2.0 -//Pentabarf//Schedule 1.01//EN 24C3 Schedule Release 1.01 24C3 Schedule PUBLISH 2380@24C3@pentabarf.org 2380 nedap_wahlcomputer_in_deutschland NEDAP-Wahlcomputer in Deutschland German de 20071227T171500 20071227T181500 01H00M00S

NEDAP-Wahlcomputer in Deutschland

Wir bringen Euch auf den neuesten Stand, was den Einsatz der NEDAP-Wahlcomputer in Deutschland betrifft. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2380.en.html Saal 1 Constanze Kurz Frank Rieger PUBLISH 2351@24C3@pentabarf.org 2351 anonaccess AnonAccess Ein anonymes Zugangskontrollsystem German de 20071227T214500 20071227T224500 01H00M00S

AnonAccess- Ein anonymes Zugangskontrollsystem

AnonAccess ist ein elektronisches System, welches anonymen Zugang nicht nur zu Hackerspaces ermöglicht. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2351.en.html Saal 2 Daniel Otte Sören Heisrath PUBLISH 2189@24C3@pentabarf.org 2189 hidden_trojan Crouching Powerpoint, Hidden Trojan An analysis of targeted attacks from 2005 to 2007 English en 20071227T203000 20071227T213000 01H00M00S

Crouching Powerpoint, Hidden Trojan- An analysis of targeted attacks from 2005 to 2007

Targeted trojan attacks first attracted attention in early 2005, when the UK NISCC warned of their wide spread use in attacks on UK national infrastructure. Incidents such as "Titan Rain" and the compromise of US Department of State computer systems have increased their profile in the last two years. This presentation will consist of hard, technical information on attacks in the form of a case study of an actual attack ongoing since 2005. It covers exploitation techniques, draws general conclusions on attack methodologies and focuses on how to defend against the dark arts. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2189.en.html Saal 2 Maarten Van Horenbeeck PUBLISH 2233@24C3@pentabarf.org 2233 vx VX The Virus Underground English en 20071227T230000 20071228T000000 01H00M00S

VX- The Virus Underground

The listeners will be introduced in the world of virus coding. They will understand how this can be seen as a way of expressing yourself and why it is a way of hacking. Furthermore they will get to know, which important groups, authors and viruses have been there in the last years and which are still active nowadays. Important technical terms will be explained as well as trends of the last years and the future. And more. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2233.en.html Saal 3 SkyOut PUBLISH 2338@24C3@pentabarf.org 2338 steam_powered_telegraphy Steam-Powered Telegraphy A League of Telextraordinary Gentlemen present the marvel of Telex on the Net - driven by a steam engine English en 20071227T113000 20071227T123000 01H00M00S

Steam-Powered Telegraphy - A League of Telextraordinary Gentlemen present the marvel of Telex on the Net - driven by a steam engine

We have built and modified a steam-powered Telex machine and connected it to the new-fangled invention for modern telegraphy known as "the Internet". We will present this steampunkish invention in form of a lecture, thus hoping to enlighten interested ladies and gentlemen on the principles of steam engine physics, 5-bit Baudot encoding, and historic telegraphy in general. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2338.en.html Saal 1 SkyTee Sebastian Velke Ingo Schwitters Jens Ohlig PUBLISH 2257@24C3@pentabarf.org 2257 ipv6 IPv6: Everywhere they don't want it Global connectivity even in the places that you are not supposed to have it English en 20071227T230000 20071228T000000 01H00M00S

IPv6: Everywhere they don't want it- Global connectivity even in the places that you are not supposed to have it

This talk will discuss a new feature in AICCU which allows one to have IPv6 virtually everywhere, including most places where a lot of network operators will not want to have it. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2257.en.html Saal 2 Jeroen Massar PUBLISH 2133@24C3@pentabarf.org 2133 building_a_hacker_space Building a Hacker Space A Hacker Space Design Pattern Catalogue English en 20071227T140000 20071227T150000 01H00M00S

Building a Hacker Space- A Hacker Space Design Pattern Catalogue

With the help of Design Patterns we will show you how to set up your own Hacker Space. The Design Patterns are based on more than 10 years of experience with setting up and running a Hacker Space. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2133.en.html Saal 3 Lars Weiler Jens Ohlig PUBLISH 2285@24C3@pentabarf.org 2285 10ge_monitoring_live 10GE monitoring live! How to find that special one out of millions English en 20071227T160000 20071227T170000 01H00M00S

10GE monitoring live!- How to find that special one out of millions

There are many open source tools available to do packet capturing and analysis. Virtually all networkers use these tools. However millions of packets per seconds are just too much for general-purpose hardware. This is a problem as 10 Gigabit networks allow for millions of packets per second. The obvious solution for that issue is to lower the data rates by filtering out ’uninteresting’ data out before it gets processed by the general purpose computer hardware. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2285.en.html Saal 3 Arien Vijn PUBLISH 2225@24C3@pentabarf.org 2225 paparazzi Paparazzi - The Free Autopilot Build your own UAV English en 20071227T124500 20071227T134500 01H00M00S

Paparazzi - The Free Autopilot- Build your own UAV

Autonomous unmanned aerial vehicles are becoming more and more popular as suitable electronics and sensors are available and affordable. This talk will describe Paparazzi, a complete system enabling you to build and control your own UAV. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2225.en.html Saal 2 Martin Müller Antoine Drouin PUBLISH 2248@24C3@pentabarf.org 2248 desperate_house_hackers Desperate House-Hackers How to Hack the Pfandsystem German de 20071227T171500 20071227T181500 01H00M00S

Desperate House-Hackers- How to Hack the Pfandsystem

Wie funktionieren eigentlich diese Pfandflaschenrücknahmeautomaten? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2248.en.html Saal 3 Nils Magnus PUBLISH 2155@24C3@pentabarf.org 2155 universe_on_supercomputers Simulating the Universe on Supercomputers The evolution of cosmic structure English en 20071227T124500 20071227T134500 01H00M00S

Simulating the Universe on Supercomputers- The evolution of cosmic structure

The evolution of structure in the Universe is one of the hottest topics in Cosmology and Astrophysics. In the last years the so-called $\Lambda$-CDM-model could be established also with great help of very large computer simulations. This model describes a Universe that consists mainly of dark components: 96% are made of dark energy and dark matter. Ordinary matter made up of baryons give only 4% to the total content of the Universe. The talk will present recent results with the main focus on computational methods and challenges in that field. A state-of-the-art computer code for running these calculations will be presented in detail. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2155.en.html Saal 3 Mark Vogelsberger PUBLISH 2254@24C3@pentabarf.org 2254 freifunkerei Freifunkerei And a Do-It-Yourself society against the state English en 20071227T113000 20071227T123000 01H00M00S

Freifunkerei- And a Do-It-Yourself society against the state

The term Freifunk Firmware has found a place on the shelfs in the life of numerous people. It has become an immense knot of activities, not just sitting silently like a dusty heirloom. “Freifunkerei” has become an example of how DIY-cultures can act and re-create alternatives in a world which seems both confronted and abandoned by the state. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2254.en.html Saal 3 Gregers Petersen PUBLISH 2342@24C3@pentabarf.org 2342 it_was_a_bad_idea_anyway It was a bad idea anyway... The demise of electronic voting in The Netherlands English en 20071227T160000 20071227T170000 01H00M00S

It was a bad idea anyway...- The demise of electronic voting in The Netherlands

2007 has been yet another a turbulent year in The Netherlands with regard to electronic voting. If you remember the presentation at 23c3, 2006 saw the emergence of a campaign against the use of non-auditable voting systems. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2342.en.html Saal 1 Rop Gonggrijp PUBLISH 2382@24C3@pentabarf.org 2382 tor TOR German de 20071227T140000 20071227T150000 01H00M00S

TOR

Die Vortragenden berichten über den Betrieb und das Abuse-Handling des Anonymisierers. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2382.en.html Saal 1 Erdgeist Julius Mittenzwei Andreas Lehner PUBLISH 2359@24C3@pentabarf.org 2359 brilliant_deviants The Role of Brilliant Deviants in the Liberalization of Society How People Like Us Make People Like Them Accept Us English en 20071227T113000 20071227T123000 01H00M00S

The Role of Brilliant Deviants in the Liberalization of Society- How People Like Us Make People Like Them Accept Us

I'm planning to look at how hackers and other "folks like us" get the "real world" to let us be crazy deviants, and continue to pay us anyway. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2359.en.html Saal 2 Rose White PUBLISH 2355@24C3@pentabarf.org 2355 tracker_fahrn Tracker fahrn We Track Harder - We Track More! Take the pain out of running a Bittorrent-Tracker! German de 20071227T183000 20071227T193000 01H00M00S

Tracker fahrn- We Track Harder - We Track More! Take the pain out of running a Bittorrent-Tracker!

Bittorrent aus der Sicht von Bittorrent-Tracker Betreibern. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2355.en.html Saal 2 Erdgeist Denis Cristian Yxen PUBLISH 2245@24C3@pentabarf.org 2245 how_to_reach_digital_sustainability Digital Sustainability Scarcity is Entering the Net English en 20071227T214500 20071227T224500 01H00M00S

Digital Sustainability- Scarcity is Entering the Net

Happy digital world: Everything is information, and it grows by sharing. Scarcity seems to be a problem of the "meatspace". On the internet, there is space for everybody, for every activity and for every opinion. Really? This lectures explores the power of intellectual property rights, the principle of net neutrality and surveillance issues and explains their impact on everyday (digital) life. The net as we know it is in danger. What is needed to make it stay a resource which is valuable, open and free for everybody? How could a concept of digital sustainability look like? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2245.en.html Saal 3 Meike Richter PUBLISH 2381@24C3@pentabarf.org 2381 what_is_terrorism What is terrorism? And who is terrorising whom? English en 20071227T183000 20071227T193000 01H00M00S

What is terrorism?- And who is terrorising whom?

Life as the partner of a terrorism suspect means living with police and secret service surveillance: phone tapping, video cameras pointing at your doors, plain-clothed police following your every step, e-mail and internet access being monitored etc etc. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2381.en.html Saal 1 Anne Roth PUBLISH 2329@24C3@pentabarf.org 2329 change_me Programming DNA A 2-bit language for engineering biology English en 20071227T214500 20071227T224500 01H00M00S

Programming DNA- A 2-bit language for engineering biology

Biological engineering does not have to be confined to the laboratories of high-end industry laboratories. Rather, it is desirable to foster a more open culture of biological technology. This talk is an effort to do so; it aims to equip you with basic practical knowledge of biological engineering. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2329.en.html Saal 1 Drew Endy PUBLISH 2401@24C3@pentabarf.org 2401 anonymity_for_2015 Anonymity for 2015 Why not just use Tor? English en 20071227T160000 20071227T170000 01H00M00S

Anonymity for 2015- Why not just use Tor?

In recent years, an increasing amount of academic research has been focused on secure anonymous communication systems. In this talk, we briefly review the state of the art in theoretical anonymity systems as well as the several deployed and actively used systems such as Tor and Mixmaster, and explain their advantages and limitations. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2401.en.html Saal 2 Len Sassaman PUBLISH 2258@24C3@pentabarf.org 2258 design_noir Design Noir The seedy underbelly of electronic engineering English en 20071227T203000 20071227T213000 01H00M00S

Design Noir- The seedy underbelly of electronic engineering

Design noir is what happens when engineers, artists and hackers get together to design consumer electronics. I'll present some examples, including my own projects and collaborations Cell phone jammers, TV-B-Gone devices, high-voltage jackets...lots of fun! PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2258.en.html Saal 1 ladyada PUBLISH 2363@24C3@pentabarf.org 2363 der_bundestrojaner Der Bundestrojaner Die Wahrheit haben wir auch nicht, aber gute Mythen German de 20071227T124500 20071227T134500 01H00M00S

Der Bundestrojaner- Die Wahrheit haben wir auch nicht, aber gute Mythen

Der Bundestrojaner wird von politischer, juristischer und technischer Seite beleuchtet. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2363.en.html Saal 1 Andreas Bogk Constanze Kurz Felix von Leitner PUBLISH 2366@24C3@pentabarf.org 2366 opening_event Opening Event Welcome everybody! English en 20071227T110000 20071227T113000 00H30M00S

Opening Event- Welcome everybody!

Welcome to the Congress! PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2366.en.html Saal 1 Tim Pritlove PUBLISH 2214@24C3@pentabarf.org 2214 make_cool_things_with_microcontrollers Make Cool Things with Microcontrollers Hacking with Microcontrollers English en 20071227T183000 20071227T193000 01H00M00S

Make Cool Things with Microcontrollers- Hacking with Microcontrollers

Learn how to make cool things with microcontrollers by actually making fun projects at the Congress -- blink lights, hack your brain, move objects, turn off TVs in public places -- microcontrollers can do it all. Ongoing workshops each day of the Congress. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2214.en.html Saal 3 Mitch PUBLISH 2393@24C3@pentabarf.org 2393 dns_rebinding_packet_tricks DNS Rebinding And More Packet Tricks English en 20071227T230000 20071228T000000 01H00M00S

DNS Rebinding And More Packet Tricks

DNS Rebinding has proved itself to be an effective mechanism for turning standard web browsers into proxy servers. This talk will go into further depth regarding mechanisms for hijacking browser connectivity, and will illustrate some new tricks for measuring network neutrality. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2393.en.html Saal 1 Dan Kaminsky PUBLISH 2318@24C3@pentabarf.org 2318 cybercrime20 Cybercrime 2.0 Storm Worm English en 20071227T203000 20071227T213000 01H00M00S

Cybercrime 2.0- Storm Worm

Not only the Web has reached level 2.0, also attacks against computer systems have advanced in the last few months: Storm Worm, a peer-to-peer based botnet, is presumably one of the best examples of this development. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2318.en.html Saal 3 Thorsten Holz PUBLISH 2356@24C3@pentabarf.org 2356 computer_popsongs "I can count every star in the heavens above but I have no heart I can't fall in love…". The image of computers in popular music English en 20071228T003000 20071228T013000 01H00M00S

"I can count every star in the heavens above but I have no heart I can't fall in love…".- The image of computers in popular music

A talk (with examples) by monochrom, presented by Johannes Grenzfurthner PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2356.en.html Saal 1 Johannes Grenzfurthner PUBLISH 2324@24C3@pentabarf.org 2324 aes_side_channel_attacks AES: side-channel attacks for the masses English en 20071227T171500 20071227T181500 01H00M00S

AES: side-channel attacks for the masses

AES (Rijndael) has been proven very secure and resistant to cryptanalysis, there are not known weakness on AES yet. But there are practical ways to break weak security systems that rely on AES. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2324.en.html Saal 2 Victor Muñoz PUBLISH 2292@24C3@pentabarf.org 2292 wireless_kernel_tweaking Wireless Kernel Tweaking or how B.A.T.M.A.N. learned to fly English en 20071228T140000 20071228T150000 01H00M00S

Wireless Kernel Tweaking- or how B.A.T.M.A.N. learned to fly

Kernel hacking definitely is the queen of coding but in order to bring mesh routing that one vital step further we had to conquer this, for us, unchartered territory. Working in the kernel itself is a tough and difficult task to manage, but the results and effectivity to be gained justify the long and hard road to success. We took on the mission to go down that road and the result is B.A.T.M.A.N. advanced which is a kernel land implementation of the B.A.T.M.A.N. mesh routing protocol specifically designed to manage Wireless MANs. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2292.en.html Saal 3 Marek Simon Wunderlich PUBLISH 2333@24C3@pentabarf.org 2333 spiel_freude_eierkuchen Spiel, Freude, Eierkuchen? Die Gamerszene und ihre Reaktion auf kritische Berichterstattung German de 20071228T203000 20071228T213000 01H00M00S

Spiel, Freude, Eierkuchen?- Die Gamerszene und ihre Reaktion auf kritische Berichterstattung

Der Journalist Rainer Fromm berichtet über seine Erfahrungen mit der Gamerszene, mit Filmbeispielen und anschließender Diskussion. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2333.en.html Saal 2 Rainer Fromm Frank Rosengart PUBLISH 2216@24C3@pentabarf.org 2216 erlang Konzeptionelle Einführung in Erlang German de 20071228T124500 20071228T134500 01H00M00S

Konzeptionelle Einführung in Erlang

A jump-start into the world of concurrent programming PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2216.en.html Saal 3 BeF Stefan Strigler PUBLISH 2203@24C3@pentabarf.org 2203 chaos_jahresrueckblick Chaos Jahresrückblick Ein Überblick über die Aktivitäten des Clubs 2007 German de 20071228T171500 20071228T193000 02H15M00S

Chaos Jahresrückblick- Ein Überblick über die Aktivitäten des Clubs 2007

Wir stellen die Aktivitäten des und Geschehnisse im Chaos Computer Club im abgelaufenen Jahr vor. Hierunter fallen sowohl die Kampagnen des CCC, die Lobbyarbeit sowie Berichte und Anekdoten von Veranstaltungen innerhalb des CCC als auch Vorträge und Konferenzen, an denen CCC-Vertreter teilgenommen haben. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2203.en.html Saal 1 Frank Rosengart Constanze Kurz Frank Rieger Andy Müller-Maguhn PUBLISH 2326@24C3@pentabarf.org 2326 diy_survival DIY Survival How to survive the apocalypse or a robot uprising English en 20071228T230000 20071229T000000 01H00M00S

DIY Survival- How to survive the apocalypse or a robot uprising

The apocalypse could happen any day. You're going to need things to survive and your going have to make them yourself. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2326.en.html Saal 1 Bre PUBLISH 2303@24C3@pentabarf.org 2303 inside_the_macosx_kernel Inside the Mac OS X Kernel Debunking Mac OS Myths English en 20071228T214500 20071228T224500 01H00M00S

Inside the Mac OS X Kernel- Debunking Mac OS Myths

Many buzzwords are associated with Mac OS X: Mach kernel, microkernel, FreeBSD kernel, C++, 64 bit, UNIX... and while all of these apply in some way, "XNU", the Mac OS X kernel is neither Mach, nor FreeBSD-based, it's not a microkernel, it's not written in C++ and it's not 64 bit - but it is UNIX... but just since recently. This talk intends to clear up the confusion by presenting details of the Mac OS X kernel architecture, its components Mach, BSD and I/O-Kit, what's so different and special about this design, and what the special strengths of it are. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2303.en.html Saal 2 lucy PUBLISH 2275@24C3@pentabarf.org 2275 quantum_cryptography_and_possible_attacks Quantum Cryptography and Possible Attacks English en 20071228T140000 20071228T150000 01H00M00S

Quantum Cryptography and Possible Attacks

Quantum cryptography is the oldest and best developed application of the field of quantum information science. Although it is frequently perceived as an encryption method, it is really a scheme to securely distribute correlated random numbers between the communicating parties and thus better described as quantum key distribution (QKD). Any attempt at eavesdropping from a third party is guarantied to be detected by the laws of physics (quantum mechanics) and shows up as an increased error rate in the transmission (the QBER). PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2275.en.html Saal 1 Ilja Gerhardt Antia Lamas Christian Kurtsiefer Alexander Ling PUBLISH 2322@24C3@pentabarf.org 2322 infectious_diseases Modelling Infectious Diseases in Virtual Realities The "corrupted blood" plague of WoW from an epidemiological perspective English en 20071228T183000 20071228T193000 01H00M00S

Modelling Infectious Diseases in Virtual Realities- The "corrupted blood" plague of WoW from an epidemiological perspective

World of Warcraft is currently one of the most successful and complex virtual realities. Apart from gaming, it simulates personality types, social structures and a whole range of group dynamics. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2322.en.html Saal 3 floX PUBLISH 2321@24C3@pentabarf.org 2321 d_libd_and_the_slate_project After C: D, libd and the Slate project A clean slate for operating systems English en 20071228T140000 20071228T150000 01H00M00S

After C: D, libd and the Slate project- A clean slate for operating systems

We present libd, a high-level runtime for the D programming language and the Slate project, an attempt at a high-level OS and environment built upon libd, as the next major step in improving the state of programming environments and operating systems. With high-level abstractions, and sensible design, the state of implementation of open-source OSes can improve. We leverage existing kernels when implementing Slate, and put an extensive (abstraction-oriented) architecture above the kernel to present the user (or programmer) with a system they can use by having to do less to perform a specific function. Our virtual machine approach also allows for security verification on a level not seen in *nix OSes before. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2321.en.html Saal 2 Vladsharp PUBLISH 2340@24C3@pentabarf.org 2340 absurde_mathematik Absurde Mathematik Paradoxa wider die mathematische Intuition German de 20071228T124500 20071228T134500 01H00M00S

Absurde Mathematik- Paradoxa wider die mathematische Intuition

Ein kleiner Streifzug durch die Abgründe der Mathematik. Eigentlich ist der Mensch mit einer recht gut funktionierenden Intuition ausgerüstet. Dennoch gibt es Paradoxa, welche mathematisch vollkommen korrekt und beweisbar sind, jedoch unserer Intuition widersprechen. Der Vortrag bietet einen Streifzug durch einige dieser Paradoxa, die kurz und anschaulich erklärt werden. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2340.en.html Saal 2 Anoushirvan Dehghani PUBLISH 2131@24C3@pentabarf.org 2131 port_scanning_improved Port Scanning improved New ideas for old practices English en 20071228T214500 20071228T224500 01H00M00S

Port Scanning improved- New ideas for old practices

Port-Scanning large networks can take ages. Asking yourself how much of this time is really necessary and how much you can blame on the port-scanner, you may find yourself integrating your own scanner into the linux-kernel. Or at least we did. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2131.en.html Saal 1 FX of Phenoelit Fabian Yamaguchi PUBLISH 2247@24C3@pentabarf.org 2247 breaking_a_vm Just in Time compilers - breaking a VM Practical VM exploiting based on CACAO English en 20071228T171500 20071228T181500 01H00M00S

Just in Time compilers - breaking a VM- Practical VM exploiting based on CACAO

We will present state of the art JIT compiler design based on CACAO, a GPL licensed multiplatform Java VM. After explaining the basics of code generation, we will focus on "problematic" instructions, and point to possible ways to exploit stuff. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2247.en.html Saal 3 Roland Lezuo Peter Molnar PUBLISH 2347@24C3@pentabarf.org 2347 c64_dtv_hacking C64-DTV Hacking Revisiting the legendary computer in a joystick English en 20071228T214500 20071228T224500 01H00M00S

C64-DTV Hacking- Revisiting the legendary computer in a joystick

The C64-DTV is a remake of the classic homecomputer sold as a joystick-contained videogame. The talk gives an overview about the structure of the DTV, and shows different hardware and software modifications that can be done. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2347.en.html Saal 3 Peter Fuhrmann PUBLISH 2383@24C3@pentabarf.org 2383 data_retention Data Retention and PNR The Brussels Workshop English en 20071228T124500 20071228T134500 01H00M00S

Data Retention and PNR- The Brussels Workshop

New EU legislation emphasises and in some cases creates new crimes of consumer infringement of intellectual property laws. Consumer Warnings about consumers' requirements to respect copyright could become mandatory; worse, such infringement cases could move from civil cases to criminal ones across the EU. But nowhere is there legislation either clarifying or defending consumers' rights under IP law, in our changing digital environment. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2383.en.html Saal 1 Erik Josefsson Ricardo Cristof Remmert-Fontes PUBLISH 2389@24C3@pentabarf.org 2389 hacking_icann Hacking ICANN tactics to hack the individual into the ICANN system English en 20071228T113000 20071228T123000 01H00M00S

Hacking ICANN- tactics to hack the individual into the ICANN system

The Internet Corporation for Assigned Names and Numbers (ICANN) needs to include users in its policy making: We propose and discuss tactics to hack the individual into the system. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2389.en.html Saal 3 Annette Muehlberg Wendy Seltzer Andy Müller-Maguhn PUBLISH 2227@24C3@pentabarf.org 2227 hacking_scada Hacking SCADA how to own critical infrastructures English en 20071228T203000 20071228T213000 01H00M00S

Hacking SCADA- how to own critical infrastructures

SCADA acronym stand for “Supervisory Control And Data Acquisition”, and it's related to industrial automation inside critical infrastructures. This talk will introduce the audience to SCADA environments and its totally different security approaches, outlining the main key differences with typical IT Security best practices. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2227.en.html Saal 3 mayhem Raoul "Nobody" Chiesa PUBLISH 2279@24C3@pentabarf.org 2279 deconstructing_xbox_360_security Why Silicon-Based Security is still that hard: Deconstructing Xbox 360 Security Console Hacking 2007 English en 20071228T160000 20071228T170000 01H00M00S

Why Silicon-Based Security is still that hard: Deconstructing Xbox 360 Security- Console Hacking 2007

The Xbox 360 probably is the video game console with the most sophisticated security system to date. Nevertheless, is has been hacked, and now Linux can be run on it. This presentation consists of two parts. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2279.en.html Saal 1 Michael Steil Felix Domke PUBLISH 2294@24C3@pentabarf.org 2294 23_ways_to_fight_for_your_rights 23 Wege für Deine Rechte zu kämpfen Wie man sich selbst mit den eigenen Stärken für unsere Bürgerrechte einsetzen kann German de 20071228T160000 20071228T170000 01H00M00S

23 Wege für Deine Rechte zu kämpfen- Wie man sich selbst mit den eigenen Stärken für unsere Bürgerrechte einsetzen kann

Bürgerrechtsabbau steht auf der Tagesordnung. Bei der Vielzahl an Vorhaben und Gesetzesinitiativen haben viele mittlerweile das Gefühl, dass sich politisches Engagieren nicht mehr lohnt. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2294.en.html Saal 3 Markus Beckedahl PUBLISH 2335@24C3@pentabarf.org 2335 rule_34_contest Rule 34 Contest There is porn of it. English en 20071229T000000 20071229T010000 01H00M00S

Rule 34 Contest- There is porn of it.

Rule 34 says: There is porn of it. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2335.en.html Saal 1 Erdgeist tina Andreas Bogk nibbler PUBLISH 2277@24C3@pentabarf.org 2277 automatic_memory_management Automatic memory management Why should I care about something that a computer could handle better, anyway? English en 20071228T183000 20071228T193000 01H00M00S

Automatic memory management- Why should I care about something that a computer could handle better, anyway?

Since Java is widespread, automatic memory management is a commonly used technology. There are several approaches to memory management, realtime, parallel, probabilistic algorithms. The lecture will give an overview of different algorithms and current research topics. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2277.en.html Saal 2 Hannes PUBLISH 2241@24C3@pentabarf.org 2241 das_panoptische_prinzip Das Panoptische Prinzip - Filme über die Zeit nach der Privatsphäre Ergebnisse des Minutenfilmwettbewerbs des C4 und des Kölner Filmhauses German de 20071228T230000 20071229T010000 02H00M00S

Das Panoptische Prinzip - Filme über die Zeit nach der Privatsphäre- Ergebnisse des Minutenfilmwettbewerbs des C4 und des Kölner Filmhauses

In den letzten Jahren – nicht zuletzt seit dem 11. September – ist es zu einem Abbau von Bürgerrechten und einer immer umfassender werdenden Überwachung seitens des Staates, aber auch der Wirtschaft gekommen. Erkennungsdienstliche Verfahren, wie z. B. die Abnahme von Fingerabdrücken oder andere biometrische Verfahren, treffen zunehmend auch Normalbürger. Das rechtsstaatlich garantierte Paradigma der Unschuldsvermutung wird demontiert: Jeder ist potenziell verdächtig. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2241.en.html Saal 2 Christine Ketzer Yvette Krause Ralph Kusserow Stefan Sels PUBLISH 2273@24C3@pentabarf.org 2273 toying_with_barcodes Toying with barcodes Jemandem einen Strich auf die Rechnung machen English en 20071228T203000 20071228T213000 01H00M00S

Toying with barcodes- Jemandem einen Strich auf die Rechnung machen

The talk focuses on 1D and 2D barcode applications with interference possibilities for the ordinary citizen. Ever wondered what is in these blocks of squares on postal packages, letters and tickets? Playing with them might have interesting effects, reaching from good old fun to theft and severe impact. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2273.en.html Saal 1 FX of Phenoelit PUBLISH 2192@24C3@pentabarf.org 2192 elektronische_dokumente Elektronische Dokumente und die Zukunft des Lesens Warum es so ewig gedauert hat, bis Bücher auf geeigneten Geräten lesbar wurden, und was uns noch erwartet German de 20071228T113000 20071228T123000 01H00M00S

Elektronische Dokumente und die Zukunft des Lesens- Warum es so ewig gedauert hat, bis Bücher auf geeigneten Geräten lesbar wurden, und was uns noch erwartet

E-book devices versuchen seit Ewigkeiten, aus dem Sumpf der Bedeutungslosigkeit den Weg in den Massenmarkt zu finden. Bisher ohne Erfolg. Warum das so lange ein so großes Problem war und warum das jetzt anders werden wird, behandelt dieser Vortrag PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2192.en.html Saal 1 Steini PUBLISH 2385@24C3@pentabarf.org 2385 lightning_talks_2007_day_2 Lightning Talks Day 2 English en 20071228T113000 20071228T123000 01H00M00S

Lightning Talks Day 2

PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2385.en.html Saal 2 Hannes PUBLISH 2378@24C3@pentabarf.org 2378 mifare_security Mifare Little Security, Despite Obscurity English en 20071228T230000 20071229T000000 01H00M00S

Mifare- Little Security, Despite Obscurity

Mifare are the most widely deployed brand of secure RFID chips, but their security relies on proprietary and secret cryptographic primitives. We analyzed the hardware of the Mifare tags and found weaknesses in several parts of the cipher. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2378.en.html Saal 3 Karsten Nohl Henryk Plötz PUBLISH 2260@24C3@pentabarf.org 2260 to_be_or_i2p To be or I2P An introduction into anonymous communication with I2P English en 20071228T171500 20071228T181500 01H00M00S

To be or I2P- An introduction into anonymous communication with I2P

I2P is a message-based anonymizing network. It builds a virtual network between the communication endpoints. This talk will introduce the technical details of I2P and show some exemplary applications. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2260.en.html Saal 2 Jens Kubieziel PUBLISH 2284@24C3@pentabarf.org 2284 linguistic_hacking Linguistic Hacking How to know what a text in an unknown language is about? English en 20071228T160000 20071228T170000 01H00M00S

Linguistic Hacking- How to know what a text in an unknown language is about?

It is sometimes necessary to know what a text is about, even if it is written in a language you don't know. This can be quite problematic, if you do not even know in what language it is written. This talk will show how it is possible to identify the language of a written text and get at least some information about the contents, in order to decide whether a specialist and which specialist is needed to know more. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2284.en.html Saal 2 Martin Haase/maha PUBLISH 2271@24C3@pentabarf.org 2271 distributed_campaigns Distributed campaigns for promoting and defending freedom in digital societies Sharing experience about campaigning on the political field in France English en 20071229T124500 20071229T134500 01H00M00S

Distributed campaigns for promoting and defending freedom in digital societies- Sharing experience about campaigning on the political field in France

A presentation of a few successful campaigns in France lead by libre software activists for defending freedom in a digital world: bringing awareness of the politicians about the dangers of the EUCD transposition and DRM, and their economical, social and political impact and influencing the candidates at a presidential election to talk about Libre Software, software patents, DRM, etc. How did we do that? What have we learned? Maybe for political action _too_, sharing is a way of just doing it better. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2271.en.html Saal 2 j. Zimmermann PUBLISH 2276@24C3@pentabarf.org 2276 space_communism Space Communism Communism or Space first? English en 20071229T230000 20071230T000000 01H00M00S

Space Communism- Communism or Space first?

Following "Chaos und Kritische Theorie" from 23C3, another verbal battle: Oona Leganovic (aka Ijon Tichy) will promote the idea to sublate the capital relation and bring about communism first and only then to go to Space, because otherwise the earthly problems will be spread everywhere. Daniel Kulla (impersonating Captain Kathryn Janeway) will, on the other hand, defend the exploration humanism that once already ended the middle ages and of which can be expected to do the same to the crusted planetary commodity circus. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2276.en.html Saal 2 Oona Leganovic Daniel Kulla PUBLISH 2288@24C3@pentabarf.org 2288 verschwoerungstheorien Agenten des Bösen Verschwörungstheorien German de 20071229T171500 20071229T181500 01H00M00S

Agenten des Bösen- Verschwörungstheorien

Wolfgang Wippermann hat 2007 unter dem Titel "Agenten des Bösen" ein Buch über "Verschwörungstheorien von Luther bis heute" veröffentlicht. Darin geht es unter anderem auch um Verschwörungstheorie, die in Hackerkreisen auf Interesse stoßen (Illuminanten, 9/11...). Interessant ist seine Einordnung solcher Verschwörungstheorien in größere Zusammenhänge. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2288.en.html Saal 1 Wolfgang Wippermann PUBLISH 2255@24C3@pentabarf.org 2255 wahlchaos Wahlchaos Paradoxien des deutschen Wahlsystems German de 20071229T140000 20071229T150000 01H00M00S

Wahlchaos- Paradoxien des deutschen Wahlsystems

Wahlchaos beschäftigt sich mit Wahlverfahren aus mathematischer und politischer Sicht. So wurden die Wahlen von 1998, 2002 und 2005 betrachtet und a-postpriori manipuliert und ihre Auswirkungen diskutiert. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2255.en.html Saal 2 Markus Schneider PUBLISH 2344@24C3@pentabarf.org 2344 grundlagen_der_sicheren_programmierung Grundlagen der sicheren Programmierung Typische Sicherheitslücken German de 20071229T113000 20071229T123000 01H00M00S

Grundlagen der sicheren Programmierung- Typische Sicherheitslücken

Dieser Vortrag bietet eine Übersicht über einige Dinge, welche man im Kopf behalten sollte, wenn man Software schreibt - vorausgesetzt, diese soll nachher nur von der Person benutzt werden, die sie auch betreibt. Die theoretischen Aspekte der Sicherheit werden mit Codebeispielen untermalt. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2344.en.html Saal 3 Tonnerre Lombard PUBLISH 2287@24C3@pentabarf.org 2287 sex20 Sex 2.0 Hacking Heteronormativity German de 20071229T214500 20071229T224500 01H00M00S

Sex 2.0- Hacking Heteronormativity

Der lange Schwanz der Dating-Communities sowie die De- und Rekonstruktion von Geschlecht und sexueller Orientierung haben ungeahnte Auswirkungen auf unser Sexualleben. Ein Überblick darüber, was Sex ist, wie Dating-Communities funktionieren und wie man zu einem erfüllten Sexualleben kommen kann. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2287.en.html Saal 1 Florian Bischof PUBLISH 2190@24C3@pentabarf.org 2190 introduction_in_mems Introduction in MEMS Skills for very small ninjas English en 20071229T124500 20071229T134500 01H00M00S

Introduction in MEMS- Skills for very small ninjas

MicroElectroMechanical Systems or MEMS are as part of micro system technology, systems with electrical and mechanical subsystems at the micro scale. It is basically an introduction in the technology and in its potential for hardware hacks and potential ways of homebrew devices. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2190.en.html Saal 3 Jens Kaufmann PUBLISH 2371@24C3@pentabarf.org 2371 wahlstift Hamburger Wahlstift German de 20071229T113000 20071229T123000 01H00M00S

Hamburger Wahlstift

Am 24. Februar wollte Hamburg als Pilotprojekt mit dem Digitalen Wahlstift wählen. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2371.en.html Saal 2 Sven Übelacker Jens Muecke Frank Rieger PUBLISH 2346@24C3@pentabarf.org 2346 meine_finger_gehoeren_mir Meine Finger gehören mir Die nächste Stufe der biometrischen Vollerfassung German de 20071229T203000 20071229T213000 01H00M00S

Meine Finger gehören mir- Die nächste Stufe der biometrischen Vollerfassung

Zum 1. November 2007 ging der biometrische Reisepass in die nächste Ausbaustufe. Seitdem müssen reisewillige Bürger neben dem frontalen Gesichtsbild auch noch ihre Fingerabdrücke abgeben. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2346.en.html Saal 2 Constanze Kurz starbug PUBLISH 2281@24C3@pentabarf.org 2281 haxe haXe hacking a programming language English en 20071229T183000 20071229T193000 01H00M00S

haXe- hacking a programming language

haXe is a programming language for developing both server AND client side of a website. haXe can do Javascript/AJAX, Database access and even Flash and video streaming. All with one single programming language. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2281.en.html Saal 3 Nicolas Cannasse PUBLISH 2353@24C3@pentabarf.org 2353 from_ring_zero_to_uid_zero From Ring Zero to UID Zero A couple of stories about kernel exploiting English en 20071229T171500 20071229T181500 01H00M00S

From Ring Zero to UID Zero- A couple of stories about kernel exploiting

The process of exploiting kernel based vulnerabilities is one of the topics which have received more attention (and kindled more interest) among security researchers, coders and addicted. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2353.en.html Saal 3 sgrakkyu twiz PUBLISH 2286@24C3@pentabarf.org 2286 openstreetmap OpenStreetMap, the free Wiki world map 3 years done - 10 to go? English en 20071229T214500 20071229T224500 01H00M00S

OpenStreetMap, the free Wiki world map- 3 years done - 10 to go?

The OpenStreetMap project has achieved remarkable successes in creating a free world map, and is growing fast. This talk gives an overview of what we do, why we do it, and what our data can be used for. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2286.en.html Saal 3 Frederik Ramm PUBLISH 2166@24C3@pentabarf.org 2166 embedded_devices_reverse_engineering Reverse Engineering of Embedded Devices English en 20071229T203000 20071229T213000 01H00M00S

Reverse Engineering of Embedded Devices

The event aims on reverse engineering small boxes you can buy at your local Saturn or Media Market like SOHO Routers. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2166.en.html Saal 3 dash PUBLISH 2358@24C3@pentabarf.org 2358 guerilla_knitting The history of guerilla knitting English en 20071229T140000 20071229T150000 01H00M00S

The history of guerilla knitting

"Guerrilla knitting" has a couple of meanings in the knitting community - to some, it merely means knitting in public, while to others, it means creating public art by knitted means. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2358.en.html Saal 1 Rose White PUBLISH 2293@24C3@pentabarf.org 2293 what_can_we_do_to_counter_the_spies What can we do to counter the spies? English en 20071229T113000 20071229T123000 01H00M00S

What can we do to counter the spies?

A presentation about the role of intelligence agencies in the current era of the unending “war on terror”, how they monitor us, the implications for our democracies, and what we can do to fight back. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2293.en.html Saal 1 Annie Machon PUBLISH 2213@24C3@pentabarf.org 2213 getting_things_done Getting Things Done Der Antiverpeil-Talk German de 20071229T160000 20071229T170000 01H00M00S

Getting Things Done- Der Antiverpeil-Talk

Eine Einführung ins Antiverpeilen mit Tools und Techniken rund um David Allens "Getting Things Done"-Methodik. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2213.en.html Saal 3 Stephan Schmieder PUBLISH 2270@24C3@pentabarf.org 2270 sputnik_data_analysis Analysis of Sputnik Data from 23C3 Attempts to regenerate lost sequences English en 20071229T160000 20071229T170000 01H00M00S

Analysis of Sputnik Data from 23C3- Attempts to regenerate lost sequences

In December 2006, in BCC 1000 attendees were wearing Sputnik Tags. Data was stored, and then made available for analysis. Unfortunately, all IDs of tags were lost. This lecture presents what was stored, what happened to it, and attempts of reconstructing IDs and sequences of movements. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2270.en.html Saal 2 Tomasz Rybak PUBLISH 2387@24C3@pentabarf.org 2387 open_source_lobbying Open Source Lobbying, tips from the trenches From one angry e-mail to writing national policy on open source English en 20071229T214500 20071229T224500 01H00M00S

Open Source Lobbying, tips from the trenches- From one angry e-mail to writing national policy on open source

On January 1st, 2002 I tried to use the website of the Dutch national railway (www.ns.nl) using Linux. The site refused me access, it was IE-only. This sparked a conversation with members of parliament about the need for open standards. Over a five year period I progressed from talking to opposition-MP's to meeting the economics minister directly and was able to significantly influence national policy despite total lack of funding or any specific mandate. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2387.en.html Saal 2 Arjen Kamphuis PUBLISH 2400@24C3@pentabarf.org 2400 camp_film Chaos Communication Camp '07: The Movie English en 20071229T230000 20071230T000000 01H00M00S

Chaos Communication Camp '07: The Movie

The Chaos Communication Camp 2007 was an international, five-day open-air event for hackers and associated life-forms... let's see what the documentation team made out of it. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2400.en.html Saal 3 Kirian Scheuplein fh Julia Lüning PUBLISH 2334@24C3@pentabarf.org 2334 die_wahrheit_und_was_wirklich_passierte Die Wahrheit und was wirklich passierte Jede Geschichte hat vier Seiten. German de 20071229T160000 20071229T170000 01H00M00S

Die Wahrheit und was wirklich passierte- Jede Geschichte hat vier Seiten.

Jede Geschichte hat vier Seiten. Deine Seite, Ihre Seite, die Wahrheit und das, was wirklich passiert ist. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2334.en.html Saal 1 Frank Rieger Ron PUBLISH 2311@24C3@pentabarf.org 2311 hacking_ideologies_2 Hacking ideologies, part 2: Open Source, a capitalist movement Free Software, Free Drugs and an ethics of death English en 20071229T124500 20071229T134500 01H00M00S

Hacking ideologies, part 2: Open Source, a capitalist movement- Free Software, Free Drugs and an ethics of death

The Open Source initiative re-interpreted Free Software to include it into the neo-liberal ideology and the capitalist economy - whose aims are contrary to the FS starting axioms/freedoms. This platform will focus on ideological and political aspects of this. It will also suggest FS recovery strategies. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2311.en.html Saal 1 Toni Prug Marcell Mars Tomislav Medak Dmytri Kleiner PUBLISH 2272@24C3@pentabarf.org 2272 hacking_in_the_age_of_declining_everything Hacking in the age of declining everything What can we do when everything we thought turns out to be wrong English en 20071229T183000 20071229T193000 01H00M00S

Hacking in the age of declining everything- What can we do when everything we thought turns out to be wrong

It is thought by many that the world may be facing Peaks in fossil fuel production and catastrophic climate change. These huge problems put into question the Industrial Civilisation and call for, at the very least, massive changes to society if humanity is to survive. Do hackers have a role to play in a post transition society? What sort of things should hackers know and prepare for in such a future? PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2272.en.html Saal 2 Emerson PUBLISH 2289@24C3@pentabarf.org 2289 card_payment Relay attacks on card payment: vulnerabilities and defences Keeping your enemies close English en 20071229T183000 20071229T193000 01H00M00S

Relay attacks on card payment: vulnerabilities and defences- Keeping your enemies close

Relay attacks allow criminals to use credit or debit cards for fraudulent transactions, completely bypassing protections in today's electronic payment systems. This talk will show how using easily available electronics, it is possible to carry out such attacks. Also, we will describe techniques for improving payment systems, developed by Saar Drimer and me, in order to close this vulnerability. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2289.en.html Saal 1 Steven J. Murdoch PUBLISH 2325@24C3@pentabarf.org 2325 current_events_in_tor_development Current events in Tor development English en 20071229T171500 20071229T181500 01H00M00S

Current events in Tor development

Come talk with Roger Dingledine, Tor project leader, about some of the challenges in the anonymity world. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2325.en.html Saal 2 Roger Dingledine PUBLISH 2256@24C3@pentabarf.org 2256 openser_sip_server OpenSER SIP Server VoIP-Systeme mit OpenSER German de 20071229T140000 20071229T150000 01H00M00S

OpenSER SIP Server- VoIP-Systeme mit OpenSER

Der Vortrag stellt OpenSER und das Open Source Projekt dahinter vor. OpenSER ist ein flexiber und leistungsfähiger SIP Server, mit dem alle Arten von Voice over IP Infrastrukturen realisiert werden können. Er ist sowohl im DSL Router als Telefonanlage für die Wohngemeinschaft als auch von Carriern mit mehreren Millionen Kunden einsetzbar. Anhand dieser Beispiele werden einige gebräuchliche Einsatzszenarien aufgezeigt. Dafür ist es notwendig, kurz auf die Konfiguration, die Anbindung an Datenbanken und die wichtigsten Module einzugehen. Abschließend wird anhand des aktuellen Release 1.3 und der Roadmap die weitere Entwicklung des Projektes vorgestellt. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2256.en.html Saal 3 Henning Westerholt PUBLISH 2360@24C3@pentabarf.org 2360 all_tomorrows All Tomorrow's Condensation A steampunk puppet extravaganza by monochrom and friends English en 20071229T203000 20071229T213000 01H00M00S

All Tomorrow's Condensation- A steampunk puppet extravaganza by monochrom and friends

A steampunk theatre play extravaganza. With puppets! PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2360.en.html Saal 1 Johannes Grenzfurthner PUBLISH 2352@24C3@pentabarf.org 2352 hacker_jeopardy Hacker Jeopardy Die ultimative Hacker-Quizshow German de 20071229T230000 20071230T000000 01H00M00S

Hacker Jeopardy- Die ultimative Hacker-Quizshow

Das bekannte Quizformat - aber natürlich mit Themen, die man im Fernsehen nie zu sehen bekäme. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2352.en.html Saal 1 Ray Stefan 'Sec' Zehl PUBLISH 2367@24C3@pentabarf.org 2367 closing_event Closing Event English en 20071230T214500 20071230T224500 01H00M00S

Closing Event

PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2367.en.html Saal 1 Tim Pritlove PUBLISH 2336@24C3@pentabarf.org 2336 security_nightmares Security Nightmares 2008 Oder: worüber wir nächstes Jahr lachen werden German de 20071230T203000 20071230T213000 01H00M00S

Security Nightmares 2008- Oder: worüber wir nächstes Jahr lachen werden

Security Nightmares - der jährliche Rückblick auf die IT-Sicherheit und der Security-Glaskugelblick für's nächste Jahr. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2336.en.html Saal 1 Ron Frank Rieger PUBLISH 2345@24C3@pentabarf.org 2345 gplv3_auswirkungen GPLv3 - Praktische Auswirkungen German de 20071230T113000 20071230T123000 01H00M00S

GPLv3 - Praktische Auswirkungen

Was der Umstieg auf die GPLv3 an Neuerungen mit sich bringt, welche Fehler beim Wechsel vermieden werden können und an welchen Stellen rechtliche Fragestellungen lauern, für deren Klärung technische Überlegungen nicht ausreichen, schildert dieser Vortrag. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2345.en.html Saal 2 Peter Voigt PUBLISH 2280@24C3@pentabarf.org 2280 i_know_who_you_clicked_last_summer I know who you clicked last summer A swiss army knife for automatic social investigation English en 20071230T183000 20071230T193000 01H00M00S

I know who you clicked last summer- A swiss army knife for automatic social investigation

This talk introduces some techniques of social network analysis and graph theory. It aims at using simple approaches for getting interesting facts about networks. I will use the data of a popular community to demonstrate some of the techniques. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2280.en.html Saal 2 Svenja Schröder PUBLISH 2290@24C3@pentabarf.org 2290 overtaking_proprietary_software Overtaking Proprietary Software Without Writing Code "a few rough insights on sharpening free software" English en 20071230T124500 20071230T134500 01H00M00S

Overtaking Proprietary Software Without Writing Code - "a few rough insights on sharpening free software"

Free or "Open-Source" software, and in particular Linux, is doing extremely well technically. However, it fails to secure a significant portion of the protected, lucrative software market, especially for end-users. Can Free Software finally make a full entry into our society? The main obstacles to overcoming the domination of proprietary software, most of them non-technical, require thinking outside of code-writing. "Overtaking Proprietary Software Without Writing Code" will relate experience gained from the activities of the GNU/Linux Matters non-profit, and provide some hands-on advice for community members, taking a handful of relevant examples. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2290.en.html Saal 3 Olivier Cleynen PUBLISH 2253@24C3@pentabarf.org 2253 dining_cryptographers Dining Cryptographers, The Protocol Even slower than Tor and JAP together! English en 20071230T140000 20071230T150000 01H00M00S

Dining Cryptographers, The Protocol- Even slower than Tor and JAP together!

Imi gives an introduction into the idea behind DC networks, how and why they work. With demonstration! PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2253.en.html Saal 3 Immanuel Scholz PUBLISH 2209@24C3@pentabarf.org 2209 playstation_portable_cracking Playstation Portable Cracking How In The End We Got It All! English en 20071230T171500 20071230T181500 01H00M00S

Playstation Portable Cracking- How In The End We Got It All!

The Sony PSP is over 3 years old yet barely a day has gone by without some part of it getting attacked. This lecture will go through how hacker ingenuity and systematic failures in Sony's hardware, software and business practices ended up completely destroying the hand held's security including some previously unreleased information about how it was achieved. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2209.en.html Saal 1 TyRaNiD PUBLISH 2364@24C3@pentabarf.org 2364 smartcard_protocol_sniffing Smartcard protocol sniffing English en 20071230T124500 20071230T134500 01H00M00S

Smartcard protocol sniffing

This talk will introduce you to the theoretical and practical issues involved in cloning/simulating existing smartcards. It is based on the lessons learned from cloning the Postcard (swiss debit card) issued by PostFinance. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2364.en.html Saal 2 Marc-André Beck Bernd R. Fix PUBLISH 2212@24C3@pentabarf.org 2212 unusual_web_bugs Unusual Web Bugs A Web Hacker's Bag O' Tricks English en 20071230T171500 20071230T181500 01H00M00S

Unusual Web Bugs- A Web Hacker's Bag O' Tricks

While many issues in web apps have been documented, and are fairly well known, I would like to shine some light on mostly unknown issues, and present some new techniques for exploiting previously unexploitable bugs. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2212.en.html Saal 2 kuza55 PUBLISH 2228@24C3@pentabarf.org 2228 lieber_cyborg_als_goettin Lieber Cyborg als Göttin Politischer Hacktivismus und Cyborgfeminismus German de 20071230T160000 20071230T170000 01H00M00S

Lieber Cyborg als Göttin- Politischer Hacktivismus und Cyborgfeminismus

Das Cyborgmanifest verbindet die Analyse der heutigen Gesellschaft als "Informatik der Herrschaft" mit dem Aufruf von politischem, kreativem Umgang mit Technik, der Möglichkeit des Angreifens von Machtstrukturen und mit der Überwindung der starren Grenzen zwischen den Geschlechtern. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2228.en.html Saal 3 Cyworg PUBLISH 2252@24C3@pentabarf.org 2252 ruby_on_rails_security Ruby on Rails Security English en 20071230T140000 20071230T150000 01H00M00S

Ruby on Rails Security

This talk will focus on the security of the Ruby on Rails Web Framework. Some dos and don’ts will be presented along with security Best Practices for common attacks like session fixation, XSS, SQL injection, and deployment weaknesses. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2252.en.html Saal 2 Jonathan Weiss PUBLISH 2235@24C3@pentabarf.org 2235 one_token_to_rule_them_all One Token to Rule Them All Post-Exploitation Fun in Windows Environments English en 20071230T160000 20071230T170000 01H00M00S

One Token to Rule Them All- Post-Exploitation Fun in Windows Environments

The defense techniques employed by large software manufacturers are getting better. This is particularly true of Microsoft who have improved the security of the software they make tremendously since their Trustworthy Computing initiative. Gone are the days of being able to penetrate any Microsoft system by firing off the RPC-DCOM exploit. The consequence of this is that post-exploitation has become increasingly important in order to "squeeze all the juice" out of every compromised system. Windows access tokens are integral to Microsoft's concept of single sign-on in an active directory environment. Compromising a system that has privileged tokens can allow for both local and domain privilege escalation. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2235.en.html Saal 1 Luke Jennings PUBLISH 2158@24C3@pentabarf.org 2158 the_arctic_cold_war The Arctic Cold War The silent battle for claiming and controlling the Arctic English en 20071230T124500 20071230T134500 01H00M00S

The Arctic Cold War- The silent battle for claiming and controlling the Arctic

Russia, Canada, the United States and Denmark are each pushing for more control and access to the resources of the Arctic. In the balance hangs the future of an entire ecosystem and our planet. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2158.en.html Saal 1 Bicyclemark PUBLISH 2396@24C3@pentabarf.org 2396 eu_rfid_policy EU Policy on RFID & Privacy Developments 2007, Outlook 2008 English en 20071230T160000 20071230T170000 01H00M00S

EU Policy on RFID & Privacy- Developments 2007, Outlook 2008

Following the public consultation on Radio Frequency Identification (RFID) carried out in 2006 the European Commission set up an RFID Expert Group in July 2007, focussing on Privacy and Security. One of the groups tasks is to provide advice to the Commission on the content of a Recommendation to the member states, which shall set out the principles that public authorities and other stakeholders should apply in respect of RFID usage. European Digital Rights (EDRi) participates in this task as a member of the Expert Group. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2396.en.html Saal 2 Andreas Krisch PUBLISH 2250@24C3@pentabarf.org 2250 abschlussbericht_fem FeM-Streaming und Encoding Abschlussbericht German de 20071230T203000 20071230T213000 01H00M00S

FeM-Streaming und Encoding- Abschlussbericht

Das Streaming-Team der FeM e.V. möchte zum Abschluss des 24C3 einen Überblick über die Streaming-Aktivitäten geben, ein paar Statistiken jonglieren und sonstige (Un-)Auffälligkeiten und Stories berichten. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2250.en.html Saal 2 Felix von Leitner Sway PUBLISH 2332@24C3@pentabarf.org 2332 no_ooxml <NO>OOXML - A 12 euros campaign Against Microsoft Office's broken standard English en 20071230T113000 20071230T123000 01H00M00S

<NO>OOXML - A 12 euros campaign- Against Microsoft Office's broken standard

Microsoft is currently trying to buy an ISO stamp for their flawed Office OpenXML (OOXML) specification. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2332.en.html Saal 3 Benjamin Henrion PUBLISH 2402@24C3@pentabarf.org 2402 lightning_talks_2007_day_4 Lightning Talks Day 4 English en 20071230T171500 20071230T193000 02H15M00S

Lightning Talks Day 4

PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2402.en.html Saal 3 Hannes PUBLISH 2296@24C3@pentabarf.org 2296 random_things A collection of random things Look what I found under the carpet English en 20071230T140000 20071230T150000 01H00M00S

A collection of random things- Look what I found under the carpet

This talk will be similar to my unusual bugs talk last year. I'll present a couple of completely unrelated somewhat interesting and unusual things. Hence, a random collection of them. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2296.en.html Saal 1 Ilja PUBLISH 2354@24C3@pentabarf.org 2354 latest_trends_in_oracle_security Latest trends in Oracle Security English en 20071230T183000 20071230T193000 01H00M00S

Latest trends in Oracle Security

Oracle databases are the leading databases in companies and organizations. In the last 3 years Oracle invested a lot of time and engery to make the databases more secure, adding new features ... but even 2007 most databases are easy to hack. PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2354.en.html Saal 1 Alexander Kornbrust PUBLISH 2331@24C3@pentabarf.org 2331 spotter_guide_to_aacs_keys A Spotter's Guide to AACS Keys English en 20071230T113000 20071230T123000 01H00M00S

A Spotter's Guide to AACS Keys

AACS is the DRM system used on HD-DVD and Blu-Ray discs. It is one of the most sophisticated DRM deployments to date. It includes around twelve different kinds of keys (in fact, even counting the different kinds of keys is non-trivial), three optional watermarking schemes, and four revocation mechanisms (for keys, hardware, players, and certain disc images). PUBLIC CONFIRMED Lecture http://events.ccc.de/congress/2007/Fahrplan/events/2331.en.html Saal 1 Peter Eckersley