![Black Hat Briefings, Japan 2006 [Audio] Presentations from the security conference artwork](https://is1-ssl.mzstatic.com/image/thumb/Podcasts6/v4/a6/ed/05/a6ed0576-c535-eb8b-400e-e9f1d468fe18/mza_9057766614341250487.jpg/100x100bb.jpg)
Heikki Kortti: Input Attack Trees (Japanese)
Black Hat Briefings, Japan 2006 [Audio] Presentations from the security conference
English - June 04, 2006 23:10 - 1 hour - 75 KBTechnology News Tech News blackhat japan 2006 black hat asia blackhat tokyo hacking convention computer security speeches presentations spoken word hacker Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
"By modeling all of the possible inputs of a protocol or file format as an input tree, the potential weak points of an implementation can be
assessed easily and efficiently. Existing attacks can be reused for similar structures and datatypes, and any complex or susceptible areas can be focused on to improve the probability for success. This method is applicable not only for creating new attacks, but also for proactive defense and even protocol design. Some knowledge of network protocols is expected, as are also the basics of security testing and anomaly design. The talk will apply the presented techniques by
presenting an input tree for DNS and cataloguing the potential attacks and problem areas."