Day two was much better, but also some more overcrowded.
- Andreas Bogk, Rüdiger Weis - Trusted Computing, Eine unendliche Geschichte (cache): Andreas and Rüdiger continue their yearly rant about deveopments in the DRM and TCPA arena
- Joanna Rutkowska - implementation and detection of kernel based backdoors and covert channels in Linux kernels (cache): continues my history of missed good talks on 21C3, only heard about 5 minutes. Is said to have been the most technically advanced session on the whole congress
- Thomas Maus - Sicherheitsanalyse von IT-Großprojekten der öffentlichen Hand (cache): actually, this talk was about an implementation for the german "Gesundheitskarte", which turned out to be heavily flawed. Homebrew protocols, no security, useless cryptography, you name it. Unfortunately, the presenter insisted on having questions during the talk, which made it a bit difficult to follow.
- Adam Laurie, Marcel Holtmann, Martin Herfurt - Bluetooth Hacking (cache): the three talked about problems in the implementation of different parts of the bluetooth stack in mobile phones they found, their communcation problems with the industry and the bluetooth SIG, and how to fuck up pretty decent protocols by substandard implementations
- Joi Ito - State of Emergent Democracy (cache): as I'm not into the blogsphere, all this was quite new to me, and I don't think I can summarize the talk into a few words. Wikipedia has an Article on emergent democracy, though
- Donatella Della Ratta - Freedom of expression in new Arab landscape (cache): a quite interesting talk on the developments in arab media since the introduction of Quatar's Al Jazeera satellite news station
- Barry, Mark Seiden (cache): Barry had a stunning demonstration on how to open most of the common locks with a method called "bumping", in seconds. Mark Seiden held a quite generic talk about physical building security, including lots of war stories from his business practice.
- Dan Kaminsky - Black ops of DNS (cache): Dan Kaminsky held a talk about some novel applications for DNS tunneling, like caching streaming data off DNS resolvers, and a user-mode DNS tunneling software (written in perl with Net::DNS) to forward ssh connections to remote hosts (talk dynamic tcp port forwarding through ssh). Quite nice, but his bouncy presentation style is really nerving after an hour or so...
- Felix von Leitner, Frank Rieger - Fnord-Jahresrückblick (cache): almost one of the classics of the recent congresses. Some info on stuff that wasn't really picked up by the mainstream media
- Ray, Stefan 'Sec' Zehl - Hacker Jeopardy (cache): another one of the regular classics, with all of the usual suspects. Went on until 3h in the morning despite some speeding-up in the end.