lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Thu, 23 May 2013 12:55:37 +0200
From: SEC Consult Vulnerability Lab <research@...-consult.com>
To: <full-disclosure@...ts.grok.org.uk>
Subject: SEC Consult whitepaper :: Blackberry Z10 Research
 Primer - "Dissecting Blackberry 10 - An initial analysis"

SEC Consult Vulnerability Lab released a new whitepaper titled:
Blackberry Z10 Research Primer - "Dissecting Blackberry 10 - An
initial analysis"


Abstract:
---------
In 2013, Blackberry has presented a brand new operating system which 
significantly differs from others presented on the smartphone market.
A very high security level is announced, and the expectations are
corresponding. Some analytics consider this as the last chance for
Blackberry "to get back in the big game" and stand in the row with
such giants as iOS and Android.
The goal of this whitepaper is to show an approach for testing the
new Blackberry 10 operating system and to identify vulnerabilities
on a new Blackberry 10 device.


A set of methods and tools has been developed. In the paper we will:

  * Discuss specifics of the operating system
  * Check for vulnerabilities "by design"
  * Talk about fuzzers
  * Test default utilities
  * Dump the "boot sector"
  * Mention other interesting entry points / notices
  * Propose further steps for future research


Whitepaper URL:
---------------
https://www.sec-consult.com/en/Vulnerability-Lab/Whitepapers.htm

=> Direct link:
https://www.sec-consult.com/fxdata/seccons/prod/downloads/sec_consult_vulnerability_lab_blackberry_z10_initial_analysis_v10.pdf


Author:
-------
Alexander Antukh
SEC Consult Vulnerability Lab



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
SEC Consult Unternehmensberatung GmbH

Office Vienna
Mooslackengasse 17
A-1190 Vienna
Austria

Tel.: +43 / 1 / 890 30 43 - 0
Fax.: +43 / 1 / 890 30 43 - 25
Mail: research at sec-consult dot com
Web: https://www.sec-consult.com
Blog: http://blog.sec-consult.com
Twitter: https://twitter.com/sec_consult

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists