Get to know your Smart TVs Joey Costoya. LG NetCast Panasonic Viera Connect Philips Smart TVs Samsung Smart TV Sharp Aquos Net+ Sony Internet TV Toshiba.

Slides:

Advertisements

Similar presentations

HJ Lee / LG Electronics Setting Priorities and Next Steps - from TV makers point of view.

Advertisements

Presented By: Brent Strange Browser Compatibility Testing Risk Analysis Learn the art of trimming browsers from a browser compatibility test list by knowing.

Samsung Smart TV is a web-based application running on an application engine installed on digital TVs connected to the Internet.

XProtect® Web Client 1 Product presentation.

By Tyler Moore.  “Firefox OS is about pushing the boundaries of what is possible with the Web on mobile and enabling entirely new segments of users to.

Mobile Apps in the Enterprise, Part 1 Who’s Doing What Presented by Sean Gallagher

© 2011 Adobe Systems Incorporated. All Rights Reserved. Adobe Confidential. Honing In on Multiple Targets with a Single Codebase Jeff Tapper Senior Technologist.

What’s new in this release? September 6, Milestone Systems Confidential Milestone’s September release 2012 XProtect ® Web Client 1 Connect instantly.

Sarah EMPEYTA Justine GUERRE Cyriel HUYSENTRUYT Master 2 LEA - CIEA Anglais - Techniques de rédaction.

Introduction to Web Based Application. Web-based application TCP/IP (HTTP) protocol Using WWW technology & software Distributed environment.

V1.00 © 2009 Research In Motion Limited Introduction to Mobile Device Web Development Trainer name Date.

MWD1001 – Website Production Web Browsers Week 11.

Web Programming Language Dr. Ken Cosh Week 1 (Introduction)

Introduction to Android Platform Overview

Native vs hybrid vs web mobile Application

DR Hbbtv pilot project Thomas Elton Jensen DR Distribution Streaming manager.

Introduction to Mobile Applications. Wireless Applications Personal Time and KnowledgeManagemnt Personal Health & Security PersonalNavigation Remote Monitoring.

Norman SecureSurf Protect your users when surfing the Internet.

Presented by…. Group 2 1. Programming language 2Introduction.

HTML5 GAMING By Scott Benton. HTML5 New HTML Standard Previous Version of HTML, HTML 4.01, Released in 1999 Not an Official Standard Yet No Browsers Have.

Evolution Traditional Web access through fixed line services. Mobile Web – access web from hand held devices through wireless network or mobile network.

Computer Concepts 2014 Chapter 7 The Web and .

1 Internet Security Threat Report X Internet Security Threat Report VI Figure 1.Distribution Of Attacks Targeting Web Browsers.

Phish your victims in 5 quick steps. Phish yourself today In less than 5 minutes What is Phish5? Phish5 is a Security Awareness service With Phish5, a.

Web 2.0: Concepts and Applications 11 The Web Becomes 2.0.

Computer Safety Workshop Presented by Roy Coleman April 14, 2015 © 2015 Roy Coleman.

Mobile App Support Jacob Poirier Geri Hengesbach Andrea Menke Erin Rossell.

Ladd Van Tol Senior Software Engineer Security on the Web Part One - Vulnerabilities.

Open Web App. Purpose To explain Open Web Apps To explain Open Web Apps To demonstrate some opportunities for a small business with this technology To.

September 2015 LCCU Meeting How can you manage the Adobe Flash security risk? How can you keep Flash and other software updated? We’ll answers members’

2006 Adobe Systems Incorporated. All Rights Reserved. 1 Adobe RIA Technologies: Adobe Flex 3 Cornel Creanga Platform Evangelist

2006 Adobe Systems Incorporated. All Rights Reserved. 1 RIAs - Beyond the Buzz James Ward Technical Evangelist jamesward.org

Client-based Application Attacks Adli Abdul Wahid Dept. of Comp. Science, IIUM

Week 9 Portfolio Design Basics Role of a web designer Designing for the medium Best practices for personal portfolios.

Web Design (1) Terminology. Coding ‘languages’ (1) HTML - Hypertext Markup Language - describes the content of a web page CSS - Cascading Style Sheets.

Database Systems: Design, Implementation, and Management Eighth Edition Chapter 14 Database Connectivity and Web Technologies.

Monday, August 31, 2015 CSCI 351 – Mobile Applications Development.

1 3 Computing System Fundamentals 3.4 Networked Computer Systems.

Browser Bugs & Validation SIPB Introduction to Web Design Wednesday, January 20th Jonté Craighead & Cathy Zhang.

Trunica Inc. 500 East Kennedy Blvd #300 Tampa, FL Cross Platform Mobile Apps With Cordova and Visual Studio 2015 © Copyright 2015.

Protecting Your Computing Devices Antivirus, Anti-Spyware, Ad blocking, Antitheft and OS Maintenance.

Introduction to Mobile Applications. Wireless Applications Personal Time and KnowledgeManagemnt Personal Health & Security PersonalNavigation Remote Monitoring.

HTML5 based Notification System for Updating E-Training Contents Yu-Doo Kim 1 and Il-Young Moon 1 1 Department of Computer Science Engineering, KoreaTech,

Web 2.0: Concepts and Applications 11 The Web Becomes 2.0.

Eyal Trabelsi & Eilit Wagenhim. Develop the Wikipedia application For Samsung Smart-TV Platform.

ONLINE SAFETY AND SECURITY Computer Basics 1.5. INFAMOUS CYBER ATTACKS IN 2014 Sony Pictures: Attackers stole just about everything in the corporate network,

CEA 2014 Overview April 18, 2007 Mark R. Walker PhD Sr. Viiv TM Planning Architect Digital Home Group Intel.

J.BHAVANA 3/4B.TECH CSE Ch.Rochasmathi 3/4B.tech CSE.

Vulnerabilities in Operating Systems Michael Gaydeski COSC December 2008.

Sharing makes life beautiful ARKUDA STB SOLUTION.

Introduction to Mobile Computing Dr. Frank McCown Harding University Fall 2011 An Overview of Mobile Devices and Developing Mobile Applications This work.

PARTNER CHAT TROUBLESHOOTING TIPS FOR USING vistahigherlearning.com/chat.

LOGO How to Convert Video for Samsaung 4K Ultra HD TVs

Android. Android An Open Handset Alliance Project A software platform and operating system for mobile devices Based on the Linux kernel Developed by Google.

Web Programming Language

Chapter 10: Web Basics.

IS1500: Introduction to Web Development

Browsers and Web Platforms

Next-generation TV March 2017

Web Technologies Basics

HTML5 based Notification System for Updating

PHP / MySQL Introduction

Smart TVs Vassilis Tsetsos.

Jon Peppler, Menlo Security Channels

The Application Lifecycle

Connecting Remotely Winter 2014.

Introduction to Web Application Design

Hush Smart Baby Monitor Exploit

Presentation transcript:

Get to know your Smart TVs Joey Costoya

LG NetCast Panasonic Viera Connect Philips Smart TVs Samsung Smart TV Sharp Aquos Net+ Sony Internet TV Toshiba Places Vizio Smart TV

Global TV Shipments Global Smart TV shipments Smart TV market share million52 million20% million66 million27% million141 million55%

2013 Q1 market share Samsung26% LG16% Sony11%

Apps Ranges from free up to 9.99 USD Paid via credit card or App cash Apps are basically HTML 5 applications

Apps

Maple MArkup engine PLatform for Embedded Systems Based on Webkit Mozilla/5.0 (SmartHub; SMART-TV; U; Linux/SmartTV+2013; Maple2012) AppleWebKit/ (KHTML, like Gecko) SmartTV Safari/ HTML 5, DOM 3, CSS 3, SquirrelFish (Javascript engine)

Browser plugins ActionScript 3.0 AIR for TV TVs: Flash TVs: Flash 11.1 Most recent Flash versions – Windows: – Mac: – Linux:

Firmware Samsung: Infolink. SmartHub LG: Netcast Sony: Google TV, Yahoo Widgets Combination of proprietary and open-source projects

Open source Samsung Open Source Release Center – LG OpenSource Code Distribution – dex dex Sony Open Source Code Distribution Service –

Samsung Open Source Release Center

Samsung Open Source Release Center

Sony Open Source Code Distribution Service

LG OpenSource Code Distribution

Where to start?

Depends on your budget

***************************************************** [AP_INFOLINK/Fatal] 298 : **** Infomation for connecting with hub-site **** [AP_INFOLINK/Fatal] 299 : ***************************************************** [AP_INFOLINK/Fatal] 300 : Server Type : Operating [AP_INFOLINK/Fatal] 301 : TVID : CPCBXXXXXXGPM [AP_INFOLINK/Fatal] 302 : Mac Address : 1c5a3exxxxxx [AP_INFOLINK/Fatal] 303 : Firmware : T-INFOLINK [AP_INFOLINK/Fatal] 304 : Country Code : PH [AP_INFOLINK/Fatal] 305 : Model Code : [AP_INFOLINK/Fatal] 306 : ***************************************************** [AP_INFOLINK/Fatal] 307 : Update is True

[Smart Hub Debug(1)] Request Url = [Smart Hub Debug(1)] RequestHeader["Stoken"] = 9xxxxxeb+eexxx044xxxxxxe8af0dxxxxxx737fxxxxxx70e0 [Smart Hub Debug(1)] RequestHeader["Content-type"] = text/xml [Smart Hub Debug(1)] RequestHeader["Content-length"] = 50 [Smart Hub Debug(1)] Request Data = [Smart Hub Debug(1)] Request Time = 2013/6/27 5:24.611

[Smart Hub Debug(1)] Request Url = [Smart Hub Debug(1)] RequestHeader["Stoken"] = 9xxxxxeb+eexxx044xxxxxxe8af0dxxxxxx737fxxxxxx70e0 [Smart Hub Debug(1)] RequestHeader["Content-type"] = text/xml [Smart Hub Debug(1)] RequestHeader["Content-length"] = 50 [Smart Hub Debug(1)] Request Data = [Smart Hub Debug(1)] Request Time = 2013/6/27 5:24.611

Risks

Your Smart TV is essentially a computer

Attractive target High-end Smart TVs have built-in video camera and microphone Prime, fixed locations of TVs – Living room – Bedroom in front of the bed Always plugged-in to power and Internet

As surveillance spots SeungJin Lee & Seungju Kim – “Smart TV Security” – CansecWest ’13 – Discovered several exploitable bugs – Gained shell access – Rootkit – Spying software –

Threats? Exploits – No reported drive-by exploits (yet) – Flash exploit possible – Traditional exploits against APIs – No Java or PDF Malicious Apps – Apps under review by some panel before they’re published in the App store

Browser-based risks

What is BeEF BeEF: Browser Exploitation Framework Client-side attack vector The browser as the infection/attack channel

BeEF control panel

Network risks

Old fashioned risks Phishing

Mitigation Auto-update Offline firmware update Factory reset

Summary Rising market share Smart TVs as computers Risk profile same as PCs Interesting times ahead