Last week I had the opportunity to be on the Stacey on IoT podcast. I started listening to Stacey and Kevin a few months ago and I was impressed with their industry news coverage. It was fun chatting with Stacey on why an embedded security engineer is an important, but often missing role on design… Read More
This week I was on the Amp Hour podcast! If you like embedded security, crazy stories about life on a submarine, want to hear a teaser on our upcoming CCC talk, or how to make blockchain beef, you should find something in here for you! 😉
Cryptotronix just celebrated its five year anniversary! This all started with the humble hashlet and now we have four employees covering embedded hardware (circuit design/PCB layout/RTL), firmware (MCU/Linux drivers/App development) and of course, security (audit/design/architecture/development).
I’m happy to announce that I’ll be speaking with two amazing colleagues, Dmitry Nedospasov and Thomas Roth, at the 35th Chaos Communication Congress next month in Leipzig, Germany. Our talk, wallet.fail covers the following: In this presentation we will take a look at how to break the most popular cryptocurrency hardware wallets. We will uncover… Read More
I occasionally get asked where one can buy a CryptoCape. It had a good run at SparkFun and its distributors for awhile, but alas, it is retired. However, the project limps on now at OSH Park, where you can order the PCBs!
See you at the Hardware Attacks, Threats, Risks, and Mitigations class at Black Hat 2018! Read More
Recently, Microchip announced a new part, the ATECC608A, which is the latest in their CryptoAuthentication Line. It is a crypto co-processor and a nice improvement over the ATECC508A, as long as you understand its limitations.
I gave a short talk at the Open Source Hardware Summit last week on Digital Ownership and Right to Repair. (Link to slides (pdf) and youtube). It was a different kind of talk for me–I tried to pick a topic, in this case Right to Repair, and unpack it from different angles. As with most… Read More
SparkFun posted a blog post on IoT Security. While posting to a blog isn’t newsworthy (unless it’s the one you are currently reading 🙂 ), I’m very encouraged to see this post at SparkFun. The makers/engineers building projects/products are the front line–a systems security engineer like me is combat support. I had a small excerpt… Read More
Here are my slides from my talk at Portland Bsides: pdf. The fpga repo is here.