In this medium-technical talk I will be exploring some real-world failures of security in IoT devices. In each case the focus will be less on the vulnerabilities themselves, and more on the principles that were broken and the wider classes of weaknesses that can be introduced as a result. I'll also talk about not just the ways in which each individual vuln could be patched, but also the greater lessons that should be taken away from each situation in order to prevent their recurrence.
Kristin's job title has been "Hacker Princess" for her last 4 jobs, which should tell you most of what you need to know. She likes to live at the intersection of the things you don't know you need and the things you didn't think were possible, with particular specialties in building fake cell towers 1000x cheaper than the NSA and cloning almost every RFID tag she encounters. She loves to teach so feel free to ask away; her favourite language is C and she's a sucker for anything pink :)