Björn Ruytenberg is an MSc student in Computer Science and Engineering at Eindhoven University of Technology, the Netherlands. His vulnerability research mainly focuses on hardware and firmware security, as well as sandboxing and virtualization technology in widely deployed enterprise products. Previously, he has presented at Black Hat USA, CONFidence, AsiaSecWest and OWASP.
Thunderbolt is a computer port for high-speed data transmission between a PC or laptop and other devices. It is found in hundreds of millions of devices worldwide. We present Thunderspy, a new class of vulnerabilities that break all primary security claims for Thunderbolt 1, 2 and 3. We give a live demo of the attacks, and present a tool for determining whether a system is vulnerable. Finally, we conclude our talk demonstrating our new research on designing and implementing protections against Thunderspy.