2.0 -//Pentabarf//Schedule 1.5//EN 23C3 Schedule Release 1.5 23C3 Schedule PUBLISH 1586@23C3@pentabarf.org 1586 capture_the_flag 23C3 CTF Capture the Flag Hacking Contest englisch en 20061230T000000 20061230T040000 4H 23C3 CTF - Capture the Flag Hacking Contest PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1586.en.html Saal 3 mc.fly Lexi Pimendis PUBLISH 1728@23C3@pentabarf.org 1728 23c3_network_review 23C3 Network Review englisch en 20061230T183000 20061230T193000 1H 23C3 Network Review An Introduction into the structure and design of the congress network -featuring a description of hardware setup and focusing on the Backbone Network infrastructure and Wireless LAN. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1728.en.html Saal 2 Stefan Wahl Niels Bakker Maxim Salomon Elisa Jasinska PUBLISH 1561@23C3@pentabarf.org 1561 big_brother_awards 4+2+1 Jahre BigBrotherAwards Deutschland Eine Lesung aus dem Buch "Schwarzbuch Datenschutz" deutsch de 20061227T124500 20061227T134500 1H 4+2+1 Jahre BigBrotherAwards Deutschland - Eine Lesung aus dem Buch "Schwarzbuch Datenschutz" Vorgestellt wird das "Schwarzbuch Datenschutz", das in diesem Jahr entstanden ist: Sieben Jahre BigBrotherAwards Deutschland sind gelaufen. Was ist passiert und was bleibt übrig? Eine Rückschau auf die interessantesten Gewinner der ersten sechs Jahre, die im Buch "Schwarzbuch Datenschutz" zusammengefasst wurden, und auf die aktuellen Preisträger. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1561.en.html Saal 3 Rena Tangens padeluun PUBLISH 1640@23C3@pentabarf.org 1640 10ge_monitoring_system A 10GE monitoring system Hacking a 10 Gigabit Intrusion detection and prevention system into a network troubleshooting tool. englisch en 20061229T140000 20061229T150000 1H A 10GE monitoring system - Hacking a 10 Gigabit Intrusion detection and prevention system into a network troubleshooting tool. Capturing network packets is a valuable technique for troubleshooting network problems. Capturing at network speeds less, or up to one gigabit per second is feasible with a fast general purpose computer hardware. But that hardware is to slow for Ten gigabit per second ethernet (10GE). Hence, special hardware is required. This topic describes the modification of a commercially available 10GE networks security system, into a network analyser. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1640.en.html Saal 3 Arien Vijn PUBLISH 1746@23C3@pentabarf.org 1746 acts_as_cool_ruby_on_rails acts_as_cool Ruby on Rails deutsch de 20061228T124500 20061228T134500 1H acts_as_cool - Ruby on Rails Das Webframework Ruby on Rails steckt - vom Alter und Bekanntheitsgrad her gesehen - noch etwas in den Kinderschuhen. Trotzdem werden bereits jetzt umfangreiche Webprojekte damit realisiert; www.qype.com ist sicher ein gutes Beispiel. Der Vortrag soll potentiellen Umsteigern von PHP oder Java zeigen, wie man mit wenig(er) Code und Zeit wartbare Webanwendungen erstellt - auch ohne bisherige Ruby-Kenntnisse. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1746.en.html Workshop Area Beate Paland PUBLISH 1545@23C3@pentabarf.org 1545 advanced_attacks_against_pocketpc_phones Advanced Attacks Against PocketPC Phones 0wnd by an MMS englisch en 20061229T203000 20061229T213000 1H Advanced Attacks Against PocketPC Phones - 0wnd by an MMS Smart phones are the new favorite target of many attackers. Also most current attacks are harmless, since these mostly rely on user mistake or lack of better knowledge. Current attacks are mostly based on logic errors rather then code inject and often are only found by accident. The talk will show some real attacks against smart phones and the kind of vulnerability analysis which lead to their discovery. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1545.en.html Saal 4 Collin Mulliner PUBLISH 1597@23C3@pentabarf.org 1597 hackers_toolkit_for_rfid_emulation_and_jamming A Hacker's Toolkit for RFID Emulation and Jamming englisch en 20061228T160000 20061228T170000 1H A Hacker's Toolkit for RFID Emulation and Jamming Radio Frequency Identification (RFID) tags are remotely-powered data carriers, that are often touted as a "computer of the future", bringing intelligence to our homes and offices, optimizing our supply chains, and keeping a watchful eye on our pets, livestock, and kids. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1597.en.html Saal 1 Melanie Rieback PUBLISH 1420@23C3@pentabarf.org 1420 strong_random_number_generator Analysis of a strong Random Number Generator by anatomizing Linux' CPRNG englisch en 20061228T113000 20061228T123000 1H Analysis of a strong Random Number Generator - by anatomizing Linux' CPRNG This paper (and slides) will descibe the inner workings of the the random number generator (/dev/{u}random) of Linux. Additionally some possible security flaws are shown (entropy overestimation, zero'izing the pool, etc.) PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1420.en.html Saal 4 Thomas Biege PUBLISH 1454@23C3@pentabarf.org 1454 natural_language_database_interface A Natural Language Database Interface using Fuzzy Semantics englisch en 20061229T113000 20061229T123000 1H A Natural Language Database Interface using Fuzzy Semantics We give a thorough exposition of our natural language database interface thatproduces result sets ranked according to the degree to which database recordsfulfill our intuitions about vague expressions in natural language such as`a small rainy city near San Francisco'. We present our toolset supporting therapid prototyping of such database interfaces by means of a meta-leveldescription of a data model and a lexicon for a query language. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1454.en.html Saal 4 Richard Bergmair PUBLISH 1478@23C3@pentabarf.org 1478 traffic_analysis An Introduction to Traffic Analysis Attacks, Defences and Public Policy Issues... englisch en 20061229T171500 20061229T181500 1H An Introduction to Traffic Analysis - Attacks, Defences and Public Policy Issues... This talk will present an overview of traffic analysis techniques, andhow they can be used to extract data from 'secure' systems. We willconsider both state of the art attacks in the academic literature,but also practical attacks against fielded systems. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1478.en.html Saal 1 George Danezis PUBLISH 1775@23C3@pentabarf.org 1775 a_not_so_smart_card A not so smart card getting the card issuer's secret key englisch en 20061229T203000 20061229T213000 1H A not so smart card - getting the card issuer's secret key Everyone is invited; Swiss may be a special interest group - as it affects them directly. So, if you want to turn up on the Swiss Gettogether (at 21:45) anyway, show up a little bit earlier. Consider it a warm-up! PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1775.en.html Workshop Area $speaker PUBLISH 1449@23C3@pentabarf.org 1449 not_so_smart_card A not so smart card How bad security decisions can ruin a debit card design englisch en 20061227T171500 20061227T181500 1H A not so smart card - How bad security decisions can ruin a debit card design This lecture will introduce you to the the Postcard, a widely used debit card issued by FostFinance in Switzerland. As other debit cards like the "EC" card it is used for shopping payments at POS terminals or to draw money from ATMs in Switzerland and many other countries. It's widely used by its 2'000'000 users, producing a total transaction volume of around 8'000'000'000 Swiss Francs a year. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1449.en.html Saal 2 Bernd R. Fix PUBLISH 1607@23C3@pentabarf.org 1607 probabilistic_trust_model_for_gnupg A Probabilistic Trust Model for GnuPG A new way of evaluating a PGP web of trust by using a probabilistic trust metric deutsch de 20061227T113000 20061227T123000 1H A Probabilistic Trust Model for GnuPG - A new way of evaluating a PGP web of trust by using a probabilistic trust metric Ein Vertrauensnetz beschreibt einen typischen dezentralen PKI-Ansatz, welcher in der Verschlüsselungssoftware PGP sowie GnuPG umgesetzt worden ist. Es werden einige Nachteile und Schwächen des aktuellen PGP-Vertrauensmodells erläutert. Gleichermaßen wird ein neuer Ansatz sowohl für den Umgang mit Vertrauen, als auch für die Evaluation der Schlüssel-Authentizität präsentiert. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1607.en.html Saal 4 Markus Wüthrich Jacek Jonczy PUBLISH 1342@23C3@pentabarf.org 1342 botnet_detection Automated Botnet Detection and Mitigation How to find, invade and kill botnets automated and effectively englisch en 20061230T113000 20061230T123000 1H Automated Botnet Detection and Mitigation - How to find, invade and kill botnets automated and effectively Botnets are one of the most buzzy buzzwords out there today in the computer security world. The presented approach allows us to take reliably care of these, such that managers hopefully will not react on ``botnet'' in 2008 any more. This technology allows for automated catching of malware with the now somewhat known nepenthes daemon, automated analysis with CWSandbox and other sandboxes, automated botnet snooping with the botsnoopd daemon and finally (semi-)automated mitigation using various weapons. Hopefully, our autonomous approach will never turn against the human race and begin the final war... PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1342.en.html Saal 2 Georg 'oxff' Wicherski PUBLISH 1694@23C3@pentabarf.org 1694 automated_exploit_detection_in_binaries Automated Exploit Detection in Binaries Finding exploitable vulnerabilities in binaries englisch en 20061229T214500 20061229T224500 1H Automated Exploit Detection in Binaries - Finding exploitable vulnerabilities in binaries In this talk, we will introduce the audience to the conceptsinvolved in static analysis, and different implementations of those conceptswith advantages and disadvantages of each. We will show how the open sourcetool bugreport (http://bugreport.sf.net) implements these concepts and willdemonstrate the tool finding exploitable bugs in real-world binaries. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1694.en.html Saal 1 Luis Miras PUBLISH 1777@23C3@pentabarf.org 1777 3l AVIT>C23: 3L ('thrill') VJ Software englisch en 20061230T160000 20061230T173000 1H AVIT>C23: 3L ('thrill') VJ Software artificialeyes.tv have been working for over one year on a new software for commercial release, coded in c, java, and utilizing the max/msp/jittter programming environment to create a universal binary release taking advantage of the latest intel processor power advances recently integrated into the apple platform. 3L stands for 3 levels of 3D creation and compositing, with granular control over all aspects of analysis and manipulation of mesh objects mapped with video in real time. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1777.en.html Workshop Area Visual Berlin PUBLISH 1720@23C3@pentabarf.org 1720 gephex AVIT>C23: gephex - VJing on Linux workshop by sMIG englisch en 20061230T120000 20061230T134500 1H AVIT>C23: gephex - VJing on Linux - workshop by sMIG Gephex is a modular video jockey software. The base visuals can be chosen from sources like video files or cameras. Then they can be modified by filters and mixers. Each modifier has several parameters, that can be controlled by signal-generators, input devices like joysticks, sound cards, or midi-devices. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1720.en.html Workshop Area Visual Berlin PUBLISH 1768@23C3@pentabarf.org 1768 vidvox_vdmx5 AVIT>C23: Vidvox VDMX5 englisch en 20061227T140000 20061227T153000 1H AVIT>C23: Vidvox VDMX5 Rewritten from scratch as a Universal Binary, Vidvox's latest endeavor VDMX5 combines revolutionary interface design with blazing fast performance. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1768.en.html Workshop Area Visual Berlin PUBLISH 1670@23C3@pentabarf.org 1670 barrierefreies_web Barrierefreies Web deutsch de 20061228T171500 20061228T181500 1H Barrierefreies Web In diesem Vortrag geht es um die Problematik des barrierefreien Webs. Der Vortragende ist selber blind und hat somit die notwendige Praxiserfahrung. Es wird nicht auf festgeschriebene Normen und Gesetze eingegangen, vielmehr werden Tips aus der Praxis gegeben und anhand von verschiedenen Internetseiten verdeutlicht. Es wird auf bekannte Internet-Angebote wie Bankingportale usw. zurückgegriffen. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1670.en.html Saal 4 Sebastian Andres PUBLISH 1600@23C3@pentabarf.org 1600 biometrics Biometrics in Science Fiction 2nd Iteration englisch en 20061229T000000 20061229T010000 1H Biometrics in Science Fiction - 2nd Iteration It is a buzzword at the moment: biometrics. Everyone is talking about it and consumers are buying laptops with shiny finger print scanners. This talk will take a look at biometrics in science fiction films. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1600.en.html Saal 1 Roland Kubica Constanze Kurz PUBLISH 1713@23C3@pentabarf.org 1713 black_ops_2006 Black Ops 2006 Viz Edition Pixel Fuzzing and the Bioinformatic Bindiff englisch en 20061228T214500 20061228T224500 1H Black Ops 2006 Viz Edition - Pixel Fuzzing and the Bioinformatic Bindiff Tools for visualizing the genome can be repurposed to visualize code. Visualized code can be used as a map for fuzzing efforts, change identification, and showing your mom what you do for a living. I'm going to demonstrate a series of tools that brings a new, half-automated, half-visually driven approach to data manipulation and destruction. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1713.en.html Saal 1 Dan Kaminsky PUBLISH 1733@23C3@pentabarf.org 1733 bluetooth_hacking_revisited Bluetooth Hacking Revisited englisch en 20061229T140000 20061229T150000 1H Bluetooth Hacking Revisited Hacking Bluetooth revisited - This talks goes into the depth of Bluetooth security, we'll show attacks on every possible bluetooth layer including Application Layer, lower layers. We'll break the drivers, the implementation, the applications and the _protocol itself_. At the end of this talk we hope we have achieved a Prardigm shift with regards on how you perceive Bluetooth Security in General. It's not only for toys.On the Operational side, we'll go into what risks BT poses for your company, why your policies fail and why your current Security Layers aren't enough. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1733.en.html Saal 1 Kevin Finistere Thierry Zoller PUBLISH 1629@23C3@pentabarf.org 1629 body_hacking Body hacking Functional body modification englisch en 20061228T171500 20061228T181500 1H Body hacking - Functional body modification What happens when we leave behind cosmetics and start to modify our bodies and minds to enhance who we are and what we can do? In this talk, journalist Quinn Norton explores how technology and flesh are coming together. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1629.en.html Saal 3 Quinn Norton PUBLISH 1596@23C3@pentabarf.org 1596 openxpki Building an Open Source PKI using OpenXPKI Take a lot of Perl, add some OpenSSL, sprinkle it with a few HSMs, stir, season to taste, enjoy! englisch en 20061227T214500 20061227T224500 1H Building an Open Source PKI using OpenXPKI - Take a lot of Perl, add some OpenSSL, sprinkle it with a few HSMs, stir, season to taste, enjoy! OpenXPKI is an open source trust center software, written by the OpenXPKI Project, which aims to create an enterprise-scale PKI solution. You can see what OpenXPKI is all about, what you can do with it out-of-the-box and how you can hack it to your liking. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1596.en.html Saal 4 Alexander Klink Michael Bell PUBLISH 1487@23C3@pentabarf.org 1487 ccc_jahresrueckblick CCC Jahresrückblick Ein Überblick über die Aktivitäten des Clubs 2006 deutsch de 20061228T113000 20061228T123000 1H CCC Jahresrückblick - Ein Überblick über die Aktivitäten des Clubs 2006 Die Sprecher des CCC stellen die Aktivitäten des und Geschehnisse im Chaos Computer Club im abgelaufenen Jahr vor. Hierunter fallen Berichte und Anekdoten von Veranstaltungen innerhalb des CCC als auch Vorträge und Konferenzen, an denen CCC-Vertreter teilgenommen haben. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1487.en.html Saal 1 Constanze Kurz Frank Rosengart Lars Weiler Andreas Lehner Andy Müller-Maguhn PUBLISH 1452@23C3@pentabarf.org 1452 critical_theory_and_chaos Chaos und Kritische Theorie Adorno, Wilson und Diskordianismus deutsch de 20061230T160000 20061230T170000 1H Chaos und Kritische Theorie - Adorno, Wilson und Diskordianismus Kritische Theorie, wie sie sich vor allem an Adorno festmachen lässt, und Diskordianismus, der als Philosophie des Chaos zum Namensgeber des veranstaltenden Vereins wurde, gehören zu den am weistesten verbreiteten Elementen des 'social hacking'. Jedoch ist gerade in den letzten Jahren des Adbusting und des Hacktivism unübersehbar geworden, daß von beiden Denktraditionen in der Hauptsache stark vereinfachte und oft auch ideologisch abgeschlossene Formen Verwendung finden: Kritische Theorie wird zumeist auf ein unbestimmtes Unbehagen an der Kulturindustrie, der Globalisierung und den technologischen Entwickungen reduziert, während Diskordianismus zur Illustration oft bedenklicher Parteinahmen für irrationale politische Auffassungen dient. Im Vortrag wird der Versuch unternommen, die Kritische Theorie dem diskordischen Witz auszusetzen und den Diskordianismus der Ideologiekritik. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1452.en.html Saal 3 Daniel Kulla Oona Leganovic PUBLISH 1727@23C3@pentabarf.org 1727 closing_ceremony Closing Ceremony Who did you trust? englisch en 20061230T193000 20061230T203000 1H Closing Ceremony - Who did you trust? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1727.en.html Saal 1 Tim Pritlove PUBLISH 1606@23C3@pentabarf.org 1606 console_hacking_2006 Console Hacking 2006 Xbox 360, Playstation 3, Wii englisch en 20061228T203000 20061228T213000 1H Console Hacking 2006 - Xbox 360, Playstation 3, Wii "Next Generation" gaming consoles should not be limited to games, they have powerful hardware which we want to exploit for our needs. The talk gives a hardware overview of each of the 3 consoles, an overview of their security systems, as well as an update on hacking the Xbox 360, which has been on the market for about a year. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1606.en.html Saal 1 Felix Domke PUBLISH 1520@23C3@pentabarf.org 1520 counter_development Counter-Development The Accessibility of Technology as an Addendum to Engineering Ethics in the Knowledgeable Society englisch en 20061229T140000 20061229T150000 1H Counter-Development - The Accessibility of Technology as an Addendum to Engineering Ethics in the Knowledgeable Society Civil disobedience is a fundamental human right in all democracies, and it has to be accessible for everyone. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1520.en.html Saal 4 Sandro Gaycken PUBLISH 1560@23C3@pentabarf.org 1560 csrf CSRF, the Intranet and You Causes, Attacks and Countermeasures englisch en 20061230T113000 20061230T123000 1H CSRF, the Intranet and You - Causes, Attacks and Countermeasures A detailed introduction to Cross Site Request Forgery. This talk presents the fundamental cause of this vulnerability class and examples of potential attack consequences. The second half of the talk is devoted to avoiding and countering CSRF: Implementing CSRF proof session handling, transparent retrofitting of legacy applications and methods for client side protection. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1560.en.html Saal 3 Justus Winter Martin Johns PUBLISH 1698@23C3@pentabarf.org 1698 culture_jamming_discordianism Culture Jamming & Discordianism Illegal Art & Religious Bricolage englisch en 20061230T183000 20061230T193000 1H Culture Jamming & Discordianism - Illegal Art & Religious Bricolage Discordianism is somewhere between a joke and a religion, and at the same time manages to be something else entirely: social bricolage. This presentation will cover the roots of culture jamming in early art and theatrical movements, and then move through the history of prankster groups and on to Discordianism where the pranksters are prophets. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1698.en.html Saal 1 Autumn Tyr-Salvia Fox Magrathea PUBLISH 1680@23C3@pentabarf.org 1680 neues_gesetzliches_verbot_des_hackings Das neue gesetzliche Verbot des Hackings Praktische Auswirkungen des neuen Strafrechtes, das in wenigen Monaten in Kraft treten wird deutsch de 20061227T113000 20061227T123000 1H Das neue gesetzliche Verbot des Hackings - Praktische Auswirkungen des neuen Strafrechtes, das in wenigen Monaten in Kraft treten wird Entwickler, Administratoren und gewisse Internet-Nutzer treffen die Auswirkungen eines aktuellen Gesetzesvorhabens auf dem kaltem Fuß. Eine ganze Klasse von Systemwerkzeugen, die "Hackertools", soll verboten werden. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1680.en.html Saal 1 Peter Voigt PUBLISH 1609@23C3@pentabarf.org 1609 data_retention_update Data Retention Update News and Perspectives on Implementation and Opposition englisch en 20061227T230000 20061228T000000 1H Data Retention Update - News and Perspectives on Implementation and Opposition The EU adopted a directive on the retention of data regarding the communications, movements and use of media of all 365 mio. EU citizens. The struggle is now continuing on the national levels, and privacy groups are preparing legal, political and technical challenges to this surveillance scheme. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1609.en.html Saal 2 Rikke Frank Jørgensen Ralf Bendrath Patrick Breyer PUBLISH 1656@23C3@pentabarf.org 1656 dylan_network_security Design and Implementation of an object-oriented, secure TCP/IP Stack Ethereal^W Wireshark without remote exploits - a proof of concept englisch en 20061227T113000 20061227T123000 1H Design and Implementation of an object-oriented, secure TCP/IP Stack - Ethereal^W Wireshark without remote exploits - a proof of concept We present a domain-specific language (DSL) capable to describe ad-hoc defined protocols like TCP/IP.Additionally we developed other libraries, like a flow graph for packet processing and a layering mechanism for protocol stacking, to get a complete TCP/IP stack. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1656.en.html Saal 3 Andreas Bogk Hannes Mehnert PUBLISH 1513@23C3@pentabarf.org 1513 detecting_temperature_through_clock_skew Detecting temperature through clock skew Hot or Not: Defeating anonymity by monitoring clock skew to remotely detect the temperature of a PC englisch en 20061228T124500 20061228T134500 1H Detecting temperature through clock skew - Hot or Not: Defeating anonymity by monitoring clock skew to remotely detect the temperature of a PC By requesting timestamps from a computer, a remote adversary can find out the precise speed of its system clock. As each clock crystal is slightly different, and varies with temperature, this can act as a fingerprint of the computer and its location. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1513.en.html Saal 1 Steven J. Murdoch PUBLISH 1756@23C3@pentabarf.org 1756 diac24_net diac24.net Practical VPN hacking englisch en 20061228T000000 20061228T010000 1H diac24.net - Practical VPN hacking This is a hands-on VPN "introduction". We'll be walking through tunnel and routing setup, talk about some odds and ends, do some showing-off ;). And hopefully we'll bootstrap some interested people right into the VPN (that can mean you!). Try bringing a terminal to a box with internet, OpenVPN and quagga, but it'll be interesting without that too. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1756.en.html Workshop Area David L. PUBLISH 1605@23C3@pentabarf.org 1605 digitale_bildforensik Digitale Bildforensik Spuren in Digitalfotos deutsch de 20061227T230000 20061228T000000 1H Digitale Bildforensik - Spuren in Digitalfotos Mit der mehr und mehr digitalisierten Fototechnik ist es heute ohne Vorwissen nahezu jedem möglich, Bilder zu manipulieren. Bekanntgewordene Fälle in den Medien haben auch die Öffentlichkeit für dieses Thema sensibilisiert. Verfahren der digitalen Bildforensik bieten die Möglichkeit, die Authentizität eines Bildes auch ohne Zugriff auf das Original zu überprüfen. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1605.en.html Saal 3 Matthias Kirchner PUBLISH 1699@23C3@pentabarf.org 1699 drm_comes_to_european_digital_tv DRM comes to European digital TV How the DVB project is locking down TV standards and importing U.S. mistakes. englisch en 20061229T203000 20061229T213000 1H DRM comes to European digital TV - How the DVB project is locking down TV standards and importing U.S. mistakes. European digital television standards (both free-to-air broadcast andpay TV) developed by the DVB project are exemplary for includingno digital rights management. But now DVB is rushing to change thatand impose new restrictions on receiving equipment. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1699.en.html Saal 3 Seth Schoen PUBLISH 1402@23C3@pentabarf.org 1402 drones Drones Autonomous flying vehicles deutsch de 20061227T171500 20061227T181500 1H Drones - Autonomous flying vehicles I am watching you: drones for private use are getting real. A live presentation of actual devices in real action. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1402.en.html Saal 1 Steini PUBLISH 1646@23C3@pentabarf.org 1646 dvb_t DVB-T - From Pixeldata to COFDM Transmission How to build a complete FPGA-based DVB-T transmitter englisch en 20061229T183000 20061229T193000 1H DVB-T - From Pixeldata to COFDM Transmission - How to build a complete FPGA-based DVB-T transmitter As DVB-T is the key technology for terrestrial broadcasting for the next decades, this lecture tries to explain how it works: It covers the way of raw pixel data over MPEG2 video and audio encoding and via multiplexing of several streams and programs to the actual generation of the COFDM signal used for transmission. As the team has built a DVB-T transmitter, we will give a in-depth insight in how things are really done - including a demonstration of the transmitter.-> For that we plan to stream the content of the 23C3 lectures locally on Alexanderplatz using TV channel 22. Don't forget to bring your DVB-T stick. For more information look at <a href="http://events.ccc.de/congress/2006/DVB-T">the DVB-T project description.</a> PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1646.en.html Saal 2 Thomas Kleffel Christian Daniel PUBLISH 1492@23C3@pentabarf.org 1492 dying_giraffe_recordings Dying Giraffe Recordings: A non-evil recordlabel Using the power of creative commons to create an alternative system which is fair for musicians and their fans englisch en 20061228T124500 20061228T134500 1H Dying Giraffe Recordings: A non-evil recordlabel - Using the power of creative commons to create an alternative system which is fair for musicians and their fans Todays music industry has created a system that is unfair for both the musicians and the music lover. Combined with an agressive prosecution of downloaders, this causes a very strong polarisation between the industry on one hand and music lovers on the other. Nobody wins. We at dying giraffe recordings are trying to break this impasse and create a system where musicans are rewarded for their work and talent, and where music lovers can enjoy music in a fair way. The key element in this is a breakaway from traditional copyright laws and the use of the creative commons license. This combined with new technologies in the field of internet, audio recording and compression gives us the potency to change te system. Thus building a fighting force of extraordinary magnitude we believe that we can beat the system. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1492.en.html Saal 4 Christian Tan PUBLISH 1761@23C3@pentabarf.org 1761 dylan_introduction Dylan Introduction englisch en 20061227T153000 20061227T170000 1H Dylan Introduction What is different in Dylan than in other object-oriented and functional languages? Which development utilities are available? How to use the IDE? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1761.en.html Workshop Area Hannes Mehnert PUBLISH 1494@23C3@pentabarf.org 1494 ego_striptease Ego Striptease - Ich zeig dir, wer du bist Blogs, flickr, etc: warum machen wir es ihnen so einfach? deutsch de 20061230T113000 20061230T123000 1H Ego Striptease - Ich zeig dir, wer du bist - Blogs, flickr, etc: warum machen wir es ihnen so einfach? Als Orkut aufkam, gab es zwei Sorten Menschen: die einen wetteiferten um die meisten Invitations, die anderen schüttelten den Kopf ob der Bereitwilligkeit, eine Datenkrake zu füttern. Heute manifestiert sich das Phänomen als flickr, del.icio.us, upcoming.org und blog - kurz gesagt "soziale Web 2.0 Anwendungen". Wieso lassen wir uns alle so bereitwillig taggen, kommentieren und outen? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1494.en.html Saal 4 Teemu Schaabl Jule Riede-Buechele PUBLISH 1655@23C3@pentabarf.org 1655 elektronische_reisedokumente Elektronische Reisedokumente Neue Entwicklungen beim ePass deutsch de 20061228T203000 20061228T213000 1H Elektronische Reisedokumente - Neue Entwicklungen beim ePass Auch dieses Jahr gab es wieder eine Menge Wirbel um den ePass. Neue Studien wurden durchgeführt, Entscheidungen wurden getroffen und immer mehr Länder haben begonnen, elektronische Reisedokumente einzusetzen. Der Vortrag wird den neuesten Stand der Diskussion aufzeigen. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1655.en.html Saal 2 starbug Constanze Kurz PUBLISH 1754@23C3@pentabarf.org 1754 erfakreis_meeting Erfakreis-Meeting deutsch de 20061229T183000 20061229T203000 2H Erfakreis-Meeting Die Erfakreise des CCC treffen sich. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1754.en.html Workshop Area fh PUBLISH 1554@23C3@pentabarf.org 1554 ethernet_mit_mikrocontrollern Ethernet mit Mikrocontrollern Wie funktioniert TCP mit 2kb RAM? deutsch de 20061228T140000 20061228T150000 1H Ethernet mit Mikrocontrollern - Wie funktioniert TCP mit 2kb RAM? Steuer- und Messaufgaben erledigt am besten ein Mikrocontroller. Wenn zeitgemäß auf dieses Device zugegriffen werden soll, kommt man um Ethernet eigentlich nicht herum. Aber ist ein Mikrocontroller mit nur 2-4Kb RAM in der Lage, TCP/IP zu sprechen? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1554.en.html Saal 4 fd0 PUBLISH 1735@23C3@pentabarf.org 1735 faster_pwning_assured Faster PwninG Assured Hardware Hacks and Cracks with FPGAs englisch en 20061228T230000 20061229T000000 1H Faster PwninG Assured - Hardware Hacks and Cracks with FPGAs This talk will go in depth into methods for breaking crypto faster using FPGAs. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1735.en.html Saal 2 David Hulton PUBLISH 1429@23C3@pentabarf.org 1429 fnord_jahresrueckblick Fnord Jahresrückblick Wir helfen Euch, die Fnords zu sehen deutsch de 20061230T171500 20061230T181500 1H Fnord Jahresrückblick - Wir helfen Euch, die Fnords zu sehen This talk will be held in German.Der Fnord-Jahresrückblick widmet sich der politischen und sozialen Entwicklung der Welt im letzten Jahr im Zeitraffer. Mainstream-Nachrichten finden dabei nur Beachtung, wenn sie besonders schöne Fnords enthalten. Strukturen, Verschwörungen und lustige neue Trends, die Euch sonst entgangen wären oder schon wieder vergessen sind. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1429.en.html Saal 1 Frank Rieger Felix von Leitner PUBLISH 1638@23C3@pentabarf.org 1638 freie_software Freie Software - Eine Chance für Afrika? Ein Erfahrungsbericht aus Malawi deutsch de 20061229T113000 20061229T123000 1H Freie Software - Eine Chance für Afrika? - Ein Erfahrungsbericht aus Malawi In einem Dokumentationsbericht über ein "Free Software Projekt" erzählt Alex Antener von seinen Reisen nach Malawi in Zentralafrika und berichtet über die Erfahrungen des kulturübergreifenden Engagements an der Universität in Malawi. Der Erfahrungsbericht zeigt Möglichkeiten, Einflüsse und mögliche Alternativlösungen zu den neoimperialistischen Machenschaften der Monopolisten in der dritten Welt. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1638.en.html Saal 3 Alex Antener PUBLISH 1610@23C3@pentabarf.org 1610 fudging_with_firmware Fudging with Firmware Firmware reverse-engineering tactics englisch en 20061227T160000 20061227T170000 1H Fudging with Firmware - Firmware reverse-engineering tactics This lecture aims at providing ideas and practical techniques about the reverse-engineering process of equipment firmware images. It touches upon data encoding, compression, bootstraps, deciphering, disassembly, and emulation. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1610.en.html Saal 4 khorben PUBLISH 1563@23C3@pentabarf.org 1563 funkerspuk Funkerspuk radio politics in the USA and Germany in the first half of the 20th century englisch en 20061229T124500 20061229T134500 1H Funkerspuk - radio politics in the USA and Germany in the first half of the 20th century The introduction of radio in the USA and Germany is compared, the role amateurs played and how the respective authorities reacted to them. Questions arise as to how those reactions were models for the treatment of younger communications technologies, and the different approaches to uncontrolled communication will be sketched out. Is "everybody can listen in" a scary thing? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1563.en.html Saal 3 Oona Leganovic PUBLISH 1758@23C3@pentabarf.org 1758 fuzzing_corporate_world Fuzzing in the corporate world The use of fuzzing in the corporate world over the years and recent implementation of fuzzing tools into the development cycle and as a requirement before purchase englisch en 20061229T124500 20061229T134500 1H Fuzzing in the corporate world - The use of fuzzing in the corporate world over the years and recent implementation of fuzzing tools into the development cycle and as a requirement before purchase We will discuss fuzzing uses by software vendors and in the corporate world, for security auditing ("fuzzing before release") and third party testing ("fuzzing before purchase"). We will look at what contributed to this change in the use of fuzzing tools from home-grown hacking tools to commercial products, as well as how these organizations implement fuzzing into their development cycle. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1758.en.html Saal 4 Gadi Evron PUBLISH 1505@23C3@pentabarf.org 1505 gaeste_ueberwachung Gäste-Überwachung in Hotels durch staatliche und private Schnüffler deutsch de 20061227T140000 20061227T150000 1H Gäste-Überwachung in Hotels durch staatliche und private Schnüffler - Fragwürdige Methoden der Informationsbeschaffung- Rekonstruktion authentischer Fälle- Schutz von Geschäftsgeheimnnissen und Privatsphäre PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1505.en.html Saal 3 Manfred Fink PUBLISH 1755@23C3@pentabarf.org 1755 german_lobjan_meeting German Lojban meeting englisch en 20061230T140000 20061230T150000 1H German Lojban meeting A chance to meet other European lojbanists and to discuss actions to build up a stronger German lojban community. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1755.en.html Workshop Area Alexander Koch PUBLISH 1652@23C3@pentabarf.org 1652 geschichte_der_automaten Geschichte der Automaten, Androiden und Homunculi deutsch de 20061229T183000 20061229T193000 1H Geschichte der Automaten, Androiden und Homunculi Die Schachspieler und Musikautomaten des 18. Jahrhunderts sind bekannt: Weniger bekannt sind die Automaten der Antike und des Mittelalters. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1652.en.html Saal 4 Henriette Fiebig PUBLISH 1729@23C3@pentabarf.org 1729 gesundheitskarte_101 Gesundheitskarte 1.01 deutsch de 20061230T183000 20061230T193000 1H Gesundheitskarte 1.01 Haben die Gesundheitskarte-Projektleiter aus den bisherigen Fehlern gelernt oder machen sie alles nur noch schlimmer?Die Projekt-Firma (gematik) hat sich jetzt den Geschäftsführer von FISCUS (dem monströs verkackten Finanzamt-Software-Großprojekt) als Geschäftsführer ins Boot geholt. Es ist nicht auf Anhieb klar, wie man das als gutes Zeichen auslegen kann. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1729.en.html Saal 3 ThoMaus PUBLISH 1685@23C3@pentabarf.org 1685 go_menschen Go - Das Spiel für die Menschen Auch für Computer? - Nicht beim Go! deutsch de 20061227T124500 20061227T134500 1H Go - Das Spiel für die Menschen - Auch für Computer? - Nicht beim Go! Primitiv einfache Spielregeln aber komplexeste Zusammenhänge, bei denen Computerprogramme kläglich versagen während Menschen auf wundersame Weise (Denk-)Muster erkennen und diese zu genialen Strategien umzusetzen vermögen - das ist Go. Kann uns umgekehrt Go auch Stärken des menschlichen Intellekts aufzeigen? Es werden Parallelen zur Softwareentwicklung gezogen und den Entscheidungsprozessen, denen sich Entwickler dort ausgesetzt sehen. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1685.en.html Saal 2 Christoph Gerlach PUBLISH 1663@23C3@pentabarf.org 1663 tracking_goods_and_tracing_people Güter und Personen "tracken" - Lokalisierung im Pizzamann-Universum Technische Mittel und soziale Aspekte des "Tracking & Tracing" deutsch de 20061227T203000 20061227T213000 1H Güter und Personen "tracken" - Lokalisierung im Pizzamann-Universum - Technische Mittel und soziale Aspekte des "Tracking & Tracing" Dieser Vortrag gibt einen Überblick und geht auf Details vonunterschiedlichen Tracking & Tracing-Technologien ein. Aufbau undFunktionsweise von solchen Verfolgungssystemen werden kategorisiertund aufgezeigt; zudem schafft der Vortrag einen Überblick darüber, wo solche Tracking-Systeme heute verwendet werden. Dabei werdeninsbesondere diverse Sicherheitsaspekte au detail behandelt.Nachdem aufgezeigt wurde, was alles stattfindet, werden die sozialenKonsequenzen solcher Systeme beleuchtet. Dabei wird sowohl auf kommerzielleAspekte (Änderungen in der Marktmacht) als auch auf den Aspekt derKonsumentenverfolgung eingegangen, da Konsumenten üblicherweise zwarwissen sollten, was mit ihren Daten geschieht, das aber höchst seltender Fall ist.Der zweite Teil des Vortrags beschäftigt sich dann mit lokalisierendenÜberwachungssystemen der Staaten, und welche Gefahren des Missbrauchshierbei entstehen. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1663.en.html Saal 4 Volker Birk PUBLISH 1567@23C3@pentabarf.org 1567 hacker_jeopardy Hacker Jeopardy The one and only hacker quizshow englisch en 20061229T230000 20061230T010000 2H Hacker Jeopardy - The one and only hacker quizshow The well known quizshow format, but of course covering topics not usually seen on television PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1567.en.html Saal 1 Stefan 'Sec' Zehl Ray PUBLISH 1500@23C3@pentabarf.org 1500 hackerspaces Hackerspaces How we built ours - How you can build yours englisch en 20061228T160000 20061228T170000 1H Hackerspaces - How we built ours - How you can build yours Hackerspaces are community-run places where you can meet, work on projects, organize events and workshops, or just generally hang out with other hackers. More and more of those open spaces are being created all the time. Some of them are more than a decade old already, some just started out recently, and yet others might become a reality soon. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1500.en.html Saal 3 bruder t Jens Ohlig Paul Böhm PUBLISH 1603@23C3@pentabarf.org 1603 foss_in_india Hacking a Country: FOSS in India An Overview Free and Open Source Software efforts and projects in India englisch en 20061227T203000 20061227T213000 1H Hacking a Country: FOSS in India - An Overview Free and Open Source Software efforts and projects in India This talk is about the growth of Free Software in India. It includes an overview of how Free Software has spread not only within the industry but also with in the Government and Education. Includes examples of Indian innovation based on Free Software, including the Simputer. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1603.en.html Saal 3 Atul Chitnis PUBLISH 1578@23C3@pentabarf.org 1578 hacking_fingerprint_recognition_systems Hacking fingerprint recognition systems Kann ich dir ein Bier ausgeben? deutsch de 20061227T183000 20061227T193000 1H Hacking fingerprint recognition systems - Kann ich dir ein Bier ausgeben? Der Vortrag stellt Wege und Werkzeuge vor um aus unterschiedlichen Quellen Bilder für die Herstellung von Fingerabdruckattrappen zu gewinnen. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1578.en.html Saal 2 starbug PUBLISH 1692@23C3@pentabarf.org 1692 hacking_the_electoral_law Hacking the Electoral Law englisch en 20061227T183000 20061227T193000 1H Hacking the Electoral Law How the Ministry of the Interior turns fundamental election principals into their opposite, without even asking the parliament. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1692.en.html Saal 1 Ulrich Wiesner PUBLISH 1773@23C3@pentabarf.org 1773 hacking_xmpp_and_jabber Hacking XMPP and Jabber englisch en 20061230T000000 20061230T010000 1H Hacking XMPP and Jabber Doing wonderful stuff in angle brackets. Brainstorming about things to do with Jabber/XMPP beyond chatting. Relaxing and hacking. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1773.en.html Workshop Area fh Jens Ohlig PUBLISH 1512@23C3@pentabarf.org 1512 homegrown_interactive_tables Homegrown Interactive Tables Any Technology Sufficiently Advanced is Indistinguishable from Magic deutsch de 20061228T203000 20061228T213000 1H Homegrown Interactive Tables - Any Technology Sufficiently Advanced is Indistinguishable from Magic Technology to build low-cost touch-sensitive tables with high precision is publicly available since the beginning of 2006. The talk will give a practical introduction on building hard- and software of these tables using FTIR sensing pioneered by Jeff Han (see links), based on our experiences in making a table at the c-base. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1512.en.html Saal 3 Andre Helwig Christian Bennat Andreas Dietrich Ulrich von Zadow Mirco Fichtner PUBLISH 1433@23C3@pentabarf.org 1433 design_a_decent_user_interface How To Design A Decent User Interface Take a look at software from a user's point of view and improve your applications englisch en 20061227T124500 20061227T134500 1H How To Design A Decent User Interface - Take a look at software from a user's point of view and improve your applications Prepare to be brainwashed! This talk wants you to switch from the developer's perspective to that of an average user to design better UIs. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1433.en.html Saal 4 pallas (Corinna Habets) PUBLISH 1762@23C3@pentabarf.org 1762 how_to_extend_netword_night_vision How to extend Network Night Vision with protocols Discussing design of frame-parser englisch en 20061228T214500 20061229T000000 2H How to extend Network Night Vision with protocols - Discussing design of frame-parser A general description of Network Night Vision (a network protocol analyzer and modifier) is given; afterwards the domain specific language used for describing protocols will be explained. Also, an example protocol will be implemented to get an idea how to design a protocol specification. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1762.en.html Workshop Area Hannes Mehnert PUBLISH 1658@23C3@pentabarf.org 1658 bignum_arithmetic How to implement bignum arithmetic A short look at my pet project implementation englisch en 20061228T140000 20061228T150000 1H How to implement bignum arithmetic - A short look at my pet project implementation Assembly language skills are a bonus, but not strictly required. This lecture will explain how software like OpenSSL and GnuPG do their arithmetic on 1024 bit numbers. This is not about how RSA works, or about how AES works. This is just about how to add and multiply big numbers. I will explain the algorithms, show some code, and give some timings. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1658.en.html Saal 2 Felix von Leitner PUBLISH 1634@23C3@pentabarf.org 1634 how_to_squeeze_more_performance_out_of_your_wifi How to squeeze more performance out of your wifi Cross-layer optimization strategies for long-range IEEE 802.11e based radio (mesh) networks englisch en 20061229T113000 20061229T123000 1H How to squeeze more performance out of your wifi - Cross-layer optimization strategies for long-range IEEE 802.11e based radio (mesh) networks Most of today's long-range wireless mesh or point-to-point links suffer from a high overhead during channel access, frequent link failtures and the lack of taking a real advantage of the mesh network structure. This leads to a really bad performance for TCP-like traffic compared to UDP traffic over this links. We want to present your two different ideas for optimizing throughput and delay without breaking any wifi-standard (or at least not too much ;). PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1634.en.html Saal 2 Achim Friedland PUBLISH 1743@23C3@pentabarf.org 1743 infon_battle_arena Infon Battle Arena An introduction englisch en 20061227T193000 20061227T213000 2H Infon Battle Arena - An introduction This workshop is an introdutcion to the programming game Infon Battle Arena. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1743.en.html Workshop Area Florian Wesch PUBLISH 1439@23C3@pentabarf.org 1439 information_operations Information Operations Sector-Oriented Analysis of the Potential Impact and Possible Countermeasures englisch en 20061227T171500 20061227T181500 1H Information Operations - Sector-Oriented Analysis of the Potential Impact and Possible Countermeasures The use of information technology has brought a lot of new functionality and efficiency with it. But due to the fact that enterprises are totally dependant on IT, they are vulnerable to theft or destruction of information assets, a process described as information operations. This is the presentation of a one-year Postgraduate Infosec Research Project conducted in New Zealand. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1439.en.html Saal 3 Sebastian Schroeder PUBLISH 1592@23C3@pentabarf.org 1592 inside_vmware Inside VMware How VMware, VirtualPC and Parallels actually work englisch en 20061230T140000 20061230T150000 1H Inside VMware - How VMware, VirtualPC and Parallels actually work Virtualization is rocket science. In cooperation with the host operating system, VMware takes over complete control of the machine hundreds of times a second, handles pagetables completely manually, and may chose to wire (make-non-pageable) as much memory as it chooses. This talk explains why it still works. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1592.en.html Saal 2 Michael Steil PUBLISH 1740@23C3@pentabarf.org 1740 in_the_absence_of_trust In the Absence of Trust englisch en 20061228T183000 20061228T193000 1H In the Absence of Trust In 1996, The Surveillance Camera Players started manifesting theiropposition to the culture of surveillance by performing silent, speciallyadapted plays directly in front of CCTV cameras. 10 years after, theirwork is more relevant than ever. This talk will take you through artists'strategies to raise the debate on privacy, the society of the spectacle,the aftermath of September 11th, face recognition software, panopticism,electronic tagging, etc. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1740.en.html Saal 3 Régine Débatty PUBLISH 1619@23C3@pentabarf.org 1619 introduction_to_matrix_programming Introduction to matrix programming: trance codes How to recognize trance coded communication patterns englisch en 20061227T140000 20061227T150000 1H Introduction to matrix programming: trance codes - How to recognize trance coded communication patterns The main communication streams in our realities happen besides the exchange of facts and arguments. "The matrix" is built on emotions! Trance coded communication patterns are a natural thing to exchange emotions between individuals. Using them is as normal, as not to be aware of it. But once you recognize the patterns, it is playtime! PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1619.en.html Saal 4 ulong PUBLISH 1667@23C3@pentabarf.org 1667 jabber_showcase Jabber-Showcase XMPP ist viel mehr als nur Instant Messaging deutsch de 20061228T160000 20061228T170000 1H Jabber-Showcase - XMPP ist viel mehr als nur Instant Messaging Jabber wird von vielen nur als "Open-Source"-ICQ-Ersatz wahrgenommen. Dabei kann Jabber bzw. XMPP noch deutlich mehr, es existieren weit über 100 Protokollerweiterungen, und es werden täglich mehr.Der Vortrag stellt einige interessante Protokoll-Teile sowie Implementationen vor. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1667.en.html Saal 4 fh PUBLISH 1419@23C3@pentabarf.org 1419 java_wird_groovy Java wird Groovy Eine Einführung in die neue, dynamische Sprache für das Java-Ökosystem deutsch de 20061227T171500 20061227T181500 1H Java wird Groovy - Eine Einführung in die neue, dynamische Sprache für das Java-Ökosystem Groovy ist eine neue, dynamische Sprache für die Java-VM. Sie greift Konzepte von Smalltalk, Python und Ruby auf und integriert Sie nach Java.Die Integration ist leichtgängig, da die Syntax hinreichend ähnlich zu Java ist undreibungslos bestehende Java-Bibliotheken genutzt werden können. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1419.en.html Saal 4 tof (Christof Vollrath) PUBLISH 1568@23C3@pentabarf.org 1568 json_rpc JSON RPC Cross Site Scripting and Client Side Web Services englisch en 20061228T124500 20061228T134500 1H JSON RPC - Cross Site Scripting and Client Side Web Services JSON RPC is a recently fashionable buzzword in the AJAX context. This lecture explains its principles, specifically the same origin policy for cross site scripting and its relation to JSON RPC, and demonstrates the essential implementation details using the example of the geocoding service in the google maps API. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1568.en.html Saal 2 (mesch) Steffen Meschkat PUBLISH 1416@23C3@pentabarf.org 1416 juristische_fragen_um_die_mitbenutzung_fremder_wlans Juristische Fragen um die Mitbenutzung fremder WLANs Zivilrechtliche und strafrechtliche Haftung deutsch de 20061230T124500 20061230T134500 1H Juristische Fragen um die Mitbenutzung fremder WLANs - Zivilrechtliche und strafrechtliche Haftung Der Vortrag gibt einen Überblick über den rechtlichen Rahmen des WLAN-Surfens im Zivil- und Strafrecht mit aktueller Rechtsprechungsübersicht. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1416.en.html Saal 4 soeren PUBLISH 1537@23C3@pentabarf.org 1537 know_your_citizens Know Your Citizens State Authorities' Access to Sensitive Information englisch en 20061227T124500 20061227T134500 1H Know Your Citizens - State Authorities' Access to Sensitive Information The balance between effective criminal investigations and the protection of human rights is currently intensively discussed. A number of approaches demonstrate a tendency that state authorities gain for more access to sensitive data. But do these information really help to prevent crimes (e.g. terrorist attacks) and how save are these information in the hands of state authorities'? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1537.en.html Saal 1 Marco Gercke PUBLISH 1543@23C3@pentabarf.org 1543 kollaboratives_wissenmanagement Kollaboratives Wissensmanagement im Bildungsbereich Die Zitierfähigkeit von Wiki-Wissen deutsch de 20061227T214500 20061227T224500 1H Kollaboratives Wissensmanagement im Bildungsbereich - Die Zitierfähigkeit von Wiki-Wissen Im Mittelpunkt des Beitrags steht das wissenschaftliche Zitieren der Wikipedia im Kontext der Diskussion um stabile Versionen, Qualitätssicherung und die Sicherung von Expertenwissen; welcher Zusammenhang besteht zwischen wissenschaftlichem Arbeiten und dem Wissenskonsens der Wikipedia? Erlaubt die Wikipedia die Bereitstellung von wissenschaftlich verwertbaren Zitaten und wie kann sie wissenschaftlich zitiert werden? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1543.en.html Saal 3 Rüdiger Weis Martin Haase/maha PUBLISH 1555@23C3@pentabarf.org 1555 konrad_zuse_der_rechnende_raum Konrad Zuse - Der rechnende Raum Ein audiovisuelles Live-Feature deutsch de 20061228T000000 20061228T010000 1H Konrad Zuse - Der rechnende Raum - Ein audiovisuelles Live-Feature Er gilt als der deutsche Pionier der frühen Rechentechnik: Konrad Zuse. Sein Leben, seine Rechenmaschinen und seine Firma Zuse KG werden in diesem live gesprochenen dokumentarischen Feature der Hörspielwerkstatt der Humboldt-Universität zu Berlin porträtiert. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1555.en.html Saal 1 Marcus Richter Constanze Kurz Ina Kwasniewski Jens-Martin Loebel Kai Kittler PUBLISH 1678@23C3@pentabarf.org 1678 kritik_an_den_illuminaten Kritik an den Illuminaten zwischen 1787 und 2006 Der Stand der Auseinandersetzung zwischen Discordiern und Illuminaten deutsch de 20061228T230000 20061229T000000 1H Kritik an den Illuminaten zwischen 1787 und 2006 - Der Stand der Auseinandersetzung zwischen Discordiern und Illuminaten Bereits 1787 formulierte der Theologe Benedikt Stattler in seiner Schrift "Das Geheimniß der Bosheit des Stifters des Illuminatismus in Baiern zur Warnung der Unvorsichtigen hell aufgedeckt von einem seiner alten Kenner und Freunde" Kritik an dem von Adam Weishaupt gegründeten Illuminatenorden. Der CCC hat sich in vielen Aspekten in seiner Eigenschaft als discordische Vereinigung ebenfalls in kritischer Art und Weise mit Plänen und Aktionen der Illuminaten im Sinne der "New World Order" und Aktionen wie der "Total Information Awareness" auseinandergesetzt. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1678.en.html Saal 3 Andy Müller-Maguhn PUBLISH 1593@23C3@pentabarf.org 1593 krypta Krypta: DIY Serverhousing deutsch de 20061230T171500 20061230T181500 1H Krypta: DIY Serverhousing Funkfeuer (0xFF), als freie Netzwerkinitiative in Wien eine Schwester von Freifunk, begann vor 2 Jahren damit ein "Community Serverhousing" aufzubauen. Wie beim Aufstellen von WLan Router, stoesst man dabei auf logistische, technische und soziale Aufgaben, die es zu loesen gilt um erfolgreich kostendeckend in Betrieb gehen zu koennen. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1593.en.html Saal 3 Chris Kummerer Markus Sulzbacher Andreas Marksteiner Teemu Schaabl PUBLISH 1514@23C3@pentabarf.org 1514 lightning_talks_day_1 Lightning Talks Day 1 20061227T160000 20061227T170000 1H Lightning Talks Day 1 Definition: Lightning Talks is a daily event. which consists in onehour of several short talks. Each talk is limited to five minutes.Goal: There is one slot for Lightning Talks each day of thecongress. The goal is to present 10 talks within each slot.So this might be up to 40 interesting talks in total.See the Wiki page for current info. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1514.en.html Saal 2 b9punk Sven Guckes PUBLISH 1515@23C3@pentabarf.org 1515 lightning_talks_day_2 Lightning Talks Day 2 englisch en 20061228T160000 20061228T170000 1H Lightning Talks Day 2 Definition: Lightning Talks is a daily event. which consists in onehour of several short talks. Each talk is limited to five minutes.Goal: There is one slot for Lightning Talks each day of thecongress. The goal is to present 10 talks within each slot.So this might be up to 40 interesting talks in total.See the Wiki page for current info. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1515.en.html Saal 2 Sven Guckes b9punk PUBLISH 1516@23C3@pentabarf.org 1516 lightning_talks_day_3 Lightning Talks Day 3 20061229T160000 20061229T170000 1H Lightning Talks Day 3 Definition: Lightning Talks is a daily event. which consists in onehour of several short talks. Each talk is limited to five minutes.Goal: There is one slot for Lightning Talks each day of thecongress. The goal is to present 10 talks within each slot.So this might be up to 40 interesting talks in total.See the Wiki page for current info. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1516.en.html Saal 2 b9punk Sven Guckes PUBLISH 1517@23C3@pentabarf.org 1517 lightning_talks_day_4 Lightning Talks Day 4 20061230T160000 20061230T180000 2H Lightning Talks Day 4 Definition: Lightning Talks is a daily event. which consists in onehour of several short talks. Each talk is limited to five minutes.Goal: There is one slot for Lightning Talks each day of thecongress. The goal is to present 10 talks within each slot.So this might be up to 40 interesting talks in total.See the Wiki page for current info. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1517.en.html Saal 4 Sven Guckes b9punk PUBLISH 1753@23C3@pentabarf.org 1753 lobjan_workshop Lojban Workshop englisch en 20061229T170000 20061229T181500 1H Lojban Workshop A short introduction into lojban, the logical language, for beginners who want to learn the language. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1753.en.html Workshop Area Alexander Koch PUBLISH 1742@23C3@pentabarf.org 1742 machine_learning_in_a_nutshell Machine Learning in a Nutshell A hands on workshop englisch en 20061227T171500 20061227T193000 2H Machine Learning in a Nutshell - A hands on workshop The intention is to give a brief overview of how to learn from data, which tools to use and which pitfalls to avoid. The goal is not to give a detailed introduction to the theoretical background but to show general application settings. The first half consists of a brief overview of typical machine learning problems, during the second half participants are asked to address a learning problem themselves. Participants are provided with suitable software but are free to use their own favourite applications. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1742.en.html Workshop Area Isabel Drost PUBLISH 1498@23C3@pentabarf.org 1498 mining_aol_search_queries Mining Search Queries How to discover additional knowledge in the AOL query logs englisch en 20061229T183000 20061229T193000 1H Mining Search Queries - How to discover additional knowledge in the AOL query logs AOL recently published over 34M weakly anonymized search queries from their users by intension. This lecture gives an overview on the results of an extensive statistical analysis and data mining procedure on this dataset. Thereby, a methodology for frequency analysis, search trend mining, topic detection and even user profiling and identification will be presented. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1498.en.html Saal 3 Robert PUBLISH 1738@23C3@pentabarf.org 1738 mmorpgs MMORPGs The state and future of the World of Warcraft englisch en 20061228T113000 20061228T123000 1H MMORPGs - The state and future of the World of Warcraft This talk will focus on World of Warcraft, the most popular MMORPG. There will be a brief overview of the game, guilds and guild management, tools and social issues. Other technologies and the possible future of MMORPGs and their impact will be discussed. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1738.en.html Saal 3 Joi Ito PUBLISH 1495@23C3@pentabarf.org 1495 green_phone Mobile phone call encryption Encrypting (GSM) mobile phone calls over VPN with an Asterisk PBX englisch en 20061228T214500 20061228T224500 1H Mobile phone call encryption - Encrypting (GSM) mobile phone calls over VPN with an Asterisk PBX To encrypt all your mobile phones to protect it from overzealous eavesdroppers, you are currently limited to using special hardware such as the Cryptophone. The disadvantage of cryptophone is that it only works with other cryptophones. To work around this, we turn mobile phones from "voice" phones into VOIP phones. Using the SIP protocol for VOIP and IPsec/L2TP or Openvpn as our VPN, Leigh Honeywell and Paul Wouters connect their mobile phones fully encrypted to an Asterisk PBX server. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1495.en.html Saal 2 Paul Wouters Leigh Honeywell PUBLISH 1616@23C3@pentabarf.org 1616 nerds_und_geeks Nerds und Geeks zwischen Stereotyp und Subkultur Eine kulturanthropologische Untersuchung deutsch de 20061230T140000 20061230T150000 1H Nerds und Geeks zwischen Stereotyp und Subkultur - Eine kulturanthropologische Untersuchung In dem Vortrag sollen die Ergebnisse einer kulturwissenschaftlichen Forschungsarbeit vorgestellt und diskutiert werden. Dabei wird der Begriff Nerd eher als Konstrukt, und weniger als gegeben betrachtet. Vorgestellt werden vor allem die Ergebnisse aus Interviews, teilnehmender Beobachtung und einer qualitativen Umfrage. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1616.en.html Saal 4 Mareike Glöß PUBLISH 1552@23C3@pentabarf.org 1552 nintendo_ds Nintendo DS Introduction and hacking englisch en 20061229T160000 20061229T170000 1H Nintendo DS - Introduction and hacking The Nintendo DS is a mobile gaming console. It was first introduced in2004. Our talk will give a short introduction of the hardware andavailable games. The main focus however lies on homebrew software,DSLinux, alternative firmware, copy protection, flash cards and onlinegaming protocols. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1552.en.html Saal 1 Tobias Gruetzmacher Marcel Klein Mario Manno PUBLISH 1763@23C3@pentabarf.org 1763 nintennde_hacking_teatime Nintendo hacking teatime englisch en 20061229T230000 20061230T000000 1H Nintendo hacking teatime A nice and cozy get-together for DS homebrew hackers, wannabe DS homebrew hackers, and everyone else interested. There won't be a fixed program, just some chit-chat about the DS, the Wii and everything. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1763.en.html Workshop Area Tobias Weyand PUBLISH 1774@23C3@pentabarf.org 1774 one_laptop_per_chilp One Laptop per Child project proposals englisch en 20061230T110000 20061230T120000 1H One Laptop per Child - project proposals What tools do children need to learn to understand and hack their own environment? Specific proposals of collections of beauty, stories, visualizations, tools, games and more. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1774.en.html Workshop Area sj PUBLISH 1760@23C3@pentabarf.org 1760 on_free On Free, and the Differences between Culture and Code englisch en 20061229T203000 20061229T213000 1H On Free, and the Differences between Culture and Code PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1760.en.html Saal 1 Lawrence Lessig PUBLISH 1566@23C3@pentabarf.org 1566 openpcd_openpicc OpenPCD / OpenPICC Free RFID reader and emulator englisch en 20061229T160000 20061229T181500 2H OpenPCD / OpenPICC - Free RFID reader and emulator This presentation will introduce and demonstrate OpenPCD and OpenPICC. The purpose of those projects is to develop free hardware designs and software for 13.56MHz RFID reader and transponder simulator. OpenPICC can be used to e.g. simulate ISO 14443 or ISO 15693 transponders, such as those being used in biometric passports and FIFA worldcup tickets. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1566.en.html Saal 4 Milosch Meriac Harald Welte PUBLISH 1752@23C3@pentabarf.org 1752 opensearch Opensearch englisch en 20061229T150000 20061229T170000 2H Opensearch Who controls the information? In this modern age, search engines have a distinct influence on the retrieval of information from the internet. Another concern with the concentration of information and information about who requests that information is that non-benign parties might use this information to prosecute people. In order to remedy this situation, we came up with the OpenSearch idea: a search engine that is distributed, not under central control and therefore difficult to manipulate. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1752.en.html Workshop Area Robin Gareus PUBLISH 1701@23C3@pentabarf.org 1701 open_source_machine_translation Open Source Machine Translation From tools, to tricks, to projects: build a translation engine from Klingon to Finnish in an hour englisch en 20061227T203000 20061227T213000 1H Open Source Machine Translation - From tools, to tricks, to projects: build a translation engine from Klingon to Finnish in an hour Today two revolutions are pushing the machine translation field forward: the open source movement, and the broader application of statistical methods. This talk is at the intersection of the two: centering around the applications and contributions to be made to Moses, a state of the art open source toolkit for statistical machine translation developed by researchers from MIT, Edinburgh, Cornell, and Aachen. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1701.en.html Saal 2 Christine Corbett Moran PUBLISH 1257@23C3@pentabarf.org 1257 podjournalism Podjournalism The Role of Podcasting in Critical and Investigative Journalism englisch en 20061230T124500 20061230T134500 1H Podjournalism - The Role of Podcasting in Critical and Investigative Journalism Throughout the world, major media companies are cutting their budgets for investigative reporting. Most journalists will soon be freelancers, losing their freedom to investigate the more controversial or difficult topics. Yet at the same time, podcasting as a form of citizen journalism has risen, free of the constraints of organizations and editors. But without the funding that the tradional media enjoyed, how are podcasting journalists carrying out their work, and what does it mean for the media consumer? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1257.en.html Saal 1 Bicyclemark PUBLISH 1422@23C3@pentabarf.org 1422 pornography_and_technology Pornography and Technology a love affair englisch en 20061229T214500 20061229T224500 1H Pornography and Technology - a love affair Pornography is an abstract phenomenon. It cannot exist without a medium to propagate it, and it has very little (if anything at all) to do with sex. The relationship between pornography, which is entirely fictional and sex, which is very real, very sweaty and mostly not a very aesthetic thing is something like the correlation of science-fiction literature and technological innovation: sometimes the ideas are bizarre, completely nuts and would never work without a Heisenberg Compensator - but sometimes some fragment lasts and is taken to the real world. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1422.en.html Saal 2 Tina Lorenz PUBLISH 1683@23C3@pentabarf.org 1683 powerpoint_karaoke Powerpoint Karaoke deutsch de 20061229T230000 20061230T000000 1H Powerpoint Karaoke Dieser Wettbewerb hat ein einfaches Prinzip: der Vortragende sieht die Folien seiner Präsentation bei Beginn seines Vortrages zum ersten Mal. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1683.en.html Saal 2 Verena Hafner Constanze Kurz PUBLISH 1730@23C3@pentabarf.org 1730 23c3pressekonferenz Pressekonferenz deutsch de 20061227T093000 20061227T101500 0H Pressekonferenz Pressekonferenz zum 23C3 PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1730.en.html Saal 2 Andreas Lehner Constanze Kurz Frank Rosengart PUBLISH 1611@23C3@pentabarf.org 1611 privacy_identity_and_anonymity_in_web_20 Privacy, Identity, and Anonymity in Web 2.0 englisch en 20061227T160000 20061227T170000 1H Privacy, Identity, and Anonymity in Web 2.0 The presentation will show the hidden privacy implications of some web2.0 and identity2.0 services, standards and applications and discuss the underlying trend here. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1611.en.html Saal 1 Ralf Bendrath Jan Schallaböck Udo Neitzel PUBLISH 1736@23C3@pentabarf.org 1736 project_sputnik Project Sputnik Realtime in-building location tracking at the 23C3 englisch en 20061227T140000 20061227T150000 1H Project Sputnik - Realtime in-building location tracking at the 23C3 Project Sputnik is the real-time in-building location tracking system present at the 23C3. The Sputnik is a small active 2.4GHz RF Beacon, whose signal is picked up by one or multiple of the 20+ Sputnik base stations installed in the event venue (bcc). Attendees of the 23C3 are able to voluntarily participate in this system by purchasing an inexpensive Sputnik transponder which they can carry with them during the whole event. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1736.en.html Saal 2 Harald Welte Milosch Meriac PUBLISH 1709@23C3@pentabarf.org 1709 revenge_of_the_female_nerds Revenge of the Female Nerds Busting Myths about Why Women Can't Be Technical englisch en 20061227T230000 20061228T000000 1H Revenge of the Female Nerds - Busting Myths about Why Women Can't Be Technical Why do media and industry lag behind reality when it comes to estimatingwomen's technical and scientific abilities? That women have theseabilities is obvious. The question is how to change social expectationsabout them. What are women doing, and what can they do, to combatpervasive myths about their inferiority as engineers and scientists? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1709.en.html Saal 1 Annalee Newitz PUBLISH 1576@23C3@pentabarf.org 1576 rfid_hacking RFID hacking englisch en 20061228T171500 20061228T181500 1H RFID hacking This talk will elaborate on the security and social aspects of RFID technology. We will talk about our projects of the past year, including the FIFA World Cup tickets. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1576.en.html Saal 1 Karsten Nohl Henryk Plötz z0ccor PUBLISH 1688@23C3@pentabarf.org 1688 rootkits_as_reversing_tools Rootkits as Reversing Tools An Anonymous Talk englisch en 20061229T214500 20061229T224500 1H Rootkits as Reversing Tools - An Anonymous Talk This talk will cover two rootkits used as reverse engineering tools, one rootkit support library, one IDA plugin, and talk setup material. The talk itself will be given over VOIP and VNC running over the Tor network to demonstrate a proof of concept on anonymous public speech. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1688.en.html Saal 4 Alan Bradley PUBLISH 1700@23C3@pentabarf.org 1700 router_and_infrastructure_hacking Router and Infrastructure Hacking "First we take Manhattan, then we take Berlin..." englisch en 20061228T113000 20061228T123000 1H Router and Infrastructure Hacking - "First we take Manhattan, then we take Berlin..." The security of backbone devices has been under increasing focus for the past few years, but infrastructure hacking techniques remain intheir infancy and are still not even used in most penetration tests.This talk will discuss how to find and exploit vulnerabilities in infrastructure devices and their service dependencies, including vulnerability development as necessary. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1700.en.html Saal 2 Raven PUBLISH 1759@23C3@pentabarf.org 1759 schlossoeffnung_staatssicherheit Schlossöffnung bei der Staatssicherheit der DDR Werkzeuge und Vorgehen der STASI deutsch de 20061229T230000 20061230T000000 1H Schlossöffnung bei der Staatssicherheit der DDR - Werkzeuge und Vorgehen der STASI Arthur Meister erläutert das operative Vorgehen und die speziellen Werkzeuge zur Schlossöffnung,die von der Staatssicherheit der DDR verwendet wurden. Von der opartiven Vorbereitung, über die Erstöffnung bis zur Herstellung von Nachschlüsslen werden speziell von der STASI entwicklete Werkzeuge und deren Einsatz gezeigt. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1759.en.html Saal 3 Arthur Meister PUBLISH 1446@23C3@pentabarf.org 1446 secure_network_server_programming_on_unix Secure Network Server Programming on Unix Techniques and best practices to securely code your network server englisch en 20061228T140000 20061228T150000 1H Secure Network Server Programming on Unix - Techniques and best practices to securely code your network server This talk describes a software system to securely execute predefined commands over an untrusted network, analyzes the potential attack vectors against this system and defines countermeasures to make it impossible for an attacker to use these attack vectors. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1446.en.html Saal 3 Andreas Krennmair PUBLISH 1751@23C3@pentabarf.org 1751 secure_voip Secure VOIP using GSM phones, Asterisk and IPsec/openvpn englisch en 20061229T124500 20061229T150000 2H Secure VOIP - using GSM phones, Asterisk and IPsec/openvpn Workshop about how to configure all the parts to get the GreenPhone/XDA/Motorola phones working with VPN software and SIP to an Asterisk on VPN. This workshop goes deeply into software/tech bits that cannot be delved into during the presentation on 28.12.2006. The presentation focusses more on VOIP security issues in general and our overal design of the secure phone infrastructure.. This workshop takes place a day after that presentation. Bring your phones and/or laptops and connect to our secure PBX! PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1751.en.html Workshop Area Paul Wouters Leigh Honeywell PUBLISH 1457@23C3@pentabarf.org 1457 credit_card_security Security in the cardholder data processing?! Experiences and lessons learned with the Payment Card Industry Data Security Standard englisch en 20061229T183000 20061229T193000 1H Security in the cardholder data processing?! - Experiences and lessons learned with the Payment Card Industry Data Security Standard MasterCard and Visa have jointly released the PCI Data Security Standard which defines security requirements for the processing of card data in face-to-face and card-absent transactions. This presentation will deal with the most critical security gaps. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1457.en.html Saal 1 Manuel Atug PUBLISH 1682@23C3@pentabarf.org 1682 security_nightmares Security Nightmares 2007 Oder: worüber wir nächstes Jahr lachen werden deutsch de 20061230T160000 20061230T170000 1H Security Nightmares 2007 - Oder: worüber wir nächstes Jahr lachen werden Security Nightmares - der jährliche Rückblick auf die IT-Sicherheit und der Security-Glaskugelblick für's nächste Jahr. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1682.en.html Saal 1 Frank Rieger Ron PUBLISH 1644@23C3@pentabarf.org 1644 sflow sFlow I can feel your traffic englisch en 20061230T171500 20061230T181500 1H sFlow - I can feel your traffic The explosion of internet traffic is leading to higher bandwidths and an increased need for high speed networks. To analyze and optimize such networks an efficient monitoring system is required. The sFlow standard describes a mechanism to capture traffic data in switched or routed networks. It uses a sampling technology to collect statistics from the device and is for this reason applicable to high speed connections (at gigabit speeds or higher). PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1644.en.html Saal 2 Elisa Jasinska PUBLISH 1346@23C3@pentabarf.org 1346 sie_haben_das_recht_zu_schweigen Sie haben das Recht zu schweigen Durchsuchung, Beschlagnahme, Vernehmung - Strategien für den Umgang mit Polizei und Staatsanwalt deutsch de 20061229T214500 20061229T224500 1H Sie haben das Recht zu schweigen - Durchsuchung, Beschlagnahme, Vernehmung - Strategien für den Umgang mit Polizei und Staatsanwalt Wer online lebt und arbeitet, tut dies unter den Augen der Strafverfolger. Der Vortrag schildert, wie Durchsuchungen, Vernehmungen und Ermittlungsverfahren ablaufen. Er erklärt, wie man sich gegenüber Polizei und Staatsanwaltschaft richtig verhält. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1346.en.html Saal 3 Udo Vetter PUBLISH 1459@23C3@pentabarf.org 1459 sip_security SIP Security Status Quo and Future Issues englisch en 20061229T160000 20061229T170000 1H SIP Security - Status Quo and Future Issues The presentation will give an overview on SIP security issues and show possible weaknesses in current implementations using SIP (Hardphones, Softphones, Gateways). Further, an outlook on the security of future, serverless SIP systems (P2P-SIP) will be given. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1459.en.html Saal 3 Jan Seedorf PUBLISH 1765@23C3@pentabarf.org 1765 snortattack SnortAttack.org The IPS CHALLENGE englisch en 20061227T214500 20061228T000000 2H SnortAttack.org - The IPS CHALLENGE Workshop Challenge : Are you ready to hack ? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1765.en.html Workshop Area SnortAttack Team PUBLISH 1721@23C3@pentabarf.org 1721 software_protection_and_the_tpm Software Protection and the TPM The Mac OS X Story englisch en 20061229T124500 20061229T134500 1H Software Protection and the TPM - The Mac OS X Story Ever since Apple announced the x86 version of Mac OS X, people have been obsessed with running the operating system on non-Apple hardware. The media has given this topic more than its fair share of coverage, with nary a week going by without some discussion of the tussle between Apple and system attackers attempting to "crack" Mac OS X. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1721.en.html Saal 1 Amit Singh PUBLISH 1627@23C3@pentabarf.org 1627 software_reliability Software Reliability in Aerospace An overview on design and generation of safe and reliable Software englisch en 20061230T124500 20061230T134500 1H Software Reliability in Aerospace - An overview on design and generation of safe and reliable Software The challenge of designing reliable is managed different in everyindustry. This lecture will give an overview how safety critical andreliable software is designed and produced in the area of aerospaceindustry and why this could also be interesting for otherapplications (like web-design) PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1627.en.html Saal 3 Erwin Erkinger PUBLISH 1381@23C3@pentabarf.org 1381 stealth_malware Stealth malware - can good guys win? Challenges in detecting system compromises and why we’re so far behind the (smart) bad guys englisch en 20061228T183000 20061228T193000 1H Stealth malware - can good guys win? - Challenges in detecting system compromises and why we’re so far behind the (smart) bad guys The presentation will try to present current challenges in detecting advanced forms of stealth malware and explain why current detection approaches, as used in commercial A/V or IDS products, are insufficient. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1381.en.html Saal 1 Joanna Rutkowska PUBLISH 1602@23C3@pentabarf.org 1602 subverting_ajax Subverting AJAX Next generation vulnerabilities in 2.0 Web Applications englisch en 20061229T171500 20061229T181500 1H Subverting AJAX - Next generation vulnerabilities in 2.0 Web Applications Ajax and the new dynamic extensions leverage new threats that lead to innovative attack scenarios against web applications. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1602.en.html Saal 3 Stefano Di Paola Giorgio Fedon PUBLISH 1766@23C3@pentabarf.org 1766 swiss_gettogether Swiss Gettogether deutsch de 20061229T214500 20061229T224500 1H Swiss Gettogether Alle willkommen! PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1766.en.html Workshop Area $speaker PUBLISH 1710@23C3@pentabarf.org 1710 tap_the_eff Tap the Electronic Frontier Foundation EFF staffers answer your questions! englisch en 20061228T214500 20061228T224500 1H Tap the Electronic Frontier Foundation - EFF staffers answer your questions! EFF staffers answer your questions about American wiretapping, thelatest moves of the *AA, the spread of the DMCA through free tradeagreements, what's up at WIPO, and other dispatches from the US andelsewhere. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1710.en.html Saal 4 Peter Eckersley Seth Schoen Danny O'Brien PUBLISH 1502@23C3@pentabarf.org 1502 the_gift_of_sharing The gift of sharing A critical approach to the notion of gift economy within the everyday life-world of free and open source software (FOSS). englisch en 20061227T183000 20061227T193000 1H The gift of sharing - A critical approach to the notion of gift economy within the everyday life-world of free and open source software (FOSS). This paper will dive into this complex questionmark through a comparison between primitive hunter-gatherer societies and the everyday life-world of FOSS. The discussion will focus on the thesis that FOSS practice is based on social sharing and not on processes of exchange. This will entail a negation of the paradigm of economic logic and instead pull a quest for valuable relationships to the forefront of the FOSS sociality. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1502.en.html Saal 4 Gregers Petersen PUBLISH 1461@23C3@pentabarf.org 1461 the_grim_meathook_future The Grim Meathook Future How The Tech Culture Can Maintain Relevance In The 21st Century englisch en 20061227T140000 20061227T150000 1H The Grim Meathook Future - How The Tech Culture Can Maintain Relevance In The 21st Century Most modern futurism describes technology-driven futures: the nanotech future, the biotech future, etc. But there's also another future, just as or more possible: the future where technology is marginalized by social and cultural forces (such as the rise of fundamentalism as a political force in the US and Middle East). This lecture talks about how technology and design can help humanity avoid a grim future. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1461.en.html Saal 1 Joshua Ellis PUBLISH 1749@23C3@pentabarf.org 1749 the_linguistic_fingerprint The linguistic fingerprint Silver bullet or mere myth? deutsch de 20061228T183000 20061228T193000 1H The linguistic fingerprint - Silver bullet or mere myth? In the wake of crime science shows like CSI and high profile criminal cases like the JonBenet Ramsey murder, the field of forensic linguistics has come to the attention of the general public. Today many laypersons know the term "linguistic fingerprint" and they have certain expectations about what it implies.But these expectations are largely unfounded. ... PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1749.en.html Workshop Area Daniela Berger PUBLISH 1523@23C3@pentabarf.org 1523 the_rise_and_fall_of_open_source The Rise and Fall of Open Source The Million Eyeball Principle and forkbombs englisch en 20061227T160000 20061227T170000 1H The Rise and Fall of Open Source - The Million Eyeball Principle and forkbombs This lecture outlines a possible future retrospective on OpenSource built from a simple continuation of current trends. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1523.en.html Saal 3 Tonnerre Lombard PUBLISH 1373@23C3@pentabarf.org 1373 hacker_foundation The Story of The Hacker Foundation Challenges of Organizing a Foundation for Hackers in the USA englisch en 20061228T171500 20061228T181500 1H The Story of The Hacker Foundation - Challenges of Organizing a Foundation for Hackers in the USA Talk will focus on the three year history of the Hacker Foundationin the USA including the legal, organizational and motivationalhurdles. Ongoing project successes, failures and the reasons behind eachwill be covered. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1373.en.html Saal 2 Nick Farr PUBLISH 1473@23C3@pentabarf.org 1473 large_scale_internet_content_filtering The worst part of censorship is XXXXX Investigating large-scale Internet content filtering englisch en 20061229T124500 20061229T134500 1H The worst part of censorship is XXXXX - Investigating large-scale Internet content filtering This talk analyzes large-scale, countrywide Internet content filtering from a technical point of view and investigates the current situation in the People’s Republic of China. Additionally it discusses techniques to effectively defeat censorship and based on various tests conducted by the author, comments on their applicability in the Chinese part of the Internet. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1473.en.html Saal 2 Sebastian Wolfgarten PUBLISH 1540@23C3@pentabarf.org 1540 learn_to_be_honest To live outside the law you gotta be honest Ist nicht jedes Passwort eine Manifestation des Mißtrauens? deutsch de 20061228T183000 20061228T193000 1H To live outside the law you gotta be honest - Ist nicht jedes Passwort eine Manifestation des Mißtrauens? As a dealer of illegal substances in the late 60s, early 70s, I learned how to work without written contracts and without advertising. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1540.en.html Saal 2 Werner Pieper PUBLISH 1444@23C3@pentabarf.org 1444 tor_and_china Tor and China Design of a blocking-resistant anonymity system englisch en 20061228T140000 20061228T150000 1H Tor and China - Design of a blocking-resistant anonymity system Websites like Wikipedia and Blogspot are increasingly being blocked by government-level firewalls around the world. Although many people use the Tor anonymity network to get around this censorship, the current Tor network is not designed to withstand a government-level censor. In this talk we describe a design for providing access to the Tor network that is harder to block. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1444.en.html Saal 1 Roger Dingledine PUBLISH 1604@23C3@pentabarf.org 1604 tracking_von_personen_in_videoszenen Tracking von Personen in Videoszenen Wie trackt man automatisch sich bewegende Objekte? deutsch de 20061228T124500 20061228T134500 1H Tracking von Personen in Videoszenen - Wie trackt man automatisch sich bewegende Objekte? Mittels der Computer-Vision-Library OpenCV wird gezeigt, welche Bildverarbeitungsschritte notwendig sind, um bewegte Objekte in Videoszenen zu erkennen und nachzuverfolgen. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1604.en.html Saal 3 pille PUBLISH 1724@23C3@pentabarf.org 1724 transparency_and_privacy Transparency and Privacy The 7 Laws of Identity and the Identity Metasystem englisch en 20061227T214500 20061227T224500 1H Transparency and Privacy - The 7 Laws of Identity and the Identity Metasystem Microsoft has proposed architectural principles ("7 Laws of Identity") to support convergence towards an inter-operable, secure, and privacy-enhancing plurality of identity systems - an "Identity Metasystem". This new concept presupposes that a single monolithic identity system for the Internet is neither practicable nor desirable. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1724.en.html Saal 2 Caspar Bowden PUBLISH 1418@23C3@pentabarf.org 1418 trust_your_eyes Trust Your Eyes Grundlagen der Visualisierung und wie man mit Visualisierungen „faken“ kann deutsch de 20061229T140000 20061229T150000 1H Trust Your Eyes - Grundlagen der Visualisierung und wie man mit Visualisierungen „faken“ kann Vorgestellt werden theoretische Grundlagen der Visualisierung und der menschlichen Wahrnehmung sowie einige Visualisierungstechniken. Im Anschluss wird exemplarisch dargestellt, wie leicht man durch geschickt gewählte Visualisierungen verfälschte Eindrücke suggerieren kann. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1418.en.html Saal 2 Sonja PUBLISH 1708@23C3@pentabarf.org 1708 tv_b_gone TV-B-Gone Better Living Through Inventing englisch en 20061230T140000 20061230T150000 1H TV-B-Gone - Better Living Through Inventing It is possible and desirable and fun to invent and create technologies that help our world. Have you ever wanted to shut off a TV that was annoying you in a public place? My extraordinarily popular invention, TV-B-Gone has made it fun to turn off TVs in restaurants, pubs, airports... PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1708.en.html Saal 1 Mitch PUBLISH 1651@23C3@pentabarf.org 1651 ueberwachen_und_strafen_in_entenhausen Überwachen und Strafen in Entenhausen deutsch de 20061228T214500 20061228T224500 1H Überwachen und Strafen in Entenhausen Mit Michel Foucault in Entenhausen: Der Vortrag wird einen Blick auf die Überwachungsmethoden und die Strafpraxis in der Gumpenmetropole werfen. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1651.en.html Saal 3 Henriette Fiebig PUBLISH 1679@23C3@pentabarf.org 1679 ueberwachungsdruck Überwachungsdruck - einige Experimente Wie wirkt Überwachung? deutsch de 20061229T203000 20061229T213000 1H Überwachungsdruck - einige Experimente - Wie wirkt Überwachung? Wie wirkt Überwachung? Was ändert es am Verhalten von Passanten? Wir haben Experimente im öffentlichen Raum durchgeführt und präsentieren die Ergebnisse. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1679.en.html Saal 2 Adrian Dabrowski Martin Slunsky PUBLISH 1642@23C3@pentabarf.org 1642 unlocking_filevault Unlocking FileVault An analysis of Apple's encrypted disk storage system englisch en 20061229T113000 20061229T123000 1H Unlocking FileVault - An analysis of Apple's encrypted disk storage system Analysis of the MacOS X storage encryption technology FileVault. Having fun by reverse-engineering private Frameworks under MacOS X. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1642.en.html Saal 1 Ralf-Philipp Weinmann Jacob Appelbaum PUBLISH 1456@23C3@pentabarf.org 1456 unusual_bugs Unusual bugs englisch en 20061230T113000 20061230T123000 1H Unusual bugs In this presentation I'll present a series of unusual security bugs. Things that I've ran into at some point and went "There's gotta be some security consequence here". None of these are really a secret, and most of them are even documented somewhere. But apparently most people don't seem to know about them. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1456.en.html Saal 1 Ilja PUBLISH 1608@23C3@pentabarf.org 1608 vehicular_communication_and_vanets Vehicular Communication and VANETs The future and security of communicating vehicles englisch en 20061228T203000 20061228T213000 1H Vehicular Communication and VANETs - The future and security of communicating vehicles Vehicle communication is a major research topic, covered by many national and international research projects. Applications promise to make our driving safer, more efficient, and more fun. The talk presents applications, technology, and also addresses security and privacy issues. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1608.en.html Saal 4 Frank Kargl PUBLISH 1493@23C3@pentabarf.org 1493 virtuelle_sicherheit Virtuelle Sicherheit Mandatory Access Control und TPM in Xen deutsch de 20061230T124500 20061230T134500 1H Virtuelle Sicherheit - Mandatory Access Control und TPM in Xen Xen bietet aufregende neue Sicherheitsfunktionen: Mandatory Access Control und virtuelle TPMs. Der Vortrag stellt diese Funktionen vor, berichtet von ersten Erfahrungen und zeigt ihre Grenzen auf. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1493.en.html Saal 2 Ralf Spenneberg PUBLISH 1622@23C3@pentabarf.org 1622 void_the_warranty Void the warranty! How to start analyzing blackboxes englisch en 20061229T171500 20061229T181500 1H Void the warranty! - How to start analyzing blackboxes We're surrounded by blackboxes containing digital technology nowadays.There are complex devices like cell phones as well as more simple ones that don't look very digital at all. This lecture shall motivate the listener to take more electronic things apart, examine the mode of operation and modify it. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1622.en.html Saal 2 Hunz PUBLISH 1714@23C3@pentabarf.org 1714 warum_wir_uns_so_gerne_ueberwachen_lassen Warum wir uns so gerne überwachen lassen… Erhellendes aus Philosophie und Soziologie zur Klärung des Phänomens steigender Kontrolle und Überwachung deutsch de 20061228T183000 20061228T193000 1H Warum wir uns so gerne überwachen lassen… - Erhellendes aus Philosophie und Soziologie zur Klärung des Phänomens steigender Kontrolle und Überwachung Das Phänomen steigender Überwachung und Kontrolle ist vielfach beschrieben und diskutiert wurden. Klagen werden allerorts laut und verklingen meist genauso schnell wieder. Innerhalb des Vortrags soll das Phänomen - jenseits einer bloßen Zustandsbeschreibung - soziologisch-philosophisch betrachtet und auf aktuelle internationale Forschungsergebnisse eingegangen werden. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1714.en.html Saal 4 Christine Ketzer PUBLISH 1347@23C3@pentabarf.org 1347 we_are_great_together "We are great together, the liberal society and its enemies!" monochrom englisch en 20061230T140000 20061230T150000 1H "We are great together, the liberal society and its enemies!" - monochrom A talk medley from monochrom, a worldwide operating collective from Vienna dealing with technology, art, context hacking, and philosophy which was founded in 1993. They specialize in an unpeculiar mixture of proto-aesthetic fringe work, pop attitude, subcultural science, and political activism. Their mission is conducted everywhere, but first and foremost "in culture-archaeological digs into the seats (and pockets) of ideology and entertainment". PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1347.en.html Saal 3 Johannes Grenzfurthner PUBLISH 1745@23C3@pentabarf.org 1745 web_application_security Web Application Security Find the Flaw, or Someone Else Will englisch en 20061228T113000 20061228T123000 1H Web Application Security - Find the Flaw, or Someone Else Will Extensive information on web application security mistakes (and how to avoid them) has been available for quite a while. Yet many web applications still come with flaws that are often easy to find and exploit. The currently hyped AJAX will probably increase the number of buggy applications, since it invites programmers to entrust critical tasks like input validation and access control to the browser - thereby making it easy for malicious users to bypass these checks. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1745.en.html Workshop Area Viktoria Polzer PUBLISH 1423@23C3@pentabarf.org 1423 we_dont_trust_voting_computers We don't trust voting computers The story of the dutch campaign against black-box voting to date englisch en 20061227T203000 20061227T224500 2H We don't trust voting computers - The story of the dutch campaign against black-box voting to date This talk covers the dutch campaign against unverifiable voting on computers, which is part of a growing movement world-wide to reject these computers. Successes in Ireland and (surprise) the US seem to indicate that media, law-makers and the general public are beginning to wake up. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1423.en.html Saal 1 Rop Gonggrijp PUBLISH 1256@23C3@pentabarf.org 1256 who_can_you_trust Who can you trust? Opening Ceremony and Keynote englisch en 20061227T103000 20061227T113000 1H Who can you trust? - Opening Ceremony and Keynote Opening event of the 23rd Chaos Communication Congress. After a welcome talk, the 23C3's keynote will be delivered. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1256.en.html Saal 1 Tim Pritlove John Perry Barlow PUBLISH 1747@23C3@pentabarf.org 1747 why_opensource_needs_professional_marketing Why OpenSource Needs Professional Marketing englisch en 20061228T140000 20061228T150000 1H Why OpenSource Needs Professional Marketing Where is OpenSource-Software today, and where do we want to see it by the end of this decade? Most of us would probably like to see it in the big headlines, see it being used by big companies, by big cities' administrations and by country governments. We would it to be recognized by everyone and make sure that those who are concerned - computer users of this world - at least have an idea, what FOSS is, what free operating systems and free desktops are, and what advantages that kind of software can give them. We want everybody to see what good FOSS can do for them. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1747.en.html Workshop Area Valerie Hoh PUBLISH 1741@23C3@pentabarf.org 1741 wifi_backpack_strap Wifi Backpack Strap Workshop englisch en 20061227T113000 20061227T134500 2H Wifi Backpack Strap Workshop This will be a hands-on hardware hacking workshop with all materials to build your own Wifi Backpack Strap. The version built during this workshop will be removable with velcro, not built into the strap. Please contact me at "mail" at "fabienne" dot "us" to sign up for the workshop and note whether you would like me to reserve a kit for you or if you will be bringing your own wifi detector. There will be a fee around thirty-five euros for parts. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1741.en.html Workshop Area Fabienne Serriere PUBLISH 1748@23C3@pentabarf.org 1748 qualitaet_heisst_selber_machen (WOMAN ONLY) Qualität heißt selber machen Was kann Medienaktivismus im Netz? deutsch de 20061228T160000 20061228T181500 2H (WOMAN ONLY) Qualität heißt selber machen - Was kann Medienaktivismus im Netz? Die eigene Sicht der Dinge - oder konkreter Ereignisse - an ein Massenpublikum bringen: Dieses Ansinnen wird durch die Entwicklung von Blogosphäre und „citizen journalism“ plötzlich für viel mehr Menschen möglich. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1748.en.html Workshop Area Ragni-Serina Zlotos PUBLISH 1750@23C3@pentabarf.org 1750 bauen_einer_wlan_antenne (WOMEN ONLY) Bauen einer WLAN-Antenne deutsch de 20061228T193000 20061228T213000 2H (WOMEN ONLY) Bauen einer WLAN-Antenne Kleine Einführung in die HF Wellenausbreitung und Funktionsweise verschiedener Antennentypen, dannach Bau von – unterschiedlichen - Antennen für 2.4GHz (z.B WLAN) PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1750.en.html Workshop Area Fredi PUBLISH 1744@23C3@pentabarf.org 1744 haecksen_plenums_fruehstueck (WOMEN ONLY) Haecksen-Plenums-Frühstück 20061228T100000 20061228T113000 1H (WOMEN ONLY) Haecksen-Plenums-Frühstück netzwerkeln, projekte planen - WOMAN ONLY ALLE SICH WEIBLICH FÜHLENDEN MENSCHEN SIND HERZLICH EINGELADEN PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1744.en.html Workshop Area Cyworg PUBLISH 1428@23C3@pentabarf.org 1428 you_cant_make_this_stuff_up You can't make this stuff up A Stand-Up Comedy Approach to hacking englisch en 20061228T230000 20061229T000000 1H You can't make this stuff up - A Stand-Up Comedy Approach to hacking Ilja and Felix will attempt a stand-up comedy act about hacking, the security industry, open source projects, big egos in the community, and other related stuff. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2006/Fahrplan/events/1428.en.html Saal 1 Felix von Leitner Ilja