Chaos Computer Club - archive feed

Short 10 minute talks on any topic Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/548-lightning-talks-saturday

Ein Erfahrungs- und Leidensbericht darüber, wie man Qualitätskontrolle mittels KI/ML an Produktionslinien umsetzen kann. Und das alles über Eigenentwicklungen - wir haben Interna von Tensorflow gesehen, die sonst wohl nur die wenigsten sehen. Ein Erfahrungs- und Leidensbericht darüber, wie man Qualitätskontrolle mittels KI/ML an Produktionslinien umsetzen kann. Und das alles über Eigenentwicklungen - wir haben Interna von Tensorflow gesehen, die sonst wohl nur die wenigsten sehen. Im Talk werde ich die Entwicklungen zeigen, die ich weitgehend alleine, teils auch im Team, seit ~2019 für einen Industriekonzern umsetzen durfte. Das ganze entstand aus einem Hobbyprojekt, was nun Millionen von Teilen mittels Kamera und KI-Modellen auf Fehler prüft. Und was wir dabei gelernt und erfahren haben möchte ich euch nicht vorenthalten. about this event: https://cfp.gulas.ch/gpn22/talk/NAFLDR/

Die zu Grunde liegenden Fehler, die Ransomwareangriffe ermöglichen (und einfach machen), sind häufig über verschiedenen Kunden hinweg die gleichen. Dieser Talk ist nicht nur ein Rant über immer gleiche Fehler, sondern soll IT-Verantwortlichen praxisnaher Empfehlungen zur Absicherung der IT-Infrastruktur geben. Denn die gute Nachricht ist: Der weitaus überwiegende Teil der Ransomwareangriffe lässt sich mit der Umsetzung relativ grundlegender technischer und organisatorischer Maßnahmen frühzeitig verhindern. about this event: https://cfp.gulas.ch/gpn22/talk/GUYAHS/

We'll show you all the cursed uses of bash you didn't want to know about. Implementing network protocols, compilers, and emulators? Coming soon to a /bin/bash near you! During the presentation, we'll show you the really juicy details of how we stretched bash to its absolute limits in some of our craziest projects, while also teaching you about features that will hopefully one day prove useful in your own down-to-earth scripts. This is a high effort shitpost: we woke up one day and chose violence — if in "violence" you include using bash for the things that really should use a systems programming language, that is. We implemented emulators, network servers, parsed text and binary data alike, and crafted libraries to help with all of the above – just so you don't have to wonder: "could it be done"? about this event: https://cfp.gulas.ch/gpn22/talk/TL97JJ/

During the pandemic, trains got weird for a while. We weren’t quite sure whether it was safe to travel collectively, and the impacts of that difficult time continue to shape our railway network to this day. Meanwhile, many of us were exploring our own, hyperlocal neighbourhoods on foot with obsessive levels of depth that we never otherwise would have got around to. (Was I the only one who highlighted every street I walked in a London A-Z to see if I could get complete coverage?!) In 2021, I did a design-based MA all about railways, railway infrastructure, and what it means to travel and live communally. To do this, I walked all the way from London to Brighton (in sections), following the railway line as closely as possible. This is a talk about what I saw and what I thought about, and will hopefully be enjoyed by fans of trains, hiking, community and travel. (And anyone else who fancies a sit down, I’ll try and make it interesting, I promise) Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/69-london-to-brighton-by-train-and-on-foot

Offline RFID systems rely on data stored within the key to control access and configuration. But what if a key lies? What if we can make the system trust those lies? Well then we can do some real spooky things… This is the story of how a strange repeating data pattern turned into a skeleton key that can open an entire range of RFID access control products in seconds. It’s a scrappy but scary hack that spawned from something we noticed whilst trying to duplicate an access card onto a subdermal RFID implant. This covers the discovery of the flaw, how we investigated it, and how significant the flaws ended up being. about this event: https://www.emfcamp.org/schedule/2024/80-digital-skeleton-keys-we-ve-got-a-bone-to-pick

For two weeks every summer, half a million people attend the oldest and most prestigious Tennis Tournament, with another billion people following from afar. Underneath the pristine courts of Wimbledon, a massive technology operation underpins almost every aspect of the event, from the grass growing, to the scores appearing on screens around the world. This talk will cover the many interesting ways that technology supports this huge live event as well as a behind the scenes peek of the IBM operation in the broadcast centre. IBM has been the Official Information Technology Partner with Wimbledon since 1990. Presenter works for IBM as part of the Wimbledon team Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/234-the-tech-behind-the-tennis

Gas boilers, almost all homes in the UK have them, but they are dreadful! +90% of the ones I've seen are badly spec'ed and horribly configured, so they burn way too much gas. Then Martin Lewis keeps telling us to "lower the flow temperature" but it's never really explained how to, or what this does to save gas (and money). Well have I got a Slide Deck for you!! As with any serious problem, it needs hard data. So I wired my Raspberry Pi home server to my central heating controls, wrote a bunch of code, and spent last winter collecting data from my boiler, a dozen temperature sensors, some humidity sensors and the Octopus Energy API. I have pretty graphs to show what happens all around my home, how altering the flow temperature works, how altering set points work, why my house was too cold, then too hot, and used way too much gas. I'll explain the (simple) physics and how to tweak your system for best performance too. But ultimately, we all have to stop burning gas and move to heat pumps, a solution not understood by many and requiring something of a mind shift from the way gas central heating has always worked. I'll explain how heat pumps work and what you can do to prepare for their arrival in your home. The future is bright, and it's heading rapidly in this direction. about this event: https://www.emfcamp.org/schedule/2024/161-gas-boilers-suck-hack-yours-today-save-money-save-the-planet

I’m an archivist. Every day I deal with the records that people chose to save, or forgot to destroy. Archival material ranges from the sublime (Royal wills, lost love letters, newspapers announcing the Titanic’s demise) to the ridiculous (broken chips of wax from old seals, IOUs from unknown persons, too much human hair). A key role of an archivist is to decide what to save and what to destroy. But this is the past. Today most records are no longer on paper but sent in the form of bytes and I’ve started to wonder what the point of my job really is? We have free access to near-unlimited email inboxes, all our photos are backed up to the cloud to access from anywhere, and instant messaging is synced between our devices. Why bother deciding what to keep for posterity? Just save everything, let computers do the hard work, and all will be well. This approach unsettled me so much that I set off to explore what it would really mean if we “saved everything”: how this would affect our world, communities, and ourselves as humans. In this talk, I will share this journey and my thoughts with you, and try to persuade you that my job is not in fact pointless. about this event: https://www.emfcamp.org/schedule/2024/253-are-archivists-pointless-when-the-cloud-can-just-save

What does a computer programmer do if they can’t type code? Speak it, of course! Like many programmers and heavy computer users, I suffer from chronic hand pain aggravated by computer keyboard use (often called repetitive strain injury, or RSI). After having mild symptoms for years, in 2019 my hand pain worsened from irritating to unignorable. Eventually I got desperate enough to try to learn to code by voice. To my surprise, it worked. Speech recognition technology has advanced dramatically in the past decade, but most people’s ideas about voice-driven UI are based on highly limited voice assistants like Siri or Alexa, powerful but imprecise tools like LLMs, or special-purpose dictation tools. What does a voice interface for precise control by expert users look like? A small but growing community of programmers, many affected by RSI, have been developing tools that explore this question. I use one such tool, called Talon, to control my computer, write and edit computer code, and even to write my dissertation. In this talk, I will live-demo how I edit code by voice, as well as tackling the following questions: 1. What is voice-coding like? What unique challenges does it present? 2. How do voice control systems like Talon work under the hood? 3. Could voice coding ever be *better* than typing? 4. What can we learn from all this about designing voice interfaces for expert users? Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/217-writing-computer-code-by-voice

Das ZKM | Hertzlab ist als künstlerische Forschungs & Entwicklungsabteilung des Zentrums für Kunst und Medien Karlsruhe die zukunftsgewandte Abteilung. In sechs Themengebieten beschäftigen wir uns mit der Frage, was in 100 Jahren ist, wie wir da hinkommen und wie wir das eigentlich hinkriegen, dass das eine lebenswerte Zukunft für alle ist. Wir geben einen Überblick über aktuelle Projekte des ZKM | Hertzlabs und laden euch ein, mit uns über die Zukunft zu spekulieren. about this event: https://cfp.gulas.ch/gpn22/talk/HWVJLD/

Files and directories feel like the Sun and Earth: they are the eternal foundations, and pretending they don't exist can only make make things worse. Except files were invented by humans! What if we left our zone of comfort and explored the possibilities? We live in the world of hierarchical file systems. We juggle named files, named directories, and symbolic links daily. It has been this way since the days of DOS, and it remains this way now. It's just the way it is. Or is it? Phone operating systems try to hide the underlying file system from the user. Yuck! Or actually, do we really want to manage our files manually? Is it really that fun to decide if the train ticket to FOSDEM goes under the "2023" or "invoices" directory, and in which order? Or do we just want to find the cursed thing when we need it? Documents have not always been bound to files, and they aren't, and they don't have to be. Put away the Stockholm syndrome, and I'll tell you about semantic desktop, WinFS, alternate streams, [photo managers](https://www.digikam.org/), [Perkeep](https://perkeep.org/), [IPFS](https://ipfs.tech/), and my own plan to ascend. about this event: https://cfp.gulas.ch/gpn22/talk/ZRKD3G/

Writing schematics via code isn’t a new idea. But with new open-source projects like Atopile, this workflow suddenly makes a lot more sense. Let’s take a look at why one would even write schematics in code instead of using the established visual way in software like KiCad or Altium, the advantages (from git integration, reusing components & modules, AI support, and more), previous software projects in that field, the current development state and how you can try out this new workflow yourself. Ideally, you already have experience in PCB design, but also PCB design newbies can learn a lot in this talk and learn some tricks for their first circuit board design. about this event: https://cfp.gulas.ch/gpn22/talk/RUW3HF/

This is the story of Reading Hydro, how a group of volunteers built and are now operating a hydro generation plant on the Thames in Reading. From raising the £1.2M to the parts build by volunteers, and how they are now operating the plant. Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/242-how-volunteers-built

Controlling websites with an Arduino is like magic. Suddenly little bits of hardware can control all kinds of games and interfaces on screens. And building a UI for your electronics becomes trivial too. This is a talk for anyone who’s ever tinkered with hardware or web design, and wants to join the physical to the digital. During this talk I will explain the basic techniques of keyboard emulation and using the Javascript Web Serial and Web Bluetooth APIs. To make it fun, and introduce some peril, I will demo all of the techniques live: controlling the Google Chrome Dino game by jumping up and down on stage, making a musical instrument from stretchy rubber and allowing audience members to connect to a set of handbells from their phones. Along the way will be plenty of tips on what to buy and what to avoid, I’ll demystify some of the complexity around Bluetooth and USB, and share several ideas for how to use this to cause mischief amongst friends, colleagues and enemies. I have done this before, but only once. Fingers crossed. Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/173-connecting-arduinos-to-websites

Single Sign-On (SSO) is sold as a way to • centralize managing your organization’s users, • make life easier for your colleagues, and • enforce consistent security standards. But SSO protocols are just ways for an identity provider to share information about an authenticated identity with another service. Me having a way to tell my vendor “yeah, that’s Bob” doesn’t tell me what the vendor does with this information, or if the vendor always asks me who’s coming in the door. A bad SSO implementation can make you think you’re safer, while hiding all the new and fun things that have gone wrong. To get the most out of implementing SSO, I need to know what I’m trying to accomplish and what steps I need to follow to get there. To illustrate why SSO needs to be set up carefully, for each of the things you need to do right, I’ll give you some fun examples of creative ways you and your vendor can do this wrong. We all learn from failure, right??? I’m sharing this info because this year I got deeply involved in the SSO setup for several vendors at work. It turns out that I’m good at asking weird questions, and it’s an extremely valuable thing to do. If you know how things should be, then you know where they could be broken, and you can ask your vendors (and your colleagues!) “weird questions” before an adversary does. about this event: https://www.emfcamp.org/schedule/2024/233-omg-wtf-sso

A talk looking at Off-Grid Renewable Energy technology and off-grid living. This presentation is based on 20 years of off-grid living experience and showcases case studies from an off-grid eco-village from 2000 to 2018. The talk aims to share some of the knowledge gained and look into the possibilities for future renewable off-grid living opportunities and how new technologies might be used to improve convenience and efficiency. Topics covered will include the practical basics of harvesting, storing and using renewable energy as efficiently as possible, new ideas and practical examples, micro-hydro, solar, wind-power, batteries, electrics and wiring, efficiency, smart-micro-grids, renewables and more...... Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/159-ogre-tech-and-off-grid-living

I was trained as a tax lawyer and data scientist as a profession but I always wanted to build. I attended the my first EMF and was hugely inspired by the participants and presenters I met. The following year, with the support of an EU innovation grant, I embarked on a 6-month product design course, culminating in an interactive children's book inspired by the Art of War. This unique book blends storytelling with 3D paper origami, touch sensors, cloud-based audio features, making ancient wisdom fun and engaging for young minds. In my talk, I'll share the challenges and triumphs of this unexpected adventure, from design principles to prototyping hurdles, offering valuable insights for aspiring makers and seasoned professionals alike. Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/186-from-tax-law-to-tangible-dreams-an-accidental-makers-journey

Wer in der Chaos Community unterwegs ist, trifft unweigerlich auf Nix. Doch ist es das von vielen geprädigte Allheilmittel für IT Sorgen? Wann ist es wirklich Sinnvoll? Mensch könnte den Eindruck haben, dass in den letzten Jahren NixOS in der Chaos Community zum neuen ArchLinux wurde. Egal in welchen Hackspace man geht, findet man eine Gruppe an NixOS affinen Haecksen und Hackern die am liebsten jeden Linux Rechner auf der Welt zu der besten Distribution ever - NixOS - migrieren wollen. Wir nehmen euch mit in eine Kritische Auseinandersetzung dieser Technologie, deren Glorifizierung, und das Fandom was um NixOS und Nix-related Tooling erstanden ist. Dabei wollen wir auf die Vorteile und positiven Erfahrungen eingehen, die Menschen mit NixOS haben können, und welche Probleme durch eine fundamental andere Herangehensweise an Linux Packetierung und Systemkonfiguration gelöst werden können (Reproduzierbarkeit von Builds, Deterministik in System Konfiguration, die Leichtigkeit mit der sich Entwicklungsumgebungen zwischen verschiedenen Teams teilen lassen, ...) Alledings wollen wir die Probleme nicht unter den Teppich kehren und auch aufzeigen, warum NixOS kein Wunderheilmittel ist und warum es auch gute Gründe geben kann dem neuen Technik Dogma nicht zu folgen (schlechte Dokumentation, eine sehr steile Lernkurve an denen viele Scheitern, einen deutlich höheren Zeitaufwand, durch den Menschen die nicht die Zeit haben sich in ihrer Freizeit in ein neues System einzuarbeiten ausgegrenzt werden, ...). Das Ziel dieses Vortrages ist es eine nuancierte Sicht auf NixOS und Nix tooling zu geben: Gründe warum es eine spannende Technologie ist, aber auch Gründe warum diese nicht Universell anwendbar ist, und nicht als solche von Nix-fans verkauft werden sollte. about this event: https://cfp.gulas.ch/gpn22/talk/ZLDSBA/

​​Debuggers are indispensable tools for all Python developers, empowering them to conquer bugs and unravel complex systems. But have you ever wondered how they work? Curious about the implementation of features like conditional breakpoints and single stepping? Join me for a talk in which we create our own debugger with conditional breakpoints, single stepping, and a Python-based debugging shell and learn a lot about debuggers along the way. about this event: https://cfp.gulas.ch/gpn22/talk/DH3EHM/

Wie baut man eigentlich ein Hochvakuumsystem ohne dabei bankrott zu gehen und was kann man damit so machen? In diesem Talk werde ich über meine 4-jährige Reise durch Hochvakuumsysteme berichten. Hochvakuumsysteme sind die fundamentale Basis für einige große Bereiche der Physik wie etwa Elektronenmikroskopie, Massenspektronometrie und Dünnfilmbeschichtung. Ich bin von diesem Thema seit meinem ersten Praktikum mit 15 Jahren fasziniert. Nach Gesprächen mit einigen interessierten Wesen ist mir nun bewusst, dass dies oft als zu komplex und teuer betrachtet wird. Ich werde meine Erfahrungen und angewandte Hacks und Trick präsentieren um so vielleicht ein paar mehr Motivierte zu finden die dann möglicherweise auch Lust haben etwas in dem Bereich zu hacken. about this event: https://cfp.gulas.ch/gpn22/talk/BBLCDU/

Not sure what to do with your discarded, never working, inkjet printers? Rosa Schuurmans and Riviera Taylor combine the sound of printers with the craft of live coding. Together they hack discarded printers and connect them to live coding environments on computers to generate analogue sounds from digital messages. Printer Jam welcomes familiar, mechanical quirks and the inherent noise of printers. Who knew a printhead could make a banging kick drum? During the performance we'll dive into the inner workings of the project, which is built upon FLOSS technologies such as Tidal Cycles, Open Sound Control and the Arduino ecosystem. Through combining these technologies, Printer Jam foregrounds the surprisingly accessible and flexible OSC specification. Which patterns create the most "interesting" sounds? What OSC messages can you send to create those snappy percussive elements? Or, will everything result in just another printer jam....? * No ink was spilled during the performance. about this event: https://cfp.gulas.ch/gpn22/talk/BZXLLE/

Seit zehn Jahren stellt das Projekt OpenRailwayMap eine thematische Karte bereit, die Informationen über die Eisenbahninfrastruktur aus der OpenStreetMap-Datenbank darstellt. Wie werden diese Informationen von Freiwilligen erfasst? Welche Informationen können in OpenStreetMap erfasst werden? Wie kann man beitragen? Auch andere Nutzungsmöglichkeiten, z.B. Routing und Geocoding, der Daten werden im Vortrag angerissen. Seit zehn Jahren stellt das Projekt OpenRailwayMap eine thematische Karte bereit, die Informationen über die Eisenbahninfrastruktur aus der OpenStreetMap-Datenbank darstellt. Es schließt damit eine Lücke, die Eisenbahn-Infrastrukturunternehmen offen lassen. Dabei sind ihre Mitarbeitenden selbst auch Nutzer der OpenRailwayMap, wie die Zugriffszahlen belegen. Der Vortragende zeigt, wie er und andere Freiwillige diese Informationen für OpenStreetMap erfassen. Sei es die Mitfahrt im Zug mit Notizbuch und GPS-Empfänger, das Fotografieren oder Filmen aus fahrenden Zügen oder die Erfassung vom Bahnsteig und parallelen Wegen. Auch andere Nutzungsmöglichkeiten der Daten, z.B. Routing auf Bahngleisen, und Geocoding (Suche nach Betriebsstellen oder auf Basis von Streckennummer und Streckenkilometer), werden im Vortrag angerissen. about this event: https://cfp.gulas.ch/gpn22/talk/FNXD3T/

This artist talk presents two mobile-device art applications developed for use with bicycles in the summer of 2021: SpeedPitch is a simple augmented sonic reality experiment that alters music playback speed based on your actual GPS ground speed. The faster you go, the higher the pitch and sudden stops lead to dragging audio samples. Natural motion leads to unnatural sound. ShadowPlay is an exploration of the architecture and light in outdoor spaces through sound. Using a bicycle-mounted smartphone as a brightness sensor and a bluetooth speaker, the mottled patterns of light and shadow become the musical score as one rides along city streets. SpeedPitch was developed through the support of BBK Karlsruhe and ShadowPlay was supported through the UNESCO City of Media Arts Karlsruhe as well as through the City of Karlsruhe. about this event: https://cfp.gulas.ch/gpn22/talk/TEUCHV/

Der klassische Sicherheitsansatz ist im Zeitalter von Plattform-Engineering und Cloud-Geschwindigkeit nicht mehr haltbar. Mit der Beschleunigung der Software-Entwicklung und -bereitstellung muss die IT-Sicherheit nicht mehr als Hindernis, sondern als Katalysator für die digitale Transformation gesehen werden. Das Ziel der IT-Sicherheit ist nicht nur die Gewährleistung eines sicheren Laufzeitschutzes, sondern auch die Unterstützung der Teams bei der Definition und Erreichung von Sicherheitszielen. Daher benötigen wir einen kontinuierlichen IT-Sicherheitsansatz, der sich darauf konzentriert, den richtigen Stakeholdern zum richtigen Zeitpunkt das richtige Feedback zu geben. Wir werden uns ansehen, wie moderne Sicherheitsteams einen kontinuierlichen Sicherheitsansatz umsetzen, in die Entwicklung integrieren und bessere Ergebnisse als mit traditionellen Methoden erzielen. Die Teilnehmer werden diesen Vortrag mit einem besseren Verständnis verlassen: Wie hat sich Platform Engineering auf die traditionellen Sicherheitsrollen ausgewirkt? Wie können Unternehmen mit organisatorischen Konflikten umgehen? Wie moderne Sicherheitsteams einen kontinuierlichen Sicherheitsansatz umsetzen. about this event: https://cfp.gulas.ch/gpn22/talk/8Q9P3D/

Ich zeige euch super spaßige Methoden, wie ihr mit dem puren Lambda-Kalkül programmieren könnt!! **(Nahezu) keine Vorkenntnisse erforderlich!** Programmierung mit funktionalen Sprachen wie Haskell ist inzwischen weit verbreitet. Nahezu alle funktionalen Programmiersprachen basieren auf einer erweiterten Form des Lambda-Kalküls. Wenn man nun sämtliche Erweiterungen wie Schleifen, Listen, Zahlen, Text, Typen, Klassen usw. entfernt, bleibt nur noch das pure, aber dennoch Turing-vollständige, Lambda-Kalkül. In diesem Vortrag zeige ich, wie man trotzdem sämtliche Probleme elegant lösen kann. Dafür erkläre ich (auch visuell!) verschiedene Arten, Daten- und Kontrollstrukturen rein funktional darzustellen. Außerdem zeige ich, wie man Fraktale und andere tolle Bilder mit simplen Ausdrücken generieren kann. Ist wirklich faszinierend!! about this event: https://cfp.gulas.ch/gpn22/talk/BDJB8E/

Tastaturen...das periphere Eingabegerät, dass uns die Möglichkeit gibt, eins zu werden mit unseren Systemen, Werkzeugen, und uns ermöglicht, das zu tuen was wir lieben. Es gibt Tastaturen wie Sand am Meer. Viele sind wunderbar und viele sind Schrott, Mechanical Keyboard sind keine Randerscheinung mehr. Trackballs, Ergonomische Mäuse, Stühle und höhen verstellbare Schreibtische... Und doch beherrscht QWERTZ/QWERTY die Welt!? wtf? Warum? Es geht nicht nur um Alternative Layouts... wir schauen uns alles mal an. Bist du bereit in das nächste rabbit hole zu fallen oder hast gemerkt, dass du beim tippen Schmerzen hast? Dann lass uns reden. Ich bin ink, Teil des Click! Clack! Hack! Podcasts und habe echt nur äußerst begrenzt Bock auf Standardtastaturen. about this event: https://cfp.gulas.ch/gpn22/talk/FA8Z3F/

2023 wurde das Bundestagswahlrecht wieder einmal stark reformiert – doch was bedeuten die komplexen Änderungen eigentlich in der Praxis? Wer gewinnt Mandate? Wer verliert alles? Dieser Vortrag sucht die Antworten mit einer Analyse offener Wahldaten – und liefert überraschende Erkenntnisse. Die Wahlen zum Deutschen Bundestag sind komplex: Erststimmen, Zweitstimmen, Überhang- und Ausgleichsmandate, Direktkandidaten und Landeslisten. Und dann ändert sich auch noch ständig, wie aus den Stimmen die Verteilung der Mandate im Bundestag bestimmt werden: 2011, 2013, 2021 und nun zuletzt letztes Jahr (2023). Ein verfassungskonformes Wahlrecht für den Bundestag zu verabschieden scheint gar nicht so einfach zu sein. In diesem Vortrag werden wir uns auf eine Reise durch das deutsche Bundestagswahlrecht begeben und verschiedenen Fragen begegnen: Was haben sterbende Nazis mit dem Wahlrecht zu tun? Was verändert sich bei der nächsten Wahl? Und sind harmlos wirkende Wahlrechtsreformen die deutsche Form des Gerrymanderings? about this event: https://cfp.gulas.ch/gpn22/talk/39KWPM/

Overstory uses satellite imagery plus machine learning to understand individual trees - at scale. I'll talk about how we do this, some of the practical challenges of remote sensing and earth observation, and how we translate this into real world prevention of wildfire and power outage by working with utilities, who manage many thousands of miles of power cables. about this event: https://www.emfcamp.org/schedule/2024/417-when-a-tree-falls-in-the-forest-does-it-cause-a-fire

Bingo meets tech in an interactive, smartphone powered comedy act like no other. Experience a whole new side of bingo created by Foxdog Studios (Lloyd & Pete) and their robotic bingo mascot, Mr Bing. Expect chaos, games and laughs. Join the fun without leaving your seat as bingo cards are beamed to your phone using their own locally hosted web-based software. Claim your prize by tapping the button and blast “Bingo!” out the main speakers (but be ready to go to bingo jail if you cry wolf). Full of lo-fi robotics and novelty instruments, this hit show is coming from the Edinburgh fringe to Electromagnetic Field. “The lo-fi tech wizardry is ingenious, and it’s irresistible fun to play along” Guardian As seen on CLICK BBC and THE PADDOCK Channel 4 Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/286-foxdog-studios-robo-bingo

bleeptrack is an award winning creative technologist from Germany, working in the fields of generative art and digital fabrication. Twice a year, she sends out unique generative art pieces to her patreons and supporters. These pieces vary drastically in their appearance: from classical paper art works to PCBs, stamps or shirts, bleeptrack is not shy in experimenting with all sorts of materials and fabrication techniques. But most importantly: each piece is unique and created from code. In her talk, bleeptrack will guide you through multiple production processes with it's challenges and explains why it's a lot of fun for her to set up little production pipelines over and over again. Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/274-the-journey-is-the-reward

Passwörter sind nicht mehr zeitgemäß! Seit 2023 wird viel Hype um das Thema Passkeys betrieben, viele IT-Dienstleister, Cloud-Anbieter und Mailprovider bieten das System schon an. Aber wie funktioniert das eigentlich? Wie gut ist die Nutzbarkeit, im Vergleich zu Passwörtern und Multi-Faktor Authentifizierung? Warum sind passkeys immun gegen phishing und was unterscheidet sie von "herkömmlichen" Authentifizierungs-Faktoren wie App-notification und Microsoft Authenticator? Vor allem: was muss ich als Service-Anbieter tun, um meinen Nutzern und Kunden auch Passkeys-Authentifizierung anbieten zu können. Der Vortrag wird diese Fragen beantworten und eignet sich nicht nur für Entwickler und Betreiber von Software, sondern für alle Menschen, die sich selbst sicher und einfach bei Internetdiensten anmelden wollen. about this event: https://cfp.gulas.ch/gpn22/talk/ULQSLD/

Fotografieren auf Chaos Events ist eine Herausforderung. Im Vortrag möchte ich Möglichkeiten zeigen wie es trotz unterschiedlicher Regelung möglich ist cool Bilder zu machen und die Stimmung bestmöglich einzufangen. Fotografieren auf Chaos Events ist eine Herausforderung. Veranstaltungen wie das Camp oder der Congress haben eine eher restriktive Foto-Policy, die GPN dagegen hat eine eher liberale Version, die ein anderes Herangehen und damit andere Bilder ermöglicht. Mit meinem Vortrag möchte ich die Diskussion darüber weiterführen, wie ein für alle akzeptabler Umgang mit den verschiedenen Policies möglich ist und wie trotzdem kreative Bilder entstehen können, die die Stimmung bestmöglich einfangen, ohne den sozialen Frieden zu gefährden. Dazu möchte ich auch die Ergebnisse meiner Umfrage nach dem letzten Congress vorstellen, in der mehr als 1000 Menschen ihre Meinung zur Photopolicy geteilt haben. about this event: https://cfp.gulas.ch/gpn22/talk/J7XBBK/

Few things are as polarizing today as the production of oil, and unconventional production (including 'fracking') is even more controversial. Whether you're for it or (more likely) against it, it's well worth knowing what is actually involved in making it happen and where the real risks are. The presenter recently left a long career in the US oil industry and will give you a view into this world without any spin or agenda and instead give you the opportunity to deepen your understanding of what it's really all about. What is 'unconventional oil'? What does the process to produce it look like on the ground? What equipment is used? What are the real environmental impacts (beyond climate change)? Whether you want to geek out about heavy equipment or to become a more-educated protester, you'll learn something new. Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/59-what-the-frack

As a semi-professional plane spotter when I hear or see an aircraft fly over I will sometimes point at it. But I can't always tell if there's an aircraft flying over, and I can't be awake 24/7 so I miss some, which I find unacceptable. Enter the auto spotter, a robot that is capable of pointing at the nearest aircraft continuously. The auto spotter uses 1090Mhz ADS-B Out transmissions to work out where the nearest aircraft is relative to its location and works out the bearing and elevation for a pointer. This is the same public data that is used to feed flight information services and can be received by anyone with the right (relatively cheap) equipment; all commercial and many general aviation aircraft around the world use it to transmit their positions, speeds, altitudes and more. You may have seen the pointer at EMF2022 (in between rain showers) and this talk goes into some of the details of how it was developed, and how it works. about this event: https://www.emfcamp.org/schedule/2024/45-the-auto-plane-spotter-a-robot-to-point-at-aeroplanes

It isn't just you. There are so many pressures on us, not only from our jobs and industry, but from the state of society, politics and the economy as a whole. Join me on a joyful journey through the alphabet of overwhelm, we’ll cover Anxiety, Burnout, Capitalism, Depression, Emotional Labour and many other fun factors. We’ll talk through how to recognise symptoms in yourself and your friends. Lets learn how to survive, and hopefully thrive, in this ABSea of sh*t. Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/321-is-everything-difficult-or-is-it-just-me

Tidal energy is one potential source of green energy but the impact of placing large turbines on the seabed is not fully understood. In particular, how are sea mammals coping with such changes in their environment? Do we need to put automatic mitigations in place – is it even possible? For over a year, we have been annotating more than 60 terabytes of data, finding these rare events of interest. We’ve looked at whether Artificial Intelligence, combined with sonar, can automatically spot and classify interesting underwater objects. We’ve tried several approaches, some more successful than others, but there are promising results with movement detection and segmentation. This talk covers our initial findings - where we went wrong and one promising approach that we are still actively researching. I'll be talking about U-Nets, convolutional neural networks, sonars and the unknown entities that may lurk in the depths! Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/223-spotting-seals-with-sonar-and-a-i

What do semaphore, octopuses, Scrabble, rotary telephones and Microsoft Paint have in common? If you've been to previous EMFs, you might recognise these as some of the themes for our puzzles! We are Dreamcat and we are a group of friends who made our first puzzlehunt for EMF 2018 and haven't stopped since. We love the combination of escape room, treasure hunt, video game, and just a dash of immersive theatre. We want to share that enthusiasm with you, talk about our top mistakes from the last 6 years and what we learned, and hopefully inspire you to go make your own puzzlehunts. Come along to learn: - How to co-opt serious IoT tools for frivolous escape room purposes - Why Portal is still the best video game ever made - How hard, actually, is “too hard” - Exactly how many paperclips were harmed in the making of this year's experience No spoilers for this year's puzzlehunt. Unless you come talk to us at the bar after. Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/101-how-to-make-a-puzzlehunt

Join BAFTA winning digital artist Seb Lee-Delisle in this engaging talk about his life and work over the past few years. Although Seb is known for his large and spectacular outdoor light and laser shows, he is fundamentally a coder. In this fun keynote, he’ll talk about the unique challenges of working with computers at this scale, and demonstrate how to code mesmerising particle effects with an actual laser. about this event: https://www.emfcamp.org/schedule/2024/119-coding-beyond-the-screen

Um mit Retro-Spielen Spaß zu haben, braucht man entweder die alte Originalhardware oder man greift zu PC und Emulatorsoftware. Was wäre aber, wenn man die alte Hardware nachbilden könnte? Ich zeige, wie man mit sogenannten FPGAs fast vergessene Technik auch ohne Lötkolben daheim nachbaut und so alten Spielen neues Leben einhaucht. FPGAs (Field Programmable Gate Arrays) sind eine eigene Chip-Familie. Anders als z.B. klassische Prozessoren oder Speicherchips erfüllen FPGAs ab Werk keine spezielle Funktion. Erst durch passende Konfiguration erfährt das FPGA, was es eigentlich darstellen soll. Normalerweise setzt man sie ein, wenn es um selten benötigte und spezielle Funktionen geht, die Halbleiter von der Stange nicht bieten und für die die Entwicklung eines eigenen Halbleiters zu teuer und/oder zu aufwändig wäre. Wir nutzen FPGAs, um Chips nachzubilden, die nicht mehr hergestellt werden. Dabei machen wir uns zu Nutze, dass moderne FPGAs komplette Geräte der Homecomputer-Ära in einem einzige Chip unterbringen können. Mit dem MiST habe ich vor über 10 Jahren eines der ersten Geräte dieser Art entwickelt und auf den Markt gebracht. Seitdem ist die Zeit nicht stehen geblieben und mit dem Nachfolger MiSTer ist FPGA-Retrogaming endgültig in der Breite angekommen. Das hat wiederum weitere Entwickler auf den Plan gerufen, sodass inzwischen alle wichtigen Computer und Konsolen der 80er und viele der 90er auf FPGAs umgesetzt wurden. Ich werde erklären, wie sich FPGA-Nachbildungen von Emulatoren unterscheiden und was ein FPGA besser als eine Emulation auf Software-Basis z.B. auf einem PC macht und wo die Nutzung von FPGAs an ihre Grenzen stößt. Neben immer größeren FPGAs, die die Umsetzung immer jüngerer Maschinen ermöglichen, sind auch die Entwicklungen in Fernost im Billigbereich interessant und die Geräte auf denen man FPGA-Projekte aufbauen kann, werden immer erschwinglicher und kleiner. Wie FPGA-Retrogaming funktioniert, wie man damit auch daheim mit kleinem Budget in die Entwicklung integrierter (Retro-)Schaltungen einsteigen kann und wo FPGA-Retrogaming heute steht, werde ich im Detail beleuchten. about this event: https://cfp.gulas.ch/gpn22/talk/HVH9HE/

Internet voting allows you to submit your vote over the internet using your own device. This talk will give an introduction into the topic: Why might governments, associations or political parties turn to internet voting? What are the security requirements of such a system, and how does this differ to e-banking or postal voting? How do such systems work, and what separates a bad from a good (or at least a "better") voting system? Everything is better digitalized: e-banking, crypto currencies, smart homes, vtubers, ... - so when can we finally vote online? /s When a government, and an association or a political party starts to provide internet voting to its voters, it usually aims to increase turnout or reduce cost, while retaining a similar level of security than their current voting methods. But the security of internet voting is hard to compare to the security of other voting channels or other secure systems, such as e-banking. Further, reduced cost or increased turnout depends heavily on the context the election is held in. But what if the decision is taken, that internet voting needs to be provided? Simple systems usually do not cut it, as they need to relay on strong trust assumptions in the system provider, the administrators and even the voters. Against rogue employees or even nation-state adversaries, a black-box system stands no chance. Even in strong adversarial scenarios needs the system to keep votes secret, but at the same time remain transparent to verify the votes have been tallied correctly. Internet voting systems are in active use for political elections, for example in Switzerland. Looking at the history of such systems shows how full transparency and independent evaluations are necessary to detect flaws. For non-political elections (e.g. universities, associations), few available systems are sufficiently transparent to even begin evaluating them, and certifications such as BSI's corresponding Common Criteria are insufficient on their own. To summarize, the talk answers the following questions: - Why institutions would want or not want to use internet voting. - What properties an (internet) voting systems need to achieve. - What separates a bad from a better internet voting system. No scientific / computer science background is need to follow this session. about this event: https://cfp.gulas.ch/gpn22/talk/TKRTLZ/

Woher kommen sie? Was sind sie? Und wo gehen sie hin? - Ein Einstiegs-Talk mit vielen Live-Demos über das Erstellen, Modifizieren und Zurückziehen von PGP (Pretty Good Privacy) Keys in GnuPG (GNU Privacy Guard). E-Mail ist selten Ende-zu-Ende verschlüsselt. Eine Möglichkeit, Vertraulichkeit und Integrität in E-Mail sicherzustellen ist PGP. Wenn mensch nicht weiß was mensch tut und z.B. nur Keys mit default Einstellungen generiert, kann mensch schnell in Probleme laufen wie: "Ich habe eine E-Mail Adresse mit vier Aliassen und habe jetzt fünf Key-Paare und gehe in ihnen unter." oder "Ich habe mein Passwort/Key verloren, was mache ich jetzt?". In diesem Talk geht es um eine Möglichkeit, mit PGP Keys in GPG umzugehen, von ihrer Generierung bis sie auslaufen oder zurückgezogen werden. about this event: https://cfp.gulas.ch/gpn22/talk/TDLJP9/

Computing is riddled with security vulnerabilities, many of which arise from memory safety issues. Conventional hardware architectures and the C/C++ codebase are chronically prone to exploitable errors - a 75-year-old problem at the heart of computing. This talk will introduce CHERI, showing how (finally?!) we can do better. The CHERI research project has developed a new architecture+software approach, using unforgeable hardware capabilities to implement pointers. Morello is an Arm experimental platform for evaluation of CHERI to explore its potential for mass-market adoption, part-funded by the UKRI Digital Security by Design programme, and other groups are developing CHERI-enabled RISC-V processors, including Microsoft, Google, lowRISC, SCI Semiconductor, Codasip, and RISC-V International. This talk will introduce the problem, and CHERI and Morello, for a broad audience: the hardware extensions, their potential for fine-grained memory safety and software compartmentalisation, the CHERI software stack, and machine-checked mathematical proof that the architecture design provides the intended security. CHERI complements alternative high-level-language approaches, that would need code to be rewritten from scratch, and we'll talk about the often-low cost of porting code to CHERI. I'll demo how CHERI prevents exploitable memory safety errors on a Morello box, running Arm CHERI hardware and a complete CHERI software stack. This is joint work by the CHERI and Morello teams at the University of Cambridge, Arm, SRI International, and the University of Edinburgh. about this event: https://www.emfcamp.org/schedule/2024/87-cheri-and-arm-morello

A bit more than two years ago, someone contacted our Hackspace asking if we would be interested in an electronically defective, but probably repairable industrial coffee vending machine. An industrial coffee machine with a touchscreen and cocoa toppings? No idea where we would find enough room for it or if it would actually be used, but of course we'd be interested! After a few months of collecting (additional) dust and annoying a few members, we started the quest to get this machine back to work and to explore the (questionable) world of industrial coffee vending legacy, from hardware, over electronics to software architecture. This is a talk about how we repaired the machine, how these machines usually work, a dive into legacy software and electronics setups, and why those coffee vending machines taste like they do. Last but not least, we will discuss how we started to reverse engineer the internal system communication and if we would award a hackvalue of over 9000 for this type of machines. There is also the final question: does it run Doom? about this event: https://www.emfcamp.org/schedule/2024/254-unexpected-coffee-a-dive-into-industrial-coffee-machines

The Roman archaeological record is far from complete; There are hundreds of high status Roman buildings yet to be located in Britain. I was volunteering in the ambulance service during COVID when I was given a piece of Roman pottery by a patient. With no training (I later embarked on an Archaeology degree ), I started to carefully investigate and record what is now established as an enigmatic high-status Roman building - complete with mosaic, painted wall plaster and hypocaust. My talk will demonstrate some free Web-based tools that you can use to investigate your local landscape (LiDAR, etc.). It will also show you non-invasive ways to survey and record archaeological sites. Finally, I'll have some Roman artefacts to handle. Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/146-how-i-found-a-roman-villa-or-temple

I recently released Downpour, an app that anyone can use to make little games on their phone. And before that I made Cheap Bots, Done Quick, a website that anyone could use to make a Twitterbot on their computer. And so unsurprisingly I am a big advocate of making creative tools - I love the feeling of seeing other people make cool stuff, and knowing that I enabled that to happen. In this talk, I'm going to talk about some design principles I've gathered from making these kinds of things, share some stories of people using them in ways I didn't expect, and generally try to persuade you that it's an interesting space that you might want to play in. about this event: https://www.emfcamp.org/schedule/2024/320-downpour-more-how-and-why-to-make-creative-tools

There are three things about this poem that will surprise you. First: though written 300 years ago, it contains superb guidance on being an engineer or maker of any kind. Second: you’ll immediately recognise some of its best lines. Third: its author was an indomitable twenty-three year old hunchbacked dwarf, who had educated himself due to religious persecution. I hope you’ll take away some maxims that’ll stick with you and inform your work. And if you’re someone who’s never ‘got’ poetry, this may be the poem that unlocks it for you. Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/218-engineering-lessons-from-a-300-year-old-poem

Earlier this year, a developer was trying to benchmark a database. But something was wrong - SSH was taking up too much CPU time in the background. This accidental observation led to the discovery of an audacious attempt to introduce a backdoor that would allow an attacker access to almost any system in the world running SSH, an attack made up of both technical and social components. This talk will describe the backdoor itself, the process that went into it being possible to inject in the first place, and how this was exacerbated by a series of entirely reasonable decisions on the part of Linux distributions. It's a story of social engineering, novel obfuscation mechanisms, and a long con over several years. We'll delve into why distributions patch upstream code, why dependency chains are complicated, and how it's even possible for a compression library to break all the SSH security mechanisms that are intended to prevent this sort of thing from happening in the first place. about this event: https://www.emfcamp.org/schedule/2024/409-the-xz-backdoor-what-why-and-how

Short 10 minute talks on any topic about this event: https://www.emfcamp.org/schedule/2024/547-lightning-talks-friday

Get ready to take a trip into space. We'll be travelling 400km up to the International Space Station, to take a look at Earth through the lens of the Astro Pi computers that were sent there in 2020. This talk will focus on what has been learnt from years of giving young people the chance to take photos from the ISS using affordable commercial hardware. There will be plenty of the amazing images that have been captured so far, along with some examples of unexpected interruptions and the challenges when you can’t actually see or touch the equipment yourself. There will also be a chance for the audience to join in with an interactive game based on some of the photos. You'll need an Internet connected device to join in. Ground replicas of the actual hardware will also be on show and available for inspection. Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://www.emfcamp.org/schedule/2024/165-photobombed-by-a-robot-arm-in-space