Presented at
Black Hat Asia 2018,
March 22, 2018, 11:45 a.m.
(60 minutes).
eMMC & UFS security is one of the critical but mostly overlooked areas in the mobile security today. Being situated in a typical mobile platform architecture on a very low level, eMMC & UFS subsystems provide abilities to control processes from the earliest stages of establishing the chain of trust and then, through the whole mobile platform operation life-cycle. Security mechanisms, implemented in eMMC & UFS, play a very critical role in mobile platforms security architectures. Compromising these security mechanisms leads to compromising of mobile platforms security itself. All these factors make eMMC & UFS subsystems a perfect target for malicious attackers with a potentially huge impact on mobile platforms security and privacy of their users.
Presenters:
-
Oleg Yeskov
- *, *
Oleg Yeskov has over 15 years of professional experience in information security. While studying in a university, Oleg started working as a security specialist for several financial organizations. After graduating, he spent significant time caring about security in one of the biggest banks in Ukraine. Oleg then switched to work remotely on contracts with U.S. and European companies. For 5 years, he worked as a security contractor for Samsung Electronics and Samsung SDS. At the moment, Oleg is busy helping to establish security services business direction for a well-known U.S. company. Also, as a founder, he is in the process of establishing a security startup where he is going to play the role of CEO. The security startup will bring new advanced security tools to the market, while performing R&D, discovering and exploiting new attack vectors, 0-days, etc.
-
Vadym Kolisnichenko
- *, *
Vadym Kolisnichenko has nearly 5 years of professional experience in information security. Vadym started working as a security intern while studying in a university. He spend 4 years working as a security engineer for Samsung SDS and Samsung Electronics doing penetration tests for their infrastructures, performing complex security audits & researches for mobile platforms (Samsung KNOX, Tizen, various TrustZone implementations, etc.) and web applications. At the moment, Vadim is busy helping to establish security services and business direction for a well-known U.S. company. Also, as a co-founder, he is in the process of establishing a security startup where he is going to play the role of CTO.
Links:
Similar Presentations: