Keysight Device Security Workshop 2025

This is Keysight Technologies‘ annual event that serves as a platform for sharing the latest developments both at Keysight and in the broader field of device security. 

What is the Keysight Device Security Workshop?

The Keysight Device Security Workshop is designed to bring together security professionals, researchers, and engineers to share the latest updates in the embedded security space. The goal is to engage with current and future users of the Inspector toolset, providing hands-on demonstrations of Keysight’s hardware and software solutions.

3-Day Advanced Training Program

3 days program Advanced Training Program Abstract Fault Injection (FI) is often the weapon of choice for breaking into devices when exploitable software vulnerabilities are not known or absent. While FI attacks are nowadays common, typical concepts, methodologies, techniques, and attacks are often not sufficiently understood. While achieving success by simply glitching a target can yield results, it’s important to note that this approach alone doesn’t facilitate the creation of innovative attacks. In this training, students will experience and appreciate the Art of Fault Injection to exploit the full potential of FI attacks.  

Students will experience, with guidance from experts, performing real-world Voltage FI attacks, that were found by Raelize. Students will be use Keysight’s Voltage FI tooling in their dedicated training room in Delft, The Netherlands. This training takes students on a multi-day journey during which they perform hands-on exercises (75%) and attend insightful lectures (25%). 

Upon completing the training, students will be proficient in executing sophisticated FI attacks on real-world targets using Keysight’s Voltage FI tooling. The knowledge gained from understanding the underlying concepts, methodologies, techniques, and attacks, can be used by the students to perform novel FI attacks on other targets of interest. 

Workshop Agenda

Day 1: Characterization 

– Lecture: Target & Tooling 

– Lecture: Finding Faults 

– Exercise:Bootloader communication 

– Exercise: Characterizing the Espressif ESP32 SoC 
 

Day 2: Bypassing Secure Boot

– Lecture: Modeling Faults 

– Lecture: Secure Boot 

– Exercise: Bypassing Secure Boot of the Espressif ESP32 SoC (CVE2019-15894) 
 

Day 3: Advanced Attacks

– Lecture: Attacking OTP Transfers 

– Exercise: Attacking the OTP transfer of the Espressif ESP32 SoC (CVE-2019-17391) 

– Lecture: Attacking Data Transfers 

– Exercise: Attacking Data Transfers on the Espressif ESP32 SoC (CVE2020-13629)

AUDIENCE

Trained Inspector users with experience in SCA/FI testing 

LOCATION – Delft, Netherland

Workshop day: Vakwerkhuis, Professor Snijdersstraat 2, 2628 RA Delft

3-day training program: Delftechpark 49, 2628 XJ Delft (Keysight office)

PRICING

3,000 EUR per person for 3 days. Including free access to the workshop Registration through Keysight. Payment is arranged by Raelize directly outside Keysight.