Explore the intricacies of HDMI security in this 43-minute conference talk from WEareTROOPERS. Dive into the world of HDMI, CEC (Consumer Electronics Control), and ARC (Audio Return Channel) protocols. Learn about the HDMI-CEC communication channels, data transmission methods, and potential vulnerabilities. Discover how to use CEC adapters for testing and fuzzing HDMI devices. Gain insights into sending E-EDID data, constructing CEC message frames, and understanding logical addressing. Examine the Ubuntu ODC fuzzer and its applications in identifying security weaknesses. Conclude with a comprehensive summary of HDMI security testing techniques and best practices for reporting vulnerabilities.
Overview
Syllabus
Intro
CONTENTS
SPEAKER INFO
WHAT IS HOMI
WHY HONI?
PREVIOUS TALK
HONI Communications Chamels
WHAT IS DOC?
WHAT DATA DOES DOC SEND?
HOW TO SEND E-EDID DATA?
WHAT IS CEC?
PHYSICAL ADORESS
LOGICAL ADDRESS
CEC MESSAGE FRAME
CEC MESSAGE - HEADER BLOCK
HOW TO SEND CEC MESSAGE?
WHAT IS ARC?
HOW TO USE ARC?
TARGET DEVICES
PREREQUISITES
TO USE THE CEC ADAPTER
FUZZING DATA (2) - OPERAND
REPORT VULNERABILITIES
UBUNTU ODC FUZZER
SUMMARY
Taught by
WEareTROOPERS
