1. HARDWAREMark Wong10th October 2014hacking101www.omgbazinga.com

2. DISCLAIMERWhile the following has been conscientiously researched.Neither the organizers nor the author will accept anyliability if you render your device inoperable as a result ofthese instructions. Proceed at your own risk. DO attemptthese experiments, tests, trials, or any activity in thispresentation at home, work, or anywhere else for thatmatter. Have fun, gain more experience and knowledge,be safe and use common sense! 3. WHAT WE DO 4. WHAT WE DO 5. HAQDLOFU-ALOIKFME 6. 233 MHzPentiumw/ MMX 7. So the learning journey begins 8. 1997Evolution of my RigsSMOOTHERGAMES1999200220042006200820092012Comingsoon2015Pursuit ofNo $? 9. How does hardware affectme?HARDWAREROCKS 10. iB Secure Device tokenUNLOCKS YOURMONEH 11. CoinCellBatteryEpoxied resin IC die Chip-on-board, glob-topButton contactsInfineon BC857BL3PNP transistorAssorted SMDresistorsTest /programmingpadsManufacturerinformationsilkscreen32.768kHz Ceramic Crystal OscillatorLCD junction pads 12. Technical Specifications Weight: 14 grams Dimensions: 9.8 x 25.9 x62.7mm Display: 8-characters LCD Keypad: one-button Real-time clock toprovide time value toDIGIPASS algorithm Supported cryptoalgorithm: DES, 3DES andAES, DIGIPASS time andevent based OATH event (HOTP) ortime (TOTP) Battery: non-replaceable,lifetime expectancy 7yearshttps://www.vasco.com/products/client_products/single_button_digipass/digipass_go6.aspx 13. What have we learnt?OATH - Initiative for OpenAuTHenticationHOTP: An HMAC-Based One-TimePassword Algorithm (RFC 4226)Supports: TOTP -Time-Based One-Time Password Algorithm (RFC6238)Standards set by: InternetEngineering Task Force (IETF)Then HOTP(K,C) is mathematically defined by: HOTP(K,C) = Truncate(HMAC(K,C)) & 0x7FFFFFFFK is a secret key, C is a counter keyFor HOTP to be useful for an individual as a system input, result must be converted into a HOTPvalue, (68 digits number) where HOTP-Value = HOTP(K,C) mod 10d, d is the desired number of digitshttp://en.wikipedia.org/wiki/HMAC-based_One-time_Password_Algorithmhttp://www.sourcemediaconferences.com/CTST09/PDF09/D/Tuesday/BajajSiddharth.pdfhttp://www.globaleventspanama.com/clab2010/files/conf_donald_malloy.pdf 14. Somebody already hacked it!https://http://blog.valverde.me/2014/01/03/reverse-engineering-my-bank%27s-security-token/#.VCIywxbgzgU 15. https://www.youtube.com/watch?v=k87vSrfhof4 16. What can I do with what Ive learnt?The stuff Who makes it? Howdid they do it?Learn everythingabout it, try it.Learn aboutcryptographyLearn aboutlow-costmanufacturingor electronicpackagesMake your owncrypto-keygeneratorBe happyhaving learntsomethinghttp://www.empf.org/empfasis/dec04/improve1204.htmhttp://www.digikey.com/catalog/en/partgroup/avr-cryptocontroller/32031http://www.maximintegrated.com/en/products/digital/microcontrollers/MAXQ1010.html 17. How do IStart? 18. Tools of the tradeScrewdriver. Multi-meter. Pliers. Cutters. 19. What the heck hack isinsideIT? 20. HOW DOES A CARWORK?HOW DOES YOUR EZ-LINKWORK? 21. If you don't know how things work,how can you design interfaces withdreams to change theworld?How do you improve something if youdon't know how it works? 22. Build. Fail.Rebuild.Results.Outcome.Find outHow?Why?Systemdesign /AdoptionHardwareLifecycleSummary3-stage Block diagram 23. Teardowns!!! 24. BOM (Bill of Materials), Datasheets 25. https://www.ifixit.com/Teardown/iPhone+6+Teardown/29213http://www.techinsights.com/teardown.com/apple-iphone-6/ 26. ultra-small (2mm x 2mm) WOW! Tri-axial Measurement ofaccelerations in 3perpendicular axes Senses tilt, motion, shockand vibration- Low power consumptionof 130 A NICE! 27. Dont beafraid to blowthings up 28. Online ResourcesComplexity& AbilityTime 29. 3-stage Block diagramController /Process /DecisionMeasurement/ InputOutcome 30. InputKeyboard Sensor Touch screenProcess ProcessorMicrocontroller SignalconditioningAnalog-to-digitalConverterApplicationsoftware /firmwareOutput LEDs ScreenSoundDesign your system 31. The good Ol days 32. TodaysPlatforms 33. Apollo Guidance Computer (AGC), 196616-bit, 55Watts