Тёмный

Jens Spahns credit score is "very good" 

media.ccc.de
Подписаться 209 тыс.
Просмотров 62 тыс.
50% 1

A case study on how to use security research as a method of direct action.
media.ccc.de/v/camp2023-57571...
In the context of the CCC, we usually do our vulnerability disclosures responsibly. So we ensure that a vulnerability is closed or at least disclosed to the responsible entity for a certain amount of time before discussing it publicly. The practice of responsible disclosure is more than two decades old and has become the gold standard in handling vulnerabilities as a security researcher.
On the other hand, responsible disclosure often also minimizes a vulnerability's impact in public debates and, therefore, is an excellent way to keep everybody safe. Still, it also reduces the usefulness of security research as a method of direct action.
In this talk, I would like to explain based on two examples (the ID-Wallet as well as the Bonify case) in which cases I think the impact of a vulnerability can be maximized by shitposting it on Twitter while keeping everyone - except Jens Spahn and Helge Braun - safe.
Lilith Wittmann
pretalx.c3voc.de/camp2023/tal...
#camp2023 #Milliways

Опубликовано:

 

26 авг 2023

Поделиться:

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист
Посмотреть позже
Комментарии    
Далее
37C3 -  Oh no: KUNO - Gesperrte Girocards entsperren
54:27
37C3 -  Hirne hacken: Hackback Edition
1:01:40
Просмотров 128 тыс.
37C3 -  Heimlich-Manöver
50:57
Просмотров 157 тыс.
37C3 -  Unsere Worte sind unsere Waffen
41:11
Просмотров 45 тыс.
DB Schnüffelnavigator
36:57
Просмотров 85 тыс.