BlackHat slides available and first blogposts

Blackhat was really fast to upload some of their content. You can already get it at http://www.blackhat.com/html/bh-usa-09/bh-usa-09-archives.html.

I have already glanced at lockpick forensics, sniffing keyboards with lasers and Breaking the security myths of Extended Validation SSL Certificates. Some really interesting stuff in there!!

Here are some blogposts fresh of the shelf as well:

• BlackHat 2009 Whitepaper: Attacking Interoperability
• Our Favorite XSS Filters and How to Attack Them
• Deactivate the Rootkit
• Live Blog: BlackHat 2009 Day 1
• HP researchers reveal details of browser based darknet
• SSL under attack (again) #BlackHat

Speeding up MD5 collision hashing on GPUs, breaking EV SSL, or just breaking SSL all together, I see a trend that says that public PKI is completely broken. Oh, wasn't there a study today that said users ignore SSL warnings anyway?

Keep tuned, I'm seeing tweets that Dan Kaminsky is having a go at X.509 as well. #ssl #epicfail??

Related posts:

• How to follow Blackhat/Defcon without being there
• Preparing your laptop (or iPhone) for a security/hacker conference

(Photo under creative commons from Ben+Sam's photostream)