Marius Münch

Research Scholar UC Santa Barbara

BIOGRAPHY

Marius Münch (*1990) is interested in hacking and its sub-cultures ince his high-school days. He studied and learned beyond the basics on his own and, after his Bachelor’s degree in Telematics (FH Wildau, Germany), he decided to take his interest to the next academic level.
Besides his freshly gained Master of Science in Telematics from the Norwegian University of Science and Technology (NTNU, Norway), he accomplished internships at top-level research facilities, such as the NASA Goddard Space Flight Center (USA) and the Computer Security Laboratory of the University of California in Santa Barbara (USA).
His main research interest lies in aerospace communications and the accompanying security problems.
In his free time, he enjoys playing the guitar and is also a passionate CTF player.

Presentation: CubeSats – A fairy tale; How academia got the chance to implement satellite (in-)security and how I tried to fix it.

CubeSats are tiny satellites; often no more than double the size of a Rubik’s cube. The specification for such nano satellites was elaborated in 1999 by the Polytechnic State University (USA). Its main goal was to reduce the costs of a satellite operation and hence enable students to carry out space missions. Since its inception over 100 CubeSats were sent into space, built by universities, amateur radio operators and companies.
This talk will focus on the security aspects regarding CubeSats, especially in the context of low-budget missions. The author will talk about his insights which he obtained from working one year in an academic CubeSat project named NTNU Test Satellite (NUTS).

Many solutions used in traditional satellite engineering cannot be transferred into the CubeSat environment. Therefore some interesting problems come to light such as “the presence of persistent memory cannot easily be assumed” or “we cannot encrypt our up- and downlink data”.

In the second part of the talk, the author discusses how he developed one possible security solution for those satellite missions. The proposed technique tries to work around the problems of space communication in a smart way. He demonstrates the justified usage of a normally flawed cryptographic protocol to improve the security of satellite communication. A brief introduction to the formal verification of cryptographic protocols will be given. Furthermore, it will be shown that the term authentication can have several meanings in this context.

In the last part of the talk, the author reflects about the lessons-learnt from the CubeSat project and how they can be transferred into a more general context. This will cover – amongst others – some controversy statements, including for instance as to why we should make more usage of formal verification; why a broken hash function like MD5 is still applicable in some contexts; and why the presented solution will never leave the development phase.

Are you the next cyber security superstar?

If you are passionate about an information security topic or you have strong technical skills developing researches on your own, you should definitely Apply at Call for Papers. By submitting you will have the chance to showcase your work to +2000 attendees.

Other speakers joining this year

Catalin Cosoi

Chief Security Strategist Bitdefender

Laurent Chrzanovski

PhD Co-Director University Lyon II Lumière

Dragos Comaneci

Application Protocol Engineer at BreakingPoint Systems Ixia

Ready for this year's presentations?

By registering you will unlock access to 60+ speakers and two full days with cyber security news & showcases from worldwide leaders.

0
SPEAKERS
0
COUNTRIES
0
ATTENDEES
0
HACKING
COMPETITIONS
0
COMPANIES

Sponsors & Partners

They help us make this conference possible.

POWERED BY

As an infrastructure operator, technology integrator and IT&C services provider, Orange Business Services supports businesses and public entities in their digital transformation. Collect, transport, protect, store and process and analyze: they orchestrate every phase of the data journey, for your business to create even more value.

WWW.ORANGE.RO

PLATINUM PARTNERS

Ixia provides testing, visibility, security solutions, network testing tools and virtual network security solutions to strengthen applications across physical and virtual networks.

WWW.IXIACOM.COM

Secureworks provides threat intelligence-driven security solutions for organizations to prevent, detect, rapidly respond and predict cyberattacks.

WWW.SECUREWORKS.COM

GOLD PARTNERS
SILVER PARTNERS
GAMING PARTNERS
VIP & SPEAKER LOUNGE PARTNER
BRONZE PARTNERS
COMMUNITY & MEDIA PARTNERS