Embedded Security Challenge

ESC is an educational, research-oriented tournament aimed at hacking into the hardware of embedded systems. First run in 2008, it is the oldest hardware security competition in the world, 2024 represents ESC's 17-year anniversary.

Past ESC competitions have focused on data exfiltration attacks against IoT devices, hacking the firmware of a RISC-V wifi access point and executing side channel/fault injection attacks using a popular ChipWhisperer board.

This year's ESC focuses on side channel attacks (SCA) on cyber-physical systems (CPS). Cyber-physical systems are used by hundreds of industries and in many critical infrastructure systems. If these CPSs are not properly setup they can leak information even if they are using cryptographically secure software. This year, teams will investigate a range of SCAs on an Arduino Uno based CPS running several firmware that expose various side channels.

The event comprises a qualification and a competition phase where teams will be able to explore several variations of a CPS and exploit side channels they find while suggesting mitigations for the found exploits.

kisspng-university-of-delaware-delaware-fightin-blue-hens-5b96b73b1e50f6_edited.png

Sponsor

US, Europe, India

Arduino UNO

Final Setup

CSAW'19 US-CAN ESC 1st Place Team Shellphish, UC Santa Barbara

Arduino UNO

1/6

competition timeline

09 September 2024

23 September 2024

30 September 2024

01 November 2024, 11:59 EST

6-9 November 2024

Registration with HotCRP system deadline

Qualification reports due in HotCRP

Announcement of teams qualified to the final phase

Final PDF report uploaded to HotCRP

Competition Dates (Global)

(All deadlines are 11:59 pm eastern US timezone)

Competition Details

Competiion Timeline

competition organizers

The competition is organized under the supervision of Assistant Professor Nektarios Tsoutsos and the global challenge leads at the University of Delaware.