Overview
Dive into an in-depth exploration of Windows 10 IoT Core in this 50-minute Black Hat conference talk by Paul Sabanal. Gain insights into the internals of this operating system designed for small footprint, low-cost IoT devices. Explore its security features, mitigations, and similarities with the desktop edition. Discover the attack surface of devices running Windows 10 IoT Core and their potential vulnerability to malware. Learn methods for assessing device security, including static/dynamic reverse engineering and fuzzing techniques. Understand the OS's role in device management, enterprise-grade security, and cloud-based data analytics when combined with Microsoft's Azure platform. Examine topics such as supported devices, boot processes, apps, Trusted Platform Module, device firmware updates, and various debugging methods. Conclude with recommendations for securing Windows 10 IoT Core devices and participate in a Q&A session to further enhance your understanding of this crucial technology in the evolving IoT landscape.
Syllabus
Introduction
Agenda
Editions
Supported Devices
Internal Workings
Images
Partitions
Boot Process
Apps
Security
Trusted Platform Module
Device Firmware Updates
Attack Surface
Network Services
Windows Device Portal
REST API
Home Tab
Process Tab
TPMS Tab
File Sharing
You Mode Display
Device Driver Vulnerability
Malware
Devices on the Network
Datagram
PowerShell
Windows Apps
DLL
Serial Debugging
User Mode Debugging
Crash Debugging
Fuzzing
Summary
Wrapup
Conclusion
Questions
Taught by
Black Hat