Description: This talk introduces a new type of attack in web browsers that can be used to extract secret and sensitive information from trusted websites. These timing attacks obtain side-channel information by performing various operations on remote resources. The speaker will demonstrate the harmful consequences by the means of several real-world scenarios against widely popular web services.
Tom Van Goethem(@tomvangoethem)
As a PhD researcher at the University of Leuven, Tom Van Goethem engaged in a (not so secret) love affair with security and privacy on the web. In his work, Tom explores the malpractises of various web-based ecosystems, and tries to demystify security claims, such as those made by security seal providers and cloud-based DDoS protection services. By the means of large-scale evaluations, Tom aims to analyse the current security practises, and estimate how worried we should be about our online security. More recently, his focus has shifted towards exposing side-channel attacks that allow adversaries to circumvent the Same-Origin principles which form the foundations of browser security.
For More Information Please Visit:- http://area41.io/
Tags:
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.