This course aims to explore the security implications of HDMI Ethernet Channel (HEC) and related protocols such as Consumer Electronics Control (CEC) and Capability Discovery and Control (CDC). By the end of the course, learners will understand the security vulnerabilities of these protocols and their impact on consumer and corporate network security. The course covers topics such as CEC commands, fuzzing CEC, HEC functionalities, network loop prevention, endpoint protection circumvention, and testing HDMI Ethernet Channel. The teaching method involves a presentation by the instructor, Andy Davis, along with a demonstration of a CEC security testing tool called CECSTeR. This course is intended for individuals interested in information security, network security, and the implications of evolving video interfaces on network vulnerabilities.
What the HEC - Security Implications of HDMI Ethernet Channel and Other Related Protocols
44CON Information Security Conference via YouTube
Overview
Syllabus
Intro
Why am I talking about video interfaces?
HDMI is an output isn't it?
Supported CEC commands
The CEC protocol
Can we fuzz CEC?
What are the fuzzer results?
HEC - HDMI Ethernet Channel
CDC (Capability Discovery and Control)
Network loop prevention
Queue control
Endpoint Protection Circumvent
Unauthorised Network Extensio
Testing HDMI Ethernet Channel
Another corporate HDMI security risk
Taught by
44CON Information Security Conference
