back

Where in the World Is Carmen Sandiego?

Becoming a secret travel agent

If you suspend your transcription on amara.org, please add a timestamp below to indicate how far you progressed! This will help others to resume your work!

Please do not press “publish” on amara.org to save your progress, use “save draft” instead. Only press “publish” when you're done with quality control.

Video duration
00:59:44
Language
English
Abstract
Travel booking systems are among the oldest global IT infrastructures, and have changed surprisingly little since the 80s. The personal information contained in these systems is hence not well secured by today's standards. This talk shows real-world hacking risks from tracking travelers to stealing flights.

Airline reservation systems grew from mainframes with green-screen terminals to modern-looking XML/SOAP APIs to access those same mainframes.

The systems lack central concepts of IT security, in particular good authentication and proper access control.

We show how these weaknesses translate into disclosure of traveler's personal information and would allow several forms of fraud and theft, if left unfixed.

Talk ID
7964
Event:
33c3
Day
1
Room
Saal G
Start
9:45 p.m.
Duration
01:00:00
Track
Security
Type of
lecture
Speaker
Karsten Nohl
Nemanja Nikodijevic
Talk Slug & media link
33c3-7964-where_in_the_world_is_carmen_sandiego

Talk & Speaker speed statistics

Very rough underestimation:
144.7 wpm
805.2 spm
100.0% Checking done100.0%
0.0% Syncing done0.0%
0.0% Transcribing done0.0%
0.0% Nothing done yet0.0%
  

Work on this video on Amara!

Talk & Speaker speed statistics with word clouds

Whole talk:
144.7 wpm
805.2 spm
webbookingsystemsaccessairlineskarstenflighttravelpeoplelaughterpnrsitesitesbitnumberfinde.gnemanjarecordscoursesecuritytickettimepasswordquestionapplausechangeu.saddressprivacycompaniesyearsbookingsabuseairlinebrute-forcegoodairsystemlufthansareservationthreecodeinstagramtodaybigstuffworsethingday