Joanna Rutkowska

Joanna Rutkowska is a Polish hacker and specialist for computer security , which mainly for her research in the field of malware in general and the installation and hiding backdoors in Microsoft Windows Vista in particular is known.

In August 2006, Rutkowska presented at the Black Hat Briefings conference two methods to bypass security measures in Windows Vista Beta 2 before - but it was one of the Five Hackers who Left a Mark on 2006 (dt about. Five hackers 2006 Major have achieved ) from eWeek Magazine .

The first method that Rutkowska presented at the conference bypasses Vista's integrity check in order to be able to inject unsigned code into the running Vista kernel . The fix built into Release Candidate 2 by Microsoft had only moderate success in eliminating the vulnerability. The second method, rootkit technology, allows potentially malicious code to hide its presence through the use of CPU virtualization .

At the Black Hat Briefings in March 2007, Rutkowska gave a speech in which she showed that certain types of hardware-based rootkit detection mechanisms can be bypassed. In order not to be recognized, a program called Blue Chicken was developed, which in turn recognizes timing analyzes itself and disappears from the virtual memory for a short period , so that the latency during the analysis is normal.

At the Black Hat Conference 2008, together with Alexander Tereshkin and Rafał Wojtczuk, she presented the trilogy 0wning Xen , in which she describes how code can be infiltrated into the Xen hypervisor via DMA and executed with ring 0 rights. Similar to the Blue Pill rootkit, this hypervisor rootkit is also hardly detectable.

In April 2011, she put her team the first beta of Linux - Distribution Qubes OS front, which focuses on security through virtualization and based on Fedora runs 14th By means of a Xen - hypervisors run applications from each other in foreclosed virtual machines.

In April 2007 Rutkowska founded the "Invisible Things Lab", a company in Warsaw that researches operating system security and offers various consultations in the computer field.

Web links

Commons : Joanna Rutkowska - collection of pictures, videos and audio files

Footnotes

↑ Lecture at the 23c3: Stealth malware - can good guys win?
↑ Vista Hacked at Black Hat CNET News
^ Black Hat: Microsoft hopes to swallow Blue Pill on Computerworld.com
^ Five Hackers Who Left a Mark on 2006 , Ryan Naraine, eWeek.com
↑ Antirootkit bug fix in Vista RC2 useless heise online (October 25, 2006)
↑ Hardware-based rootkit detection proven unreliable
↑ Black Hat Demonstration Shatter Hardware Hacking Myths
↑ 0wning Xen Trilogy Highlights
↑ ^a ^b Roland Eikenberg: Safe because virtual: First beta of Qubes OS available. heise online, April 13, 2011, accessed on April 14, 2011 .

personal data
SURNAME	Rutkowska, Joanna
BRIEF DESCRIPTION	Polish hacker and computer security specialist
DATE OF BIRTH	20th century

[1] Lecture at the 23c3: Stealth malware - can good guys win?

[2] Vista Hacked at Black Hat CNET News

[3] Black Hat: Microsoft hopes to swallow Blue Pill on Computerworld.com

[4] Five Hackers Who Left a Mark on 2006 , Ryan Naraine, eWeek.com

[5] Antirootkit bug fix in Vista RC2 useless heise online (October 25, 2006)

[6] Hardware-based rootkit detection proven unreliable

[7] Black Hat Demonstration Shatter Hardware Hacking Myths

[8] 0wning Xen Trilogy Highlights

[heise_qubes-9] Roland Eikenberg: Safe because virtual: First beta of Qubes OS available. heise online, April 13, 2011, accessed on April 14, 2011 .