Month: September 2020

Security This Week: Racoons In My TLS, Bypassing Frontends, And Obscurity

September 11, 2020 by 7 Comments

Raccoon is the next flashy security flaw with a name, cute logo, and a website (and a PDF). Raccoon is a flaw in TLS version prior to 1.3, and seems to be a clever bit of work, albeit one with limited real-world application. The central problem is that these older versions of TLS, when using Diffie Hellman (DH), drop leading all-zero bytes in the resulting pre-master key. As that key is part of the input for calculating the master session key, a shortened pre-master key results in a slightly faster calculation of the master key. If an attacker can make fine-grained timing measurements, he can determine when the pre-master key is trimmed.

Let’s review Diffie Hellman, briefly. The client and server agree on two numeric values, a base g and modulus p, and each party generates a secret key, a and b. Each party calculates a public key by raising the shared base to their own private key, mod the shared modulus: A = g^a mod p. These public keys are exchanged, and each party raises the received key to their own secret key: A^b. Exponents have a non-obvious quirk, the power rule. A value raised to a power raised to a power is the same as the value raised to the power of the exponents multiplied together. g^a^b is equal to g^(a*b). By going through this mathematical dance, the server and client have arrived at a shared value that only they know, while preserving the secrecy of their private keys. Continue reading “Security This Week: Racoons In My TLS, Bypassing Frontends, And Obscurity”

A Deep Dive Into The Sterzo Steering Plate

September 11, 2020 by 15 Comments

Pedaling in place isn’t the most exciting pastime, so it’s no surprise that modern technology is being used to make the in-home biking experience a bit more interactive. With a stand on the rear wheel providing resistance, and a movable steering plate under the front to read the handlebar angle, you can now use your standard bike as the “controller” in a virtual environment provided by software such as Zwift.

Paving the way towards a DIY Sterzo clone

[Keith Wakeham] wanted to take a closer look at how Zwift communicated with his Sterzo steering device, and it turned into a pretty epic bout of exploration and reverse engineering. As the video after the break shows, he didn’t just go from sniffing the device’s proprietary Bluetooth Low Energy (BLE) communications protocol to figuring out how to emulate it in software so you could roll your own Zwift peripheral. He also tore the device apart, pulled the firmware from its microcontroller, and postulated how you could build your own low-cost clone device that would work with the existing software.

Even if you have absolutely zero interest in virtual biking, the video [Keith] has put together for this project is really a must watch. Have you ever wanted to sniff and reverse engineer BLE communications? Looking for a real-world example of pulling the firmware off of a consumer device? Maybe in the market for some tips on how to identify unknown ICs on a board? All of that, and quite a bit more, is covered in this nearly hour long hacking tour de force.

On the other hand, if you are interested in adding your own hardware to Zwift, then this look at getting an unsupported stationary bike working with it should be useful.

Continue reading “A Deep Dive Into The Sterzo Steering Plate”

Game Boy Plays Forever

September 11, 2020 by 14 Comments

For those of us old enough to experience it first hand, the original Game Boy was pretty incredible, but did have one major downside: battery consumption. In the 90s rechargeable batteries weren’t common, which led to most of us playing our handhelds beside power outlets. Some modern takes on the classic Game Boy address these concerns with modern hardware, but this group from the Delft University of Technology and Northwestern has created a Game Boy clone that doesn’t need any batteries at all, even though it can play games indefinitely.

This build was a proof-of-concept for something called “intermittent computing” which allows a computer to remain in a state of processing limbo until it gets enough energy to perform the next computation. The Game Boy clone, fully compatible with the original Game Boy hardware, is equipped with many tiny solar panels which can harvest energy and is able to halt itself and store its state in nonvolatile memory if it detects that there isn’t enough energy available to continue. This means that Super Mario Land isn’t exactly playable, but other games that aren’t as action-packed can be enjoyed with very little impact in gameplay.

The researchers note that it’ll be a long time before their energy-aware platform becomes commonplace in devices and replaces batteries, but they do think that internet-connected devices that don’t need to be constantly running or powered up would be a good start. There are already some low-powered options available that can keep their displays active when everything else is off, so hopefully we will see even more energy-efficient options in the near future.

Thanks to [Sascho] for the tip!

Continue reading “Game Boy Plays Forever”

Arduino Takes Control Of Dead Business Card Cutter

September 10, 2020 by 13 Comments

It’s a common enough situation, that when an older piece of equipment dies, and nobody wants to spend the money to repair it. Why fix the old one, when the newer version with all the latest bells and whistles isn’t much more expensive? We all understand the decision from a business standpoint, but as hackers, it always feels a bit wrong.

Which is exactly why [tommycoolman] decided to rebuild the office’s recently deceased Duplo CC-330 heavy duty business card cutter. It sounds like nobody really knows what happened to the machine in the first place, but since the majority of the internals were cooked, some kind of power surge seems likely. Whatever the reason, almost none of the original electronics were reused. From the buttons on the front panel to the motor drivers, everything has been implemented from scratch.

An Arduino Mega 2560 clone is used to control four TB6600 stepper motor drivers, with a common OLED display module installed where the original display went. The keypad next to the screen has been replaced with 10 arcade-style buttons soldered to a scrap of perfboard, though in the end [tommycoolman] covers them with a very professional looking printed vinyl sheet. There’s also a 24 V power supply onboard, with the expected assortment of step up and step down converters necessary to feed the various electronics their intended voltages.

In the end, [tommycoolman] estimates it took about $200 and 30 hours of work to get the card cutter up and running again. The argument could be made that the value of his time needs to be factored into the repair bill as well, but even still, it sounds like a bargain to us; these machines have a four-figure price tag on them when new.

Stories like this one are important reminders of the all wondrous things you can find hiding in the trash. Any time a machine like this can be rescued from the junkyard, it’s an accomplishment worthy of praise in our book.

ISS Ham Radio Repeater

September 10, 2020 by 28 Comments

There is a long history of spacecraft carrying ham radio gear, as the Space Shuttle, Mir, and the ISS have all had hams aboard with gear capable of talking to the Earth. However, this month, the ISS started operating an FM repeater that isn’t too dissimilar from a terrestrial repeater. You can see [TechMinds] video on the repeater, below.

The repeater has a 2 meter uplink and a 70 centimeter downlink. While you can use a garden variety dual-band ham transceiver to use the repeater, you’ll probably need a special antenna along with special operating techniques.

Continue reading “ISS Ham Radio Repeater”

Reverse Engineering A Module From A Vacuum Tube Computer

September 10, 2020 by 32 Comments

It’s best to admit upfront that vacuum tubes can be baffling to some of the younger generation of engineers. Yes, we get how electron flow from cathode to anode can be controlled with a grid, and how that can be used to amplify and control current. But there are still some things that just don’t always to click when looking at a schematic for a tube circuit. Maybe we just grew up at the wrong time.

Someone who’s clearly not old enough to have ridden the first wave of electronics but still seems to have mastered the concepts of thermionic emission is [Usagi Electric], who has been doing some great work on reverse engineering modules from old vacuum tube computers. The video below focuses on a two-tube pluggable module from an IBM 650, a machine that dates clear back to 1954. The eBay find was nothing more than two tube sockets and a pair of resistors joined to a plug by a hoop of metal. With almost nothing to go on, [Usagi] was still able to figure out what tubes would have gone in the sockets — the nine-pin socket was a big clue — and determine that the module was likely a dual NAND gate. To test his theory, [Usagi] took some liberties with the original voltages used by IBM and built a breakout PCB. It’s an interesting mix of technologies, but he was able to walk through the truth table and confirm that his module is a dual NAND gate.

The video is a bit long but it’s chock full of tidbits that really help clear up how tubes work. Along with some help from this article about how triodes work, this will put you on the path to thermionic enlightenment.

Continue reading “Reverse Engineering A Module From A Vacuum Tube Computer”

Surfboard LED Strips Light Up The Waves

September 10, 2020 by 10 Comments

Surfing is an activity predominantly enjoyed during the day, primarily for reasons of warmth and water safety. Of course, if you prefer to carve the waves at night, you might enjoy the latest project from [Moritz Sivers] – a surfboard kitted out with motion-reactive LEDs.

The build consists of a regular surfboard, with a channel cut around the perimeter into which WS2812B LED strips are glued. Powered by a lithium rechargable battery, commands are given by an Arduino Nano hooked up to a MPU6050 3-axis gyroscope. This allows the Arduino to change the light patterns based on the movement of the board. Left and right turns, pumping the board, and surfing down a wave all come with their own animations.

It’s a fun twist on night surfing, and makes it easier to spot a downed surfer, too. It’s a build we expect to see recreated in a high-end 4K surf film before the year is out. Of course, if you just need to know if the conditions are right before you head out, this surf weather station might be just the build for you. Video after the break. Continue reading “Surfboard LED Strips Light Up The Waves”