Travis Goodspeed - PhD student, university of Pensylvannia Digital Security
Date: - Location: Eurecom
This lecture presents Packets-in-Packet Injections, a new attack technique for remotely injecting PHY-Layer packets given control of strings within any upper layer. These exploits function because of natural interference and packet collisions, requiring no software or hardware bugs for exploitation. Concrete examples will be provided for 802.15.4 and 2FSK in the form of strings which, when transmitted through those protocols, *become* packets, with their payloads injected as raw frames. Additionally, recent work on the porting of this attack technique to 802.11B will be previewed, with emphasis on complications introduced by the protocol's complicated and changing PHY.