Q&A: 20 Minutes With The Dark Tangent
DEF CON founder Jeff Moss on this year's DEF CON 23 hacker conference and the Internet of Things.
August 8, 2015
DEF CON 23 -- Las Vegas -- Jeff Moss, aka The Dark Tangent, sat down with Dark Reading here yesterday for a quick chat about DEF CON 23 and IoT:
Q: What’s different about DEF CON this year?
Moss: It's just more of everything. Nothing is slowing down [hacking-wise] -- there's just more. We tried to capture more of the content, doing recordings in the Villages. What we're doing is knowledge transfer … of privacy, lock pick [and other Villages] recordings online. It might foster more interest for people to come online and watch.
There's also a certain amount of chaos: welcome to DEF CON.
Q: The Internet of Things now has its own village here at DEF CON, like Lockpick Village and Hardware Hacking Village. What are the challenges with getting security flaws fixed in these products?
Moss: When hackers started picking locks, the lock manufacturers got very upset, saying this is the way we've done it forever, and saw us as interlopers in their space, [saying] 'trust us' [to protect consumers]. But hackers would have none of that and [then] there was the first upgrade to physical locks in decades. We made them get better. In the beginning there were threats of lawsuits and other scariness, but now we know it was a new world.
Then medical devices, now with cars: it's following the same trajectory: 'don't tell anybody' … I'm betting this [car hacking research] will force the whole [car] industry to mature a bit. And it's not going to stop: after cars, it will be something else.
If we don’t get the software updating thing right, there will be trouble.
Q: What can or should the federal government's role be in ensuring IoT products are secured?
Moss: There's not much it can do about it. The government is structurally blocked, bureaucratically, etc. It's inflexible and not adaptable.
Now we're down to regulation, which nobody likes. If your [connected] toaster burns down your house, who are you going to sue?
Read more about:
Black Hat NewsAbout the Author
You May Also Like
Unleashing AI to Assess Cyber Security Risk
Nov 12, 2024Securing Tomorrow, Today: How to Navigate Zero Trust
Nov 13, 2024The State of Attack Surface Management (ASM), Featuring Forrester
Nov 15, 2024Applying the Principle of Least Privilege to the Cloud
Nov 18, 2024The Right Way to Use Artificial Intelligence and Machine Learning in Incident Response
Nov 20, 2024