English

Ticket Shop Closes Soon

EN

The online shop for Camp tickets will close at 2011/07/20, two days from now.

If you didn’t buy a ticket yet, you should better go to our online shop now and buy one.

Since we don’t know, how many tickets we’ll still have left after online sales, we can’t promise there will be ticket sales at the door. Probably there will be, but if you want to be sure, better buy your tickets now!

mrmcdX: Call for participation

EN DE

From September, 2nd to September 4th, 2011, the 10th MetaRheinMain ChaosDays (short: mrmcdX) will take place. They are organized by Chaos Darmstadt, Chaos inKL., cccffm, CCC Mainz, CCC Mannheim, as well as oqlt.

The congress is all about hacking (both technical and social aspects) and now being held for the tenth time. The location will be (like in the last few years) the Piloty building of Darmstadt University of Technology (49.877491° N, 8.654536° E). For three days, talks, workshops, discussions and a hackcenter will be offered. Furthermore, you will not need to starve as there’ll be both …

Camp 2011: Rent a Tent – Last Orders

EN

You’d like to rent a big tent, chairs, and tables for the Camp and did not tell us yet? Then you need to hurry up. We accept orders from you only until June 9th, and that’s tomorrow. For more details see the Rent a Tent page in the wiki.

Camp 2011: Ticket Shop Opened

EN

We’re selling tickets for the Camp now. For more information, please read the Tickets page in our wiki.

Although the advance sale will be available until July 20th 2011, please order your tickets early. That helps us, because it tells us something about the number of participants and thus enables us to scale infrastructure to your needs.

May 7th: Camp 2011 – Field Day

EN

We invite everybody to join us for a public visit to the location of the Chaos Communication Camp 2011 at Luftfahrtmuseum Finowfurt 1. Everybody who wants to do a project, put up a really big tent, build a village or do anything special in one way or the other should come.

The visit takes places at Saturday, May 7th, 2011 at 14:00h CEST. We will spend around two to three hours at the site depending on interest. Be careful to be on time as we won’t explain things twice.

If you plan to come, please drop your name in the wiki [2]. There you will also find driving instructions, aerial photographs …

Camp 2011 Needs Your Help

EN

Preparations for this year’s Chaos Communication Camp have started.

If you don’t know about the Camp in general have a look at the 2007, 2003, and 1999 web sites. You should also watch these great videos in order to get a first impression: Camp 2007 and Camp 2003

Actually, we’ve been working on Chaos Communication Camp 2011 – Project Flow Control – for quite some time, but finally there is a web site now. Since we’re a bit late already, we really need your support.

First and foremost we need your help in distributing the Call for Participation and the Call for a Space Program of the Hacker …

Camp 2011 will happen

EN

After receiving some concerned inquiries we want to state again:

Yes, the Chaos Communication Camp 2011 will take place. It will be from August 10th thru August 14th 2011 in Finowfurt near Berlin. There will be enough tickets for everybody. You may start your travel preparations by booking flights, applying for visas, charging your transcontinental teleporter’s capacitors, etc. We will be there.

Crypto Talk at 27C3: New Key Recovery Attacks on RC4/WEP, Day 4, 17:15, Saal 2

EN

The RC4 Stream Cipher could be the most common stream cipher used on the Internet. RC4 is the only Stream Cipher which is standardized for the SSL/TLS protocol, it is also used for WEP and WPA protected wireless networks. Initially, RC4 was designed to be a closed source commercial product, with the core algorithm kept secret. In 1994, the source code for RC4 was posted on the internet and the algorithm could be analyzed.

The first attack on RC4 was published by Fluhrer, Mantin, and Shamir in 2001. The attack is very effective, but can only be used against certain keys starting with a special …

Crypto Talk at 27C3: FrozenCache – Mitigating cold-boot attacks for Full-Disk-Encryption software, Day 3, 23:00, Saal 2

EN

Cold BootsAs a general attack against encryption software on a computer, the cold boot attack was presented at 25C3. To encrypt data on a PC, many programs store the encryption key in RAM. The key is usually derived from a password or loaded from the hard disk where it is protected by a password too. The key resists as least as long as the encryption operation take in RAM. For many applications like Full-Disk-Encryption or Email Signatures, it is convenient to keep the key permanently in RAM, once it has been loaded, so that the user doesn’t need to enter his password again and again.

To protect the key …

Crypto Talk at 27C3: Is the SSLiverse a safe place? Day 2, 16:00, Saal 2

EN

SSL/TLS is the standard when it comes to securing HTTP traffic on the internet. The authenticity of a web server is usually secured using a X.509 certificate digitally signed by a trusted certification authority (CA). All major web browsers come with a list of CAs preinstalled they assume as trustworthy. Every website can be signed by any of these CAs, so no web browser would show a warning, if www.dod.gov would be signed by a Chinese certification authority or the Deutsche Telekom.

ObservatoryTo examine the usage of X.509 certificates for SSL/TLS, the EFF installed a SSL Observatory:

The SSL …