Security Analysis and Practical Attacks of LPWAN

Explore the security landscape of Low-Power Wide-Area Networks (LPWAN) in this comprehensive conference talk from Hack In The Box Security Conference. Delve into the rapid development of IoT technology, focusing on the two most mainstream LPWAN technologies: LoRaWAN and NB-IoT. Examine the complex LPWAN supply chain and its security implications. Learn about recent security research findings, with a particular emphasis on LoRaWAN specifications and keys, as well as the less-studied NB-IoT. Gain insights into the practical security analysis of LPWAN modules and chips, including the architecture of LoRaWAN and NB-IoT modules from a supply chain perspective. Discover potential attack surfaces for both technologies in real-world scenarios. Understand the process of identifying and testing vulnerabilities in LPWAN modules, and explore the multiple security risks (LoRaDawn) found in the LoRaWAN supply chain. Benefit from the expertise of senior security researchers Yuxiang Li and Wu HuiYu as they share their findings and recommendations to improve LPWAN supply chain security.