziellen. Im audio-visuellen Hörspiel "Die Strugazki-Brüder oder das homöostatische Weltbild" beleuchtet die Nerdspielwerkstatt die Lebensgeschichte und Leitmotive der Science-Fiction-Autoren, die durch den Nachhall ihrer Ideen eine ganze Generation von Computerspielern nachhaltig geprägt haben. Agata Królikowski Ina Kwasniewski Jens-Martin Loebel Kai Kittler Marcus Mews Marcus Richter Homepage der Nerdspielwerkstatt 12:00 01:00 Kourou sport_fuer_nerds discover your body Community lecture de Viele von uns sitzen länger vorm Rechner als es ihnen gut tut, irgendwann geht dann die Suche nach einer geeigneten Sportart los … Schnell landet man im Fitnesstudio, da dies die 'einfachste' Möglichkeit zu sein scheint, fit zu bleiben und eventuell Gewicht zu reduzieren. Relativ schnell bemerkt man dann, dass es doch etwas langweilig wird und die Motivation schwindet und man zum Schluss kommt, Sport sei doch nichts für Computerfreaks. Dieser Vortrag soll aufzeigen, welche Sportarten für Nerds besonders geeignet sind und warum. Desweiteren soll er einen kurzen Einblick bieten in das, was herauskommt, wenn man Sport und Informatik zusammenbringt. Stichpunkte: - Sport wieso? - Enjoy your body … - Trete in Kontakt mit deiner Umwelt … - Das Fitnesstudio … ist nichts für Nerds - Welcher Sport dann? - Anforderungen die wir an den Sport stellen - Der körperliche Aspekt - Der geistige Aspekt - Der soziale Aspekt - Die Gesamtmotivation … Spass - Sportarten die diese Anforderungen erfüllen - Ü18 Toben im Tiki Kinderland - Beispiel Klettern - Beispiel Tanzen - Beispiel Kampfsport / Luta Livre / MMA (Mixed Martial Arts) / Vollkörperkontaktblitzschach - Chaos kompatibler Sport am Beispiel MMA - Kampfsport als Schachspiel - Analyse der Taktiken im Kampfsport - Beispiel Ahand eines selbst entwickelten Programms - Sportinformatik … ein Betätigungsfeld mit Potential Michael Schwab Ü18 Toben im Tiki Kinderland (Video) Functional Fintness Anleitungen Functional Fitness (Video) Luta Livre Summercamp (Video) Breakdance WM 2007 Sportschule Köln (Homepage) MMA Berlin (Homepage) YouTube Video Class of 99 Masterarbeit Soziologie zum Thema MMA von Anne Pellaud (PDF Dokument) Parcour / Freerunning (Video) 13:30 01:00 Kourou hybrid_rocket_engines Design and implementation of rocket engines with two-phase propellants Hacker Space Program lecture 16:30 01:00 Kourou a_modern_manifest_of_cyberspace The internet is dead, long live the internet Hacker Space Program lecture The internet is increasingly falling under the control and restrictions of governments and multinational corporations. Internet connections are filtered and censored, not only in China but blatantly so in 'western' countries such as Australia and Canada. The content industry is clamping down on infringement on intellectual property and calls for ever more far-fetching and over-reaching laws to be put into effect. Meanwhile, telco's are making deals with content providers to decide how gets premium access and who gets degraded access to their networks. We have seen the internet rise, saw its potential and then lost it to capitalism and state control. It is time we truly 'take back the web'. The modern manifest of cyberspace is a call to action, urging the community to regain control and fight for a free infrastructure to sustain an uncensored and unbiased flow of information. The internet is increasingly falling under the control and restrictions of governments and multinational corporations. Internet connections are filtered and censored, not only in China but blatantly so in 'western' countries such as Australia and Canada. The content industry is clamping down on infringement on intellectual property and calls for ever more far-fetching and over-reaching laws to be put into effect. Meanwhile, telco's are making deals with content providers to decide how gets premium access and who gets degraded access to their networks. As such, the independence of cyberspace [https://projects.eff.org/~barlow/Declaration-Final.html as declared in 1996] is a thing of the past. We urgently need to reclaim this independence, to ensure the free flow of information. One way out is the deployment of darknets and encrypted tunnels layered over the existing commercial internet. In this talk I will argue for a more radical option though; I will call to abandon the existing infrastructure and build our own. This talk will highlight various already ongoing initiatives supporting this bold idea, and ideas that are currently bubbling up to build grass-roots internet. Wireless mesh networks that connect local areas, initiatives to connect rural areas to the larger networking community and the [http://events.ccc.de/camp/2011/space.html hackerspaces space program] launching this year at the CCC camp in August, which creates the environment for an actual grass-roots telecommunications satellite network and unites various ongoing efforts in this area. But most of all, this talk will argue that the time is here to join loose initiatives and localized grass-roots telecommunication efforts to implement a world-wide and independent communications network. This talk will explore possibilities, challenges and perhaps the need to unlearn the familiar and adapt to a new era of a truly decentralized infrastructure without traditional hubs of power and controlling agencies. gmc Brief sketch Earlier lightning talk on the subject at Newline Ghent hackerspace 0x20 18:00 01:00 Kourou windkraftanlagen Aufbau, Betrieb, Probleme Science lecture de Windenergie ist momentan noch interessanter geworden, aber kaum jemand weiß über die eingesetzte Technik Bescheid. Daher soll sowohl der Aufbau als auch der Betrieb erklärt werden. Zusätzlich wird auf potentielle Probleme eingegangen. Ausgehend von den Grundlagen der Windenergienutzung wird der allgemeine Aufbau einer Windkraftanlage beschrieben: Fundament, Turm, Gondel, Nabe und Flügel. Dabei wird besonders auf den weit verbreiteten Typ mit horizontaler Rotorachse eingegangen. Es folgt eine Übersicht über die verwendeten Sensoren und die Steuerungssysteme und der Betriebsaublauf wird erklärt. Auch Windparkmanagement ist ein Thema im Vortrag. Die angeblichen und tatsächlichen Gefahren durch Windkraftanlagen wie Lärmbelästigung, „Landschaftsverbrauch“, Schattenwurf, Gefährdung von Vögeln und Fledermäusen, Elektromagnetische Beeinflussungen und Eiswurf werden aufgezeigt und erklärt. Den Abschluss bilden einige Zahlen zur aktuellen Situation der Windkraft. luky 19:30 01:00 Kourou counselling_mischief_as_thought_crime Social Networks, Free Speech and the Criminalization of Dissent in Canada Society lecture This presentation will show how the RCMP, CSIS, CSEC and other groups worked to "secure" the 2010 Olympics, G8 and G20 by criminalising dissent, and the use of "Open Source Surveillance" to attempt to crack down on all opposition to these mega-events. In 2010, Canada was hosting two of the world's largest events, the 2010 Winter Olympic Games in Vancouver, British Columbia, and the G20 summit in Toronto, Ontario. In both cases, there was a special group formed from the various security groups in Canada, and these groups were called the Vancouver 2010 Integrated Security Unit and the G8-G20 Integrated Security Unit. In the case of both Toronto and Vancouver, citizens found that their city was being turned into a fortress to ensure security, and surveillance was being used against its own people. This is combined with laws that are designed to protect the corporate sponsors of the games, as well as the International Olympic Committee (IOC). This talk will focus primarily on the tactics of the Vancouver 2010 Integrated Security Unit during the Olympics, and may touch on the G8-G20 Integrated Security Unit in Ontario, and how these groups used various public forums on the Internet to identify and compile a secret list of Activists to be targeted with intimidation tactics, arrest and in some cases, prolonged detainment. This will also cover the aftermath of the surveillance to see what lessons an international audience can take from this, as well as a dispelling the myth that Canada (and other Western countries) don't engage in the same behaviour, despite their reputation as being "Better than the United States". This talk is of particular interest to technologists, due to the recent case of Byron Sonne, a security researcher, who, like me, dared to poke the Security Apparatus in the eye, but unfortunately was still in prison when I wrote this presentation. Due to a publication ban, his information will NOT be presented, but other defendants in the G20 who have published their material will have theirs presented. Joe My blog which holds all the ATIP documentation, as well as commentary Vancouver Media Coop, contains an Anti-Olympic Archive 22:30 01:00 Kourou financing_the_revolution Secure, private value transactions using digital cash Society lecture Financing The Revolution is a discussion about digital currencies with a particular emphasis on Bitcoin, a new distributed peer-to-peer electronic currency. Digital cash and Bitcoin in particular have caused many new and interesting markets to appear, and these are examined as well as the link between economic freedom and the expression of other basic rights. Keywords: digital cash, cryptography, bitcoin, dgc, darknets, markets, civil liberties Financing The Revolution is a discussion about digital currencies with a particular emphasis on Bitcoin, a new distributed peer-to-peer electronic currency. Digital cash and Bitcoin in particular have caused many new and interesting markets to appear, and these are examined as well as the link between economic freedom and the expression of other basic rights. Jeffrey Paul is a American hacker and entrepreneur currently based in Berlin. Founder of datavibe.net (1999) and EEQJ (2009), he writes, presents, and consults on a wide range of topics including civil liberties and practical applications of networking, cryptography, and security systems. Keywords: digital cash, cryptography, bitcoin, dgc, darknets, markets, civil liberties Jeffrey Paul (sneak) 12:00 01:00 Baikonur runtine_reconfigurable_processors Science lecture en The talk will give the audience an introduction to the world of runtime reconfigurable processors. The current state of the art in processor performance improvements are multicore-processor systems. These systems offer a number of homogeneous and static processor cores for the parallel distribution of computational tasks. Another approach are reconfigurable processors or reconfigurable multicore processor systems, which can adapt to program needs on the fly during runtime. This is done through swapping different kinds of functional units in and out or by giving the processor freely available space for hardware configuration. After years of just being a research field such systems can be seen in the wild. For example the HC1 architecture from Convey or the combination of an Intel Atom processor with an Altera FPGA. The talk will introduce the audience to the field of reconfigurable processors. It will classify the different kinds of such processors and describe some architectures briefly. At the end general security issues are explained. Dominik Meyer 13:30 01:00 Baikonur decentralized_clustering Making the net - even if your local dicators hate it! Society lecture In January 2011 the fear of all internauts became bitter truth. A whole country was kill-switched by the government. The flow of data was interrupted, communication laid waste. Not only the Internets was taken down, other means of communication were interrupted too. Cell Phone providers took down their services. So, there was no Internets in Egypt. Internauts had no chance to communicate what is happening, mothers and fathers could not send emails to theire relatives. No data was flowing. As the phone lines were working, this was the solutions: Modems. In this talk I will describe what Telecomix agents had done during these days to bring back internet to the people of egypt. We used modem technology and set up dial up points all over the world and convinced providers with modem pools to open theire pools for the egyptians for free. Another thing we did was communication via HAM radio and of course fax. Not like anonymous who like to fax cables and stuff, but helpful information about medical help, how to communicate on a secure base and things like that. Furthermore I will describe the structure of Telecomix who are working as a decentralized cluster. Herr Urbach Telecomix http:// 15:00 01:00 Baikonur open_source_4g_radio It's time to start WiMAX and LTE hacking Hacking lecture We will walk through a PHY level of mobile WiMAX and outline common and different parts with LTE. Surprisingly, the WiMAX PHY level is not as hard as you may think. We will also present our effort to create an open-source implementation of 4G radio modem. 4G is being rolled out widely, but there is no open-source implementation of a 4G radio system yet. To change this situation we've started working on an open-source 4G PHY level implementation and we want to invite wider hacker community to join the effort. Presentation will consist of the following parts: 1. An introduction to the mobile WiMAX PHY level, giving a bird's-eye view of its levels and main principles. 2. Review of similarities and differences between mobile WiMAX and LTE PHY levels. 3. First time presentation to the hacker community of our open-source WiMAX scanner and overall effort to create an open-source 4G implementation. Alexander Chemeris Project homepage 16:30 01:00 Baikonur reviving_smart_card_analysis Hacking lecture en Smart cards chips – originally invented as a protection for cryptographic keys – are increasingly used to keep protocols secret. This talk challenges the chips' security measures to unlock the protocols for public analysis. Hardened security chips are protecting secret cryptographic keys throughout the virtual and physical worlds. These smart card chips are found in banking cards, authentication tokens, encryption appliances, and master key vaults. The protection capabilities of the chips is increasingly used to also keep secret application code running on the devices. For example, the protocols of modern EMV credit cards are not publicly known. Such obscurity is hindering analysis, hence letting logic and implementation flaws go unnoticed in widely deployed systems, including credit card systems. We demonstrate a method of extracting application code from smart cards with simple equipment to open the application code for further analysis. Karsten Nohl 18:00 01:00 Baikonur she_hackers A Presentation of Research and Invitation for Debate Society meeting en In 2002, Ghosh et al released a study which found that in F/LOSS coder/hacker communities, only 1.5% of members were female. This participation-heavy session is about the challenges of immersive ethnographic research in a time of gender transformation. First, a bit about my background. My name is Kat Braybrooke, I'm a Canadian from Vancouver, and I am currently finishing my MSc thesis for University College London's Digital Anthropology program regarding the role of gender in FLOSS hacker and coder cultures. For this thesis (abstract at http://shehackers.kaibray.com), I engaged in a combination of phenomenological immersivity and informant relationship-building with over 30 hackers and coders (male and female) in hackspaces and recursive tech/'geek' cultures across Europe. When I started my research, I had specific assumptions about who I wanted to talk to and what I thought I'd find. However, through the process of engaging with the spaces and individuals involved in these communities, I have come to realize how incorrect these assumptions were - and I'm hoping these realizations can be of benefit future social scientists, anthropologist and media theorists studying recursive subcultures in periods of ultramodern transformation. This session is about group participation - discussion, debate, criticism and new ideas. I'm not here to tell you who *you* are. Instead, I want to learn what you, as Chaos Camp attendees, think of these sorts of academic studies of your own communities, and how you feel my methodology can be improved upon. While I'm a self-defined 'geek', I am the outsider here - so before I publish this research, I'd love to hear how my understandings can be improved. Kat Braybrooke Dissertation Abstract KAiBRAY (online portfolio) UCL Digital Anthropology MSc 19:30 01:00 Baikonur black_ops_of_tcpip_2011 Hacking lecture en Remember when networks represented interesting targets, when TCP/IP was itself a vector for messiness, when packet crafting was a required skill? In this thoroughly retro talk, we're going to play with systems the old fashioned way, cobbling together various interesting behaviors with the last few shreds of what low level networking has to offer. Here's a few things to expect: * IPv4 and IPv6 Fragmentation Attacks, Eight Years In The Making * TCP Sequence Number Attacks In Modern Stacks * IP TTLs: Not Actually Expired * Inverse Bug Hunting: More Things Found On The Open Net * Rebinding Attacks Against Enterprise Infrastructure * BitCoin: Network Manipulation for Fun And (Literal) Profit * The Net Neutrality Transparency Engine DNS might show up, and applications are going to be poked at. But this will be an old style networking talk, through and through. Dan Kaminsky 21:00 01:00 Baikonur applied_research_on_security_of_tetra_radio digital radio technology beyond GSM Hacking lecture en The digital professional mobile radio system TETRA is used by a wide range of users in almost all continents of the world. The OsmocomTETRA project has created a software radio receiver for the TETRA air interface, similar to what airprobe has done for GSM. Using this receiver plus associated protocol analysis tools, we are able to investigate and research the security level of real-world TETRA networks. The digital professional mobile radio system TETRA is used by a wide range of users in almost all continents of the world. TETRA has been designed with the specific security and safety needs of police, law enforcement and other government authorities in mind. However, in reality again all security features are optional - like in GSM. While government users typically use most or all of those security features, many commercial users of TETRA chose to not use them - most likely driven by budget constraints. The OsmocomTETRA project has created a software radio receiver for the TETRA air interface, similar to what airprobe has done for GSM. Using this receiver plus associated protocol analysis tools, we are able to investigate and research the security level of real-world TETRA networks. We are also working on something similar to OpenBTS or OpenBSC, i.e. software to run our own minimalistic TETRA network for further research. Harald Welte OsmocomTETRA project homepage 22:30 01:00 Baikonur certified_programming_with_dependent_types Because the future of defense is liberal application of math Science lecture en Dependent types expand the concept of types in programming languages by arbitrary predicates depending on the value of the type. This lecture will introduce the concept and show how it can be used to develop formally verified code. As part of this lecture, a PDF parser written using the described methods will be released. Initial tests show that produces excellent results in distinguishing between legitimate PDFs and those with malicious payloads, with a rejection rate for malicious PDFs exceeding 95%. Andreas Bogk 00:00 02:00 Kourou hacker_jeopardy Number guessing for geeks Misc contest en The Hacker Jeopardy is a quiz show. The well known reversed quiz format, but of course hacker style. It once was entitled "number guessing for geeks" by a German publisher, which of course is an unfair simplification. It's also guessing of letters and special characters. ;) Three initial rounds will be played, the winners will compete with each other in the final. Ray Stefan 'Sec' Zehl 12:00 01:00 Kourou moonbounce_radio_communication To the Moon and back in two seconds. The joy of light speed information travel Hacker Space Program lecture en Moon bounce, also known as EME (Earth-Moon-Earth), is a technique that allows two earth-based radio stations to communicate directly by using the moon as passive reflector. It is the longest path two stations on Earth can use to establish direct connection with each other. First developed the late 1940s by the United States Navy it was used as a revolutionary way to communicate without the uncertainties of shortwave radio propagation. The development of artificial satellites completely obsoleted this usecase only a few years later but the technique itself is still one of the most challenging tasks in radio communication. Today it's Amateur Radio stations that are practising the art of Moon bounce. We are here to tell and to show you how it is done. Amateur Radio Operators are one of the oldest sub-groups in the Hacker universe. Long before the term Hacker was coined there were people tinkering in their Shacks, building equipment and trying to communicate with like-minded spirits from all over the world. Moon bounce is not the newest kid on the block in the radio field but still most demanding in terms of necessary equipment as well as operating skills. We provide you with a little historic background, some basic facts about how radio communication even works and then explain what has to be done to achieve the goal of bouncing signals off the moon. In a weird coincidence we will actually have a Moon bounce setup at the camp site so expect some current pictures as well as juicy tales of the radio art. "But wait!" you say, "The moon's only up half of the day". Well, you're right. Remember those artificial satellites that replaced the moon in military as well as commercial applications? We have them too! Amateur Radio Satellites and even the International Space Station can easily be reached with a very modest radio setup so we will explore these communication modes too. Andreas Schreiner Clemens Hopfer Patrick Strasser CCC2011 moonbounce project MetaFunk @ MetaLab http:// 13:30 01:00 Kourou rocket_telemetry Real-time communication during rocket flight Hacker Space Program lecture Retrieval of information is essential for every experiment, especially involving rockets. The use of electromagnetic waves is the natural choice for communication with a rocket and sometimes the only means to retrieve flight hardware afterwards. 15:00 01:00 Kourou avionics Design and implementation of flight electronics Hacker Space Program lecture Flying hardware must perform its intended function under harsh environmental conditions while fulfilling strict requirements due to boundary conditions like weight, size, and power consumption. The design must exhibit redundancy and resilience against adversary conditions and special care has to be given to thermal management and energy sources. We will discuss design rules to cope with specific problems and present a prototype system based on the multicore chip P8X32A. The succesful operation of electronic equipment in space must take effects into account that are normally not encountered under terrestrial conditions. The hardware must be protected against accelerations and vibrations during takeoff, reentry, and landing by protecting it mechanically. The ubiquitous vacuum in space leads to an elevated radiation field, (re)sublimation of materials, and exposure to extreme temperature cycles. This constant tear and wear leads to an accelerated decay of structures on different scales, from microscopic structures in semiconductors to macroscopic parts like junctions, cables and batteries. We will discuss in this lecture some of the effects in detail to give an overview of the challenges and give guidelines to avoid typical pitfalls during design. 16:30 00:30 Kourou photovoltaics power for off-grid devices Hacker Space Program workshop en Opensource-solar.org is working on open hardware power supplies for off-grid applications. The systems consist of self-build solar panels, charge controllers with microcontroller, and LiFePo4 rechargeable batteries. Green energy for your gadgets ! A photovoltaic based power supply for small devices is especially useful if an electricity grid is unavailable, if cabling is inconvenient, and in emergency situations. Opensource-solar.org designs modular open hardware photovoltaic power systems which can be incorporated in other projects. The focus is on micro-energy systems with less then 16 W. Examples for usage include LED lighting systems, cell-phone charging and power for wireless networks. The goal is to make a very high quality system at a fraction of the cost of current systems. Currently it consists of a self-made solar panel build from solar cells, a MSP430 based charging and control module, and a rechargeable LiFePo4 battery. The open hardware approach allows collaborative development, support and building instructions for users worldwide. This could be especially interesting for makers in Africa and other parts of the world without grid connectivity in rural areas. Success of photovoltaic based systems is slowed down by a scarcity of skilled people and high costs. Open source hardware and internet comunities can provide essential information for self-learning the required skills to assemble, develop and install such systems. Moritz von Buttlar Project website http:// 18:00 01:00 Kourou theres_gold_in_them_circuit_boards Why E-Waste Recycling Is Smart and How To Make It Smarter Society lecture Everything we do as technologists depends on the critical minerals from which our devices are made. Recycling junk electronics is no longer just the right thing to do, it's the smart thing to do. Everything we do as technologists depends on the critical minerals from which our devices are made. From iron, aluminum and plastic, to gold, coltan and rare earth metals impact, these raw materials affect the availability and price of the electronics we use all the time. What happens at the end of their useful lives? By now, the problems with electronic waste are well known: Recycling is difficult and expensive, and exportation of junk electronics from rich to poor nations incentivizes informal recycling that is incredibly dangerous to workers and harmful to the environment. But with extreme monopolization of certain mineral markets, particularly China's domination of the rare earths market, recycling has ceased to be simply a good thing to do, and now provides an economic hedge against volatile commodities markets. This talk will be an update of a talk I gave at The Next Hope (July, 2010, New York City, link below) and will outline the e-waste problem and how both regulations and materials innovation in places like the EU and Japan have put them ahead of the manufacturing curve, with special emphasis on rare earth elements. Any specific questions from economics to chemistry that are sent in advance, will be researched and answered the best I can. I work at a research university so there are lots of smart people to ask. A draft of my capstone paper is available if you'd like to take a closer look at how I approach the topic. Please note that the paper linked below is a draft...the final draft is due May 3, after the deadline for talk submissions! Talk image is courtesy of Greenpeace. Steph Alarcon HOPE talk, Electronic Waste: What's Here and What's Next Link to a poster summarizing my paper: Draft of capstone paper 19:30 01:00 Kourou the_joy_of_intellectual_vampirism Mindfucking with Shared Information Culture lecture en What makes us gravitate towards other people? In Intellectual Vampires it is the craving for fresh ideas, and in Intellectual Fangbangers it is the joy of sharing them. A talk on the fine art of communication, channels, contexts, and language. It was Charlaine Harris, author of The Sookie Stackhouse Novels behind the TV series True Blood, who portrayed vampirism as something potentially mutually enriching for both the sucker and the suckee. Intellectual Vampires need fresh ideas. They crave them, they seek inspiring people, feed on them, and leave as soon as there is nothing new to be learned. Their willing mindfuck partners are Intellectual Fangbangers who volunteer in providing for new ideas, take pleasure in sharing them, and see them evolve in emerging new contexts. Given that the human mind is all about information flow, interesting patterns emerge if IV/IFB thinking is applied to human relations in all walks of life. Which channels do we employ and what encodings do we use? Can we use them more efficiently? What does the Internet change? Why is secrecy harmful and transparency, openness, and honesty so compellingly satisfying? How do relationships evolve over time? Does intelligence matter? And what makes for mutually pleasing IV/IFB connections? Christiane Ruetten 21:00 01:00 Kourou lecture en Caspar Bowden 22:30 01:00 Kourou from_oscar_1_to_mars_and_beyond Amateur Space Exploration – The last 50 years, now, and the future Hacker Space Program lecture en Radio amateurs have been building and operating satellites for almost fifty years now, and we are aiming for more. In this talk, I'll present who AMSAT is, what we have achieved in the last fifty years, and what we are working on now. Back in the 1960's, radio amateurs seized the opportunity of launching a satellite into space. It would not be the only one; we are approaching OSCAR 70 now. Building satellites has always been challenging and involves using technology in creative ways. I'll cover some of the more fascinating cases, including some lessons learned during the process. In addition to the satellites in earth orbit, we are also aiming for Mars, and I'll show what are doing to get there. Mario Lorenz 12:00 01:00 Baikonur post_privacy_und_darueber_hinaus Was, wenn wir alle nackt wären? Society lecture de Wie könnte eine vollständig transparente Gesellschaft aussehen, eine Gesellschaft ohne Privatheit? Neue Technologien wie das Internet und Social Networks insbesondere bringen das Problem mit sich, dass erprobte Datenschutzmechanismen nicht mehr greifen. Wir müssen lernen damit umzugehen. Was könnte passieren, wenn wir Alles über Alle wüssten? Ein Gedankenexperiment zu diesem Szenario wird vorgestellt. Beleuchtet werden der Begriff des Privaten, der Privatsphäre, der Öffentlichkeit, sowie mögliche Auswirkungen absoluter Transparenz auf die Gesellschaft. Da in der Zielgruppe die Gefahren des Verlustes der Privatsphäre bereits hinreichend bekannt sind, sollen hier die möglichen Vorteile beleuchtet werden. Dies soll eine Diskussion im Anschluss anstoßen. Daniel Reusche 15:00 01:00 Baikonur poker_bots Developing and running autonomous pokerbots at online casinos Science lecture en For a few years I was part of a team that developed and ran autonomous poker playing robots on commercial Internet poker sites; playing poker with real money against real people in real time. The project failed... At first glance, Texas hold'em poker does seem like a fairly simple game. Developing poker playing software can be done and has been done, and there are rumors on the Internet about poker playing robots winning millions online. There are even some commercial poker playing software available on the Internet. But building a functional poker bot have two major parts; firstly integration with the online poker site, and secondly developing software capable of winning against human opponents in Texas hold'em poker. Contrary to popular belief, the first part is easy and the second part is hard. Texas hold'em provides a programming challenge extraordinaire because its an imperfect information game paired with lots of randomness and psychology. Only small pieces of information is available at a given time, and the available information is biased and often deceptive. The complete game-tree Texas hold'em poker is so large that its infeasible to calculate even offline, and impossible to do in real-time, a feat necessary for online game-play. Torbjörn Lofterud 16:30 01:00 Baikonur wie_finanziere_ich_eine_mondmission Von Würstchen verkaufen bis Ballonflüge – ein Erfahrungsbericht. Hacker Space Program lecture de Jeder von uns kennt das Problem: Da hat man ein motiviertes Team an der Hand und einen fertigen Mondrover in der Garage stehen, aber wie immer fehlt das Geld für die Rakete, mit welcher der Rover auf den Mond befördert werden soll! Jeder von uns kennt das Problem: Da hat man ein motiviertes Team an der Hand und einen fertigen Mondrover in der Garage stehen, aber wie immer fehlt das Geld für die Rakete, mit welcher der Rover auf den Mond befördert werden soll! Da ist guter Rat natürlich teuer, und es stellt sich die Frage: Wie finanziere ich (m)eine Mondmission? In einem kurzen Talk wird Robert, Team-Leader der Part-Time Scientists, euch erzählen, wie man eine Mondmission finanziert – und wie nicht. Robert Böhme 18:00 01:00 Baikonur a_short_history_of_ipv4 Hacking lecture en A few short weeks ago, APNIC's supply of IPv4 address space reached depletion. ARIN and the RIPE NCC will follow soon, most likely somewhere this year. In this talk I will discuss the history of the internet as seen from the point of view of the RIRs. Djinh 19:30 01:00 Baikonur mursat A (Hacker) Space Art Project Hacker Space Program lecture en In 2011, mur.at will have a pico satellite launched into a low earth orbit (310 km above the surface of our planet). The satellite itself is the evolved descendant of a TubeSat personal satellite kit from Interorbital Systems. mur.sat is a joint venture of mur.at, ESC im Labor and realraum. This talk will give an overview of the project and the technical hacking done so far. A team of about 15 people around mur.at (Graz/Austria) builds its first picosatellite called mursat1, based on the knowledge of Interorbital Systems, IOS, and developped further following our research requests. In 2011, mursat1 will be sent into space. We expand Public Space - noncommercial, noninstitutional, experimental, researching and exploring - to see, hear, test, send, receive, and perform. In the timespan of one century, the space outside earth has been integrated smoothly and without friction into economic utilization processes. In order to counterbalance economical procedures that have been employed in the exploration and investigation of space, we vindicate the right to explore and investigate for ourselves. We claim "the" space as "public" space, in which other projections, wishes, concerns, desires, purposes and undertakings of different matter have authority and entitlement. With the move out into space, mur.sat takes the opportunity to analyse earth from outside. With the development of TubeSat, it has become relatively easy and affordable to send out our own research device. Adding some technical know how, we are able to define a set of tasks that mur.sat should fulfill during his short life time. In some ways, this current situation now is comparable with the 1980ies, beginning of 1990ies, when artists experimented with connected computers, what is now mostly known as world-wide-web/internet. The excitement is found in exploring new spaces, and getting to know and understand them. Probably one of the main attractions lies in the fact, that in unknown spaces one can formulate new hypothesis and try to find out and explore by one's own wish and curiosity. The strength and empowerment that lies in this possibility, is the subjective approach of individuals - noone can say beforehand if a certain question is relevant. It is also very likely that new questions will come up due to intense work on the matter during the work itself. At this stage (summer 2011) mursat1 itself will become our performer, taking selfportraits with a camera, transmitting data about his position relative to earth by torquers, receiving and translating particle detection and collision with a piezo microphone, sending compressed audiodata for radio transmission on earth, hosting children's wishes to become a shooting star themselves, counting. On earth, in the space center in Graz, and optionally on all other sorts of locations, available data will be received and interpreted, in sound, light, temperature installations, to create his sensation of NOW, of present time, and of connectedness to this expansion and extension that surrounds us. Why should only economically potent entities like states or companies be entitled to develop the imagery and broadcast (and thereby define) the ways of perception of the outer world, and of the representations of earth and the universe? Bernhard Tittelbach Christian Pointner Homepage Project Wiki lecture about subject at Linuxtage Graz 21:00 01:00 Baikonur maching_to_machine_security When physical security depends on IT security Hacking lecture en Today, more and more real-world things and machines are equipped with some kind of connection back home to the vendor. Such machine-to-machine (M2M) communication is often poorly secured and some day, the shit will hit the fan! Due to the wide availability of broadband internet and mobile communication, the number of embedded systems that come with a network connection is constantly increasing. These devices are ubiquitous and used in a wide range of applications: smart grid, building management, surveillance, traffic control and individual vehicles. Those embedded devices are often poorly secured, if at all. But things get a lot worse: Vendors often don't take into account, that a device might get compromised, thus giving the attacker access to their network. This talk will give an overview over general machine-to-machine (M2M) communications and corresponding attack scenarios. In addition to wired systems, wireless systems will be considered. Of the latter, GSM based systems are the most interesting. Several ways to attack an embedded device, extract secret data and gain network access will be shown. Finally, some good and bad attempts to enhance the security of M2M systems will be presented. hunz 22:30 01:00 Baikonur rethinking_online_news Journalism needs hackers to survive Society lecture en Journalism needs hackers to survive. We present our project to revolutionize online news and encourage you to start your own. The traditional business models and distribution strategies of journalism are dying, while at the same time the disruptive potential of modern technology remains largely untapped: The most popular online news sources are still deeply entrenched in concepts carried over from their print history and thus shaped by that medium's limitations. We're here to recruit you to combine your superpowers with those of journalists and designers to form an unstoppable alliance to both disrupt ineffective traditional news sources by doing a better job and be ready to replace their function in society as they die. Setting an example, our team based out of the Viennese hacker space Metalab is currently working on founding a new online-only medium with an innovative structure to replace the traditional concept of articles. We will develop open source software and experiment with new journalistic processes to fit that structure, and publish all results in the public domain. We'll challenge you with some unsolved issues, list some opportunities and give pointers to potential sources of funding. Christopher Clay / c3o fin Sample Lux.at article 12:00 01:00 Kourou introduction_to_multicast_security Beyond SSL/TLS Science lecture en For scaling real time applications multicast transport is the enabling technology. This event will present solutions for multicast security, that can be used for group conferencing and scaling data distribution services as transport layer security. Keywords: SRTP, AES-CM, Keystream, Multimedia Internet KEYing frehberg 13:30 01:00 Kourou arguna An overview of our recent sounding rocket campaigns Hacker Space Program lecture en The "Arguna" rocket family consist of four one-stage sounding rockets that can reach altitudes up to 10km. We will present the designs of these rockets and discuss the performed flights and results from avionics experiments. 15:00 01:00 Kourou space_debris Simulation of orbital debris and its impacts on space travel Hacker Space Program lecture en This talk is about different sources of space debris and how they are a problem for current and future space travel. I'll introduce some of the computational models that are used to simulate space debris objects and some ideas to prevent them. The environment around Earth is littered with different types of debris - some of natural origin, some human-made. They already pose a risk to spacecraft which will increase if nothing is done about the problem. I will introduce the different known sources of space debris. The objects' sizes range from several meters to only micrometers so it is impossible to detect most objects. Therefore the space debris environment has to be simulated to estimate current and future collision risks for spacecraft. Since we're talking millions of objects that have to be treated individually, a lot of computational power is required. Preventing space debris is a matter of global concern. Many proposals have been issued about how to achieve this; but especially the active removal of existing space debris objects is an open problem. Marek Möckel 16:30 00:30 Kourou closing_event Good Bye and have a safe trip home! Misc lecture en 12:00 01:00 Baikonur dudle Mehrseitig sichere Web 2.0-Umfragen Science lecture de In diesem Vortrag wird eine Web-2.0-Applikation vorgestellt, mit der Umfragen durchgeführt werden können. Im Gegensatz zu anderen Anwendungen muss bei dieser dem Serveradministrator nicht vertraut werden. Die notwendigen kryptographischen Protokolle, welche für die Vertrauensreduktion nötig sind, werden mit JavaScript durchgeführt, was keinerlei clientseitige Installation nötig macht (zero-footprint). Es existiert eine Vielzahl an Web-2.0-Applikationen, welche es einer Gruppe von Personen ermöglichen, einen gemeinsamen Termin zu finden (z. B. doodle.com, moreganize.ch, whenisgood.net, agreeadate.com, meetomatic.com, etc.) Der Ablauf ist simpel: Ein Initiator legt eine Terminumfrage an und schickt den Link zu der Umfrage zu den potentiellen Teilnehmern. Nachdem jeder Teilnehmer der Anwendung seine Verfügbarkeiten mitgeteilt hat, kann anhand dieser Informationen ein Termin gefunden werden, der am besten passt. Die sogenannten „Verfügbarkeitspattern“ beinhalten oft sensitive Informationen, die auf mindestens zwei Arten die Privatsphäre beeinträchtigen. Zum einen können Dritte direkt Daten über das private Leben der Personen einsehen („Wird mein Mann für das Datum an unserem Hochzeitstag stimmen?“). Zum anderen können Dritte diese Informationen mit anderen Informationsquellen verketten und dadurch möglicherweise Individuen identifizieren, die sonst anonym geblieben wären („Das Verfügbarkeitsmuster des Benutzers „flotter_hase23“ sieht dem meines Arbeitskollegen aber verdächtig ähnlich!“). Neben den Privacy-Problemen existieren bei allen bisherigen Lösungen Sicherheitsprobleme. So erlauben die meisten Applikationen das Ändern der Daten anderer, es ist möglich, dass man eine falsche Identität vorgibt oder mehrfach abstimmt. In diesem Vortrag wird eine Web-2.0-Applikation vorgestellt, die es erlaubt, eine Terminabstimmung durchzuführen und dabei dem Server so wenig wie möglich Vertrauen schenken zu müssen. Das Vertrauen, welches anderen Teilnehmern der Terminabstimmung entgegengebracht werden muss, kann variabel von „alle dürfen alles“ bis hin zu „ich vertraue niemandem“ eingestellt werden. Benjamin Kellermann Dudle Homepage 13:30 01:00 Baikonur laptop_and_electronics_searches_at_the_us_border A Privacy Guide for Travelers Society lecture en The Electronic Frontier Foundation will discuss the legal situation that international travelers face when entering or leaving the United States, as well as various ways that travelers can safeguard electronic devices and digital information at the border. A series of unfortunate court decisions allows border patrol agents to search travelers' laptops, mobile phones, and other digital devices without limitation at the United States border. Courts even allow agents to copy entire hard drives for no particular reason -- unlike domestic law enforcement, where civil liberties laws strictly regulate and limit search powers. These searches are relatively rare, but they continue to occur and could become more routine as computer forensics gets cheaper or agents develop new ways of targeting particular travelers. How can international travelers protect themselves when they enter the United States? Seth Schoen and Marcia Hofmann of the Electronic Frontier Foundation will present their latest research into protecting data during border crossings. Their white paper, "Laptop and Electronics Searches at the U.S. Border: A Privacy Guide for Travelers", will be unveiled at this presentation. It combines legal and technical perspectives, discussing the legal situation that international travelers face when entering or leaving the United States, as well as various ways that travelers can safeguard electronic devices and digital information at the border. Since border agents' powers are so extensive, our conclusions may not be happy ones; there is no magical technical or legal solution and all precautions and approaches still involve risks and tradeoffs. We hope that our work will provide a clear, up-to-date, and thorough overview of this issue for all travelers to the U.S. Seth Schoen 15:00 01:00 Baikonur data_mining_your_city Early lessons in open city data from Philadelphia, PA, USA Society lightning Philadelphia (USA) recently launched an initiative to open up tons of city records and municipal data. This talk will review some of the things people are using it for, and show how open city data is useful to many kinds of people. Philadelphia (USA) recently launched an initiative to open up tons of city records and municipal data. By the time Camp rolls around, there will have been several hackathons and programs in Philadelphia using this newly available data, from a GIS firm to journalists to (probably) participants in Random Hacks of Kindness. This talk will give a snapshot of how Philadelphians are using and benefiting from this data, what apps are coming out of it, how it helps citizens and city government alike. If disadvantages are found they will also be discussed along, with some of the concerns that prevented the data from being available before. Hopefully this talk will provide ideas for people in other places who want to use data to make their cities better, stronger, more just, more liveable/bikeable/walkable, and more fun all around. Information will come from my own participation in organizing Philadelphia's contribution to Random Hacks of Kindness in June, possibly another city--oriented hackathon the next weekend with partners from Seattle, WA, and from interviews with organizers and coders from other events using open city data. Steph Alarcon Open Data Philly Another open data hackathon in April, 2011 Blog post from a civic hacking event in Feb, 2011