DEF CON Forum Site Header Art

Announcement

Collapse
No announcement yet.

DEF CON 29 Registration is LIVE!

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • DEF CON 29 Registration is LIVE!

    The moment has arrived! You can reserve your badge for DEF CON in Vegas or the DEF CON online-only event right now at shop.defcon.org. Your pre-purchase allows us to accurately predict attendance, and it guarantees you a physical badge and secures your space if the venue is forced to restrict capacity. We thank you for your support and flexibility – hard numbers are the only way we can responsibly make a physical DEF CON happen this year.

    Cash at the door will still be honored for as long as spaces last, but there is a chance we’ll have to turn away cash customers if we reach capacity for our venues.

    For everyone who can’t be with us in person, the Safe Mode option continues over on Discord and we expect to start mailing out badges in early July.

    We’ve got a FAQ page for all of your questions at https://defcon.org/html/defcon-29/dc-29-faq.html , and you can always get in touch with us at info@defcon.org. Thank you again for the support - we can’t wait for August 5!

    Click image for larger version  Name:	pre-regtwitterannnounce.png Views:	0 Size:	815.8 KB ID:	237015

  • #2
    What is the policy Black Badge holders this year? Do they need to grab a pre-reg to guarantee omission?

    Comment


    • Dark Tangent
      Dark Tangent commented
      Editing a comment
      My bad, we have refined the policy. Just show up as usual and after vaccine verification you go to the inhuman registration line. Sorry for the confusion.

    • almus
      almus commented
      Editing a comment
      @Dark Tangent: and if, for whatever reason, the in-person event does not happen or a black badge holder does not feel safe attending, will we still be able to get a physical badge for this year?

    • number6
      number6 commented
      Editing a comment
      For *black badge* use to get human badge, you will have to wait for DT to answer.

      For people that purchased human badges, that is answered in https://shop.defcon.org/products/def-con-29 : "In the event that the in-person aspect of DEF CON 29 must be cancelled, it is important that you provide a valid shipping address. This will allow us to expeditiously get your badge out to you. If we are required to cancel the in-person conference, your purchase price will be adjusted to $85 + shipping and the rest of the price will be refunded."

  • #3
    Also?

    If we pre-register for a badge, is it shipped to us, or do we need to pick it up in person?

    Also, how will the Covid vaccine status be checked and verified? Do you need to bring your CDC Covid vaccine certificate?

    Comment


    • SCoA
      SCoA commented
      Editing a comment
      I ordered an in person badge and it says it's being mailed to me.

    • number6
      number6 commented
      Editing a comment
      If you paid for an "in-person badge" those are picked up in-person if the in-person DEF CON happens.
      If you paid for a "virtual badge" those are to be mailed through some sort of postal service.
      If the DEF CON in-person event is cancelled, then the present plan (as of May 21, 2021) is to total the difference in price between in-person badge and the virtual badge, then subtract the cost of shipping from that, and use that result as a partial refund, then use a postal service to mail a virtual badge to the person.

      dmr wrote:
      "Also, how will the Covid vaccine status be checked and verified? Do you need to bring your CDC Covid vaccine certificate?"

      In case it is required, I would bring whatever card/evidence was provided to you as proof of vaccination. Better to have it and not need it than need it an not have it.

      As for "how the COVID-19 vaccine status will be checked" I don't have an answer for you on this, but new ideas are welcome...

      Let's assume you were in charge. :-)

      If you were DT, and you wanted to create a system that could avoid Denial of Service, but meet the requirements from (1) Hotel/Casino , (2) City of Las Vegas , (3) state of Nevada, (4) US Government for conventions/gatherings (if any) *and* avoid access to people's PII, or at least reducing access to PII to the least amount required, and record only what was required, what would you suggest?

      In order to avoid DoS, network-based systems are a bit problematic, so might be a non-starter. If a DoS can stop badges from being sold, that would be a problem. Badge purchases pay for running the convention.

      Would a vaccination card and photo ID work? Isn't that too much PII? If a photo ID could have "all but essential data for confirming the details on the vaccine card match the photo ID" what would that include? Is there a way for people to "mask out" details on a photo ID and vaccination card but still provide the *minimum* required to complete a chain of validating the person present is the one that matches the vaccination card? Is there a way to complete this process and not record data about attendees but meet enough requirements that the convention is not shut down?

      Suggestions and new ideas welcome.

      Thanks!

    • almus
      almus commented
      Editing a comment
      "Would a vaccination card and photo ID work? Isn't that too much PII? If a photo ID could have "all but essential data for confirming the details on the vaccine card match the photo ID" what would that include? Is there a way for people to "mask out" details on a photo ID and vaccination card but still provide the *minimum* required to complete a chain of validating the person present is the one that matches the vaccination card? Is there a way to complete this process and not record data about attendees but meet enough requirements that the convention is not shut down?"

      This is exactly the problem. As the US, and most of the rest of the world is not issuing any sort of "proof" of vaccination, there is no answer here. If we were talking about "a night out at the bar" with a dozen people then the risk profile is much lower than at a Los Vegas convention with a community that prides itself in its ability to break rules. A vaccination card is easy to forge and there are too many people in this community that has already been very vocal about not getting the vaccine. I do not think there is any *reasonable*, *safe*, and * cost-effective* method that can be used to verify proof of vaccination and without that, it seems irresponsible to me to invite thousands of hackers to Vegas to share a space.

      If there was a reasonable way to administer antibody tests on-site, that would solve this, but that can not be done in a cost-effective and/or logistically reasonable way. I'm open to hearing that smarter people than me have this problem solved. I would love to come on-site this year, I just don't understand yet how that can be made reasonably safe.

  • #4
    SCoA Yikes, that is a mistake. in-person badges are picked up in-person.
    PGP key: dtangent@defcon.org valid 2020 Jan 15, to 2024 Jan 01 Fingerprint: BC5B CD9A C609 1B6B CD81 9636 D7C6 E96C FE66 156A

    Comment


    • SCoA
      SCoA commented
      Editing a comment
      Well, I ordered a hoodie and stickers as well, so maybe that is what it was referring to when said my order was being shipped to me. Nowhere did I see that it mentioned about picking up badges in person.

  • #5
    Is there any functional difference between the In-person and the virtual badge? Would there be any advantage/need for both for whatever the badge challenge is this year?

    Comment


    • Dark Tangent
      Dark Tangent commented
      Editing a comment
      No functional differences, just some things to prevent a virtual badge from being accepted at the in-person.

  • #6
    Just bought two tickets for in person con in one transaction, one for myself and one for a friend. Will it be an issue at check in that my name is on both of them and his name is on neither? Thanks in advance!

    Comment


    • Dark Tangent
      Dark Tangent commented
      Editing a comment
      Nope! As long as your friend is vaccinated.

  • #7
    regarding: "Your badge also comes with a code that unlocks the "Human Plus" role on the DEF CON Discord Server"
    - Is this something that is supposed to come with the ticket for the badge after the in-person badge has been purchased, or rather something that comes later on with the physical badge during the con? After purchasing the in-person badge I didn't receive any additional instructions with the pdf ticket, or see anything about it on the ticket itself. I looked around and only see last year's instructions on purchasing this separately and enabling this on plus.defcon.org . I also asked about this in #linecon on discord. Please point me in the right direction. Much appreciated!
    ... See you at DEF CON 29!

    Comment


    • number6
      number6 commented
      Editing a comment
      I asked, and this is the answer:
      Any HumanPlus / Human+ code for Discord is to be shipped when/with the physical badge when that is shipped, not electronically and immediately like the QR code for picking up a badge in-person.

      There are plans to add this detail to the FAQ, but it isn't there as of "now".
      Last edited by number6; May 18, 2021, 14:16.

  • #8
    The Country Belgium does not appear for purchasing the online badge!

    Comment


    • number6
      number6 commented
      Editing a comment
      Thanks for the report. This has been relayed to the person in charge of the store settings to see if it can be resolved.

  • #9
    It appears the emails with PDF for the badges are failing DMARC to gmail

    the DKIM and SPF appear to be fine, but not sure why the DMARC fails.

    ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@guestmanager.com header.s=s1 header.b="Qy/m5w59"; dkim=pass header.i=@sendgrid.info header.s=smtpapi header.b=iNVUVkAZ; spf=pass (google.com: domain of bounces+97741-db5a-<redacted>=gmail.com@em.guestmanager.com designates 167.89.85.102 as permitted sender) smtp.mailfrom="bounces+97741-db5a-<redacted>=gmail.com@em.guestmanager.com"; dmarc=fail (p=QUARANTINE sp=QUARANTINE dis=QUARANTINE) header.from=mail.defcon.org

    Comment


    • number6
      number6 commented
      Editing a comment
      We diagnosed the issue. It is only for ordering just the codes from the store. All other communication from the store passes SPF, DKIM, and DMARC. We already contacted support from the store's service add-on for code purchases, and are waiting to see what options they have available. If this service add-on can just use the store's mail servers, this problem will go away. If they have their own DNS records required, then we will need to know all of those records. We have some ideas how it could be solved, but we don't want to implement a partial solution and make things worse.

  • #10
    Glad to see Reg open!

    Just a heads up. There is a mistake in the cost example.
    "(For example, if your shipping costs are $10, you would receive a refund of $205. $300 - $85 +$10 = $205)"

    It should read $300 - $85 - $10 = $205

    Comment


    • number6
      number6 commented
      Editing a comment
      Thanks for the report: suggestion forwarded to the person in charge of content for the online store.

    • number6
      number6 commented
      Editing a comment
      Update, person that runs the online store ( https://shop.defcon.org/products/def-con-29 ) updated content. It now (May 21, 2021) reads:
      "If we are required to cancel the in-person conference, your purchase price will be adjusted to $85 + shipping cost to your location.
      For example, $300 - ($85 + $10)"
      Use of parenthesis allows for mathematical "order of operation" to force the sum of virtual badge and shipping be combined first, then subtracted from the cost of an in-person badge.
      Thanks again for the report. Content was made better by your constructive criticism.

    • KingRat
      KingRat commented
      Editing a comment
      Thanks for handling that number6!
      Looking forward to seeing everyone!

  • #11
    Originally posted by dmr View Post
    Also, how will the Covid vaccine status be checked and verified? Do you need to bring your CDC Covid vaccine certificate?
    I would very much like to know the answer to this question as well.

    Comment


    • #12
      Are refunds possible?
      Or perhaps a downgrade from in person badge to virtual badge + partial refund?

      Comment


      • breeze
        breeze commented
        Editing a comment
        Thank you for looking into this for me.

        I have been trying for a refund for several days. I purchased pre-registration on May 14th and emailed about the refund May 15th, explaining my reason for wanting one.
        I emailed again May 19th. I have not gotten any response which is why I have reached out to the forums.

        The order confirmation itself says: "If you have any questions, reply to this email or contact us at shop@mail.defcon.org"
        I have done this.

        No, I do not have any replies in my spam folder.
        Last edited by breeze; 4 weeks ago.

      • breeze
        breeze commented
        Editing a comment
        I have just emailed again in plaintext email in case the images from the original store order confirmation email being quoted somehow got my emails stuck in a spam filter.

      • number6
        number6 commented
        Editing a comment
        Disclaimer: I do not manage the online store or have any access to records for order, users, access to file for refunds, check progress of any order or support issue for the store. In short, I am *unable* to help with any specific order issues.
        Any issues with an order, request for refund, or more should be sent to the email address mentioned with the online store, or in email messages from the online store. As of this writing, that email address is presently "shop@mail.defcon.org" which may change in the future. Check the online store and order emails for the latest, best way to reach support for the online store.

        An offer just for breeze just for this issue because this online store is new and this process of online badge ordering is new : as for lack of response, I can try to see if messages are getting stuck in our spam filter, or blocked from being accepted....
        Last edited by number6; 4 weeks ago.

    • #13
      I ordered badges thru the Pre Order and was going back thru and I realized that I hadn't seen anything specific about children this year. My son, 11, is not eligible for a vaccine and in searching it looks like there isn't going to be a variant for them until late this year. It clearly states that in personal everyone will be vaccinated and I am assuming that disincludes those that aren't age eligible. This is completely on me, I should have read more into it. Would this be true or is it with the shifting CDC guidance that we will have between now and August? If so, and a refund isn't possible, I would like to know how to transfer or "donate" these tickets to someone that can use them. Thanks in advance.

      Comment


      • number6
        number6 commented
        Editing a comment
        I may not speak on what the policy will be or provide any exceptions.

        The policy that is posted as of now requires proof of vaccination at time of badge pick-up and masks to be worn. Under the present plan, if your 11 year old does not have proof of vaccination, they wouldn't be allowed to pick up a badge.

        As for transferring your badge or donating it, that might be a problem... If we are required to keep contact tracing for attendees for conventions in Las Vegas in the event of an outbreak, so they can be informed of an outbreak, we wouldn't have the contact information of the person that attended. I would expect that might be a problem and would advise against it. There might be exceptions. For example, one person buying badges for everyone in their household might be able to act as a POC for contact tracing if that is required and acceptable, because they are a POC to reach everyone in that group purchase. If true and this would satisfy requirements, it would imply that unless you are a reliable relay for communicating such information to the person that received the badge it could not officially be allowed. (This is not permission, because I may not grant permission or exceptions for badges and requirements on contact tracing imposed on us by the City of Las Vegas, or state of Nevada. I'm describing a reason why this might be a problem and a possible (if it is found to be acceptable) way to do what you propose. If you are looking for approval, you'll have to wait for a reply from DT on this topic. I describe likely goals, so you can try to decide a method to address the issue, or propose your own solution if it would be officially allowed)
        Last edited by number6; 2 weeks ago.

    • #14
      Hi, the FAQ doesn't specify whether vaccination means at least the first dose, or both doses? Which is it? :-)

      Comment


      • Dark Tangent
        Dark Tangent commented
        Editing a comment
        With a vaccination such as J&J single shot 1 dose is considered vaccinated, but with a Moderna one of two doses would we be half vaccinated.

    • #15
      1) Just so I am clear - you MUST be vaccinated by a "vaccine" that has not been fully FDA approved (just approved for rapid deployment)?
      2) How do you plan to validate vaccination for protected PHI?
      3) How does changing CDC guidelines and State invoked mandates affect the MUST wear a Mask and be Vaccinated mandate for attending in person? Or does it?
      Respectfully - my apologies if I missed the postings elsewhere on this site.

      Comment

      Working...
      X