admin
play

Admin Today: finish web privacy, start mobile security Friday: Lab - PowerPoint PPT Presentation

Oct 29, 2023 •229 likes •535 views

CSE 484 / CSE M 584: Computer Security and Privacy Web Privacy [finish] Mobile Platform Security [start] Spring 2017 Franziska (Franzi) Roesner franzi@cs.washington.edu Thanks to Dan Boneh, Dieter Gollmann, Dan Halperin, Yoshi Kohno, Ada Lerner,

  1. CSE 484 / CSE M 584: Computer Security and Privacy Web Privacy [finish] Mobile Platform Security [start] Spring 2017 Franziska (Franzi) Roesner franzi@cs.washington.edu Thanks to Dan Boneh, Dieter Gollmann, Dan Halperin, Yoshi Kohno, Ada Lerner, John Manferdelli, John Mitchell, Vitaly Shmatikov, Bennet Yee, and many others for sample slides and materials ...

  2. Admin • Today: finish web privacy, start mobile security • Friday: – Lab #2 due (8pm) – Guest lecture: Jon McClintock, Amazon Security • Monday: – Guest lecture: David Aucsmith – Former senior director of Microsoft's Institute for Advannced Technology in Governments (among many other cool things) 5/16/17 CSE 484 / CSE M 584 - Spring 2017 2

  3. How has this changed over time? • The web has existed for a while now… - What about tracking before 2011? (our first study) - What about tracking before 2009? (first academic study) • Solution: time travel! [USENIX Security ’16] 5/16/17 CSE 484 / CSE M 584 - Spring 2017 3

  4. The Wayback Machine to the Rescue Time travel for web tracking: http://trackingexcavator.cs.washington.edu 5/16/17 CSE 484 / CSE M 584 - Spring 2017 4

  5. 1996-2016: More & More Tracking • More trackers of more types 5/16/17 CSE 484 / CSE M 584 - Spring 2017 5

  6. 1996-2016: More & More Tracking • More trackers of more types, more per site 5/16/17 CSE 484 / CSE M 584 - Spring 2017 6

  7. 1996-2016: More & More Tracking • More trackers of more types, more per site, more coverage 5/16/17 CSE 484 / CSE M 584 - Spring 2017 7

  8. Defenses to Reduce Tracking • Do Not Track proposal? Do Not Track is not a technical defense: trackers must honor the request. 5/16/17 CSE 484 / CSE M 584 - Spring 2017 8

  9. Defenses to Reduce Tracking • Do Not Track proposal? • Private browsing mode? Private browsing mode protects against local, not network, attackers. 5/16/17 CSE 484 / CSE M 584 - Spring 2017 9

  10. Defenses to Reduce Tracking • Do Not Track proposal? • Private browsing mode? • Third-party cookie blocking? www www.bar.com’s Bar’s Server st par cook ookie (1 (1 st party) www.bar.com www www.foo.com’s www.foo.com Foo’s Server rd par co cookie (3 rd party) 5/16/17 CSE 484 / CSE M 584 - Spring 2017 10

  11. Quirks of 3 rd Party Cookie Blocking In some browsers, this option means third-party cookies cannot be set, but they CAN be sent. So if a third-party cookie is somehow set, it can be used. How to get a cookie set? One way: be a first party. etc. 5/16/17 CSE 484 / CSE M 584 - Spring 2017 11

  12. Defenses to Reduce Tracking • Do Not Track header? • Private browsing mode? • Third-party cookie blocking? “uses algorithmic methods to • Browser add-ons? decide what is and isn't tracking”; incorporates code from UW for handling social media buttons Often rely on blacklists, which may be incomplete. 5/16/17 CSE 484 / CSE M 584 - Spring 2017 12

  13. MOBILE PLATFORM SECURITY 5/16/17 CSE 484 / CSE M 584 - Spring 2017 13

  14. Roadmap • Mobile malware • Mobile platforms vs. traditional platforms • Deep dive into Android – Continued next Wednesday – Background for Lab #3 5/16/17 CSE 484 / CSE M 584 - Spring 2017 14

  15. Questions: Mobile Malware Q1: How might malware authors get malware onto phones? Q2: What are some goals that mobile device malware authors might have? Q3: What technical things might malware authors do? 5/16/17 CSE 484 / CSE M 584 - Spring 2017 15

  16. Smartphone (In)Security Users accidentally install malicious applications. 5/16/17 CSE 484 / CSE M 584 - Spring 2017 16

  17. Smartphone (In)Security Even legitimate applications exhibit questionable behavior. Hornyack et al . : 43 of 110 Android applications sent location or phone ID to third-party advertising/analytics servers. 5/16/17 CSE 484 / CSE M 584 - Spring 2017 17

  18. Malware in the Wild Android malware is growing. Today (2016): millions of samples. [Zhou et al.] 5/16/17 CSE 484 / CSE M 584 - Spring 2017 18

  19. Mobile Malware Attack Vectors • Unique to phones: – Premium SMS messages – Identify location – Record phone calls – Log SMS • Similar to desktop/PCs: – Connects to botmasters – Steal data – Phishing – Malvertising 5/16/17 CSE 484 / CSE M 584 - Spring 2017 19

  20. Mobile Malware Examples • DroidDream (Android) – Over 58 apps uploaded to Google app market – Conducts data theft; send credentials to attackers • Zitmo (Symbian,BlackBerry,Windows,Android) – Poses as mobile banking application – Captures info from SMS – steal banking 2 nd factors – Works with Zeus botnet • Ikee (iOS) – Worm capabilities (targeted default ssh password) – Worked only on jailbroken phones with ssh installed 5/16/17 CSE 484 / CSE M 584 - Spring 2017 20

  21. Mobile Malware Examples “ikee is never going to give you up” 5/16/17 CSE 484 / CSE M 584 - Spring 2017 21

  22. [Zhou et al.] (Android) Malware in the Wild What does it do? Root Remote Control Financial Charges Information Stealing Exploit Net SMS Phone SMS Block SMS Phone # User Call SMS Account # 20 27 1 4 28 17 13 15 3 Families # 1204 1171 1 256 571 315 138 563 43 Samples Why all these problems with mobile malware? 5/16/17 CSE 484 / CSE M 584 - Spring 2017 22

  23. Background: Before Mobile Platforms Assumptions in traditional OS (e.g., Linux) design: 1. There may be multiple users who don’t trust each other. 2. Once an application is installed, it’s (more or less) trusted. 5/16/17 CSE 484 / CSE M 584 - Spring 2017 23

  24. Background: Before Mobile Platforms Assumptions in traditional OS (e.g., Linux) design: 1. There may be multiple users who don’t trust each other. 2. Once an application is installed, it’s (more or less) trusted. 5/16/17 CSE 484 / CSE M 584 - Spring 2017 24

  25. Background: Before Mobile Platforms Assumptions in traditional OS (e.g., Linux) design: 1. There may be multiple users who don’t trust each other. 2. Once an application is installed, it’s (more or less) trusted. Apps can do anything the UID they’re running under can do. 5/16/17 CSE 484 / CSE M 584 - Spring 2017 25

  26. What’s Different about Mobile Platforms? • Applications are isolated – Each runs in a separate execution context – No default access to file system, devices, etc. – Different than traditional OSes where multiple applications run with the same user permissions! • App Store: approval process for applications – Market: Vendor controlled/Open – App signing: Vendor-issued/self-signed – User approval of permissions 5/16/17 CSE 484 / CSE M 584 - Spring 2017 26

  27. More Details: Android [Enck et al.] • Based on Linux • Application sandboxes – Applications run as separate UIDs, in Since 5.0: ART (Android runtime) replaces Dalvik VM to run apps natively separate processes. – Memory corruption errors only lead to arbitrary code execution in the context of the particular application, not complete system compromise! – (Can still escape sandbox – but must compromise Linux kernel to do so.) ß allows rooting 5/16/17 CSE 484 / CSE M 584 - Spring 2017 27

  28. Android Applications • Activities provide user interfaces. • Services run in the background. • BroadcastReceivers receive messages sent to multiple applications (e.g., BOOT_COMPLETED) . • ContentProviders are databases addressable by their application-defined URIs. • AndroidManifest.xml – Specifies application components – Specifies required permissions 5/16/17 CSE 484 / CSE M 584 - Spring 2017 28

  29. Rooting and Jailbreaking • Allows user to run applications with root privileges – e.g., modify/delete system files, app management, CPU management, network management, etc. • Done by exploiting vulnerability in firmware to install su binary. • Double-edged sword… • Note: iOS is more restrictive than Android – Doesn’t allow “side-loading” apps, etc. 5/16/17 CSE 484 / CSE M 584 - Spring 2017 29

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Geneva www.ilo.org/labadmin Who We Are What We Do v LAB/ADMIN was established in 2009 to:

Geneva www.ilo.org/labadmin Who We Are What We Do v LAB/ADMIN was established in 2009 to:

Labour Administration and Inspection Programme (LAB/ADMIN) Information Session 101 st ILC, June 2012 Geneva www.ilo.org/labadmin Who We Are What We Do v LAB/ADMIN was established in 2009 to: Lead ILOs work on technical support and

396 views • 7 slides
Admin Generator It's RAD baby! Admin Generator It's RAD baby! Rapid Application Development

Admin Generator It's RAD baby! Admin Generator It's RAD baby! Rapid Application Development

Admin Generator It's RAD baby! Admin Generator It's RAD baby! Rapid Application Development Who am I, and what do I do? Ian P. Christian (aka. pookey) Coding PHP for about 8 years Work for VoIP.co.uk Involved with symfony and

1.13k views • 51 slides
HR ADMIN FORUM/ HRPM ADMIN NETWORK MEETING September 7, 2017 WELCOME NANCY JAGGER & ERIN

HR ADMIN FORUM/ HRPM ADMIN NETWORK MEETING September 7, 2017 WELCOME NANCY JAGGER & ERIN

HR ADMIN FORUM/ HRPM ADMIN NETWORK MEETING September 7, 2017 WELCOME NANCY JAGGER & ERIN RICE AGENDA > Welcome > Benefits Announcements & Open Enrollment Katy Dwyer & Amy Hawkins > Absence Lessons Learned in Workday

382 views • 36 slides
WEBSITE TRAINING August 21, 2017 Logging in to the admin site Usernames will be per building,

WEBSITE TRAINING August 21, 2017 Logging in to the admin site Usernames will be per building,

WEBSITE TRAINING August 21, 2017 Logging in to the admin site Usernames will be per building, not per user Login by going to your school site /wp-admin Example: ct.central301.net/wp-admin or chs.central301.net/wp-admin Passwords

425 views • 18 slides
CS270: Lecture 2. Admin: CS270: Lecture 2. Admin: Check Piazza. CS270: Lecture 2. Admin:

CS270: Lecture 2. Admin: CS270: Lecture 2. Admin: Check Piazza. CS270: Lecture 2. Admin:

CS270: Lecture 2. Admin: CS270: Lecture 2. Admin: Check Piazza. CS270: Lecture 2. Admin: Check Piazza. Today: Finish Path Routing. ???? Path Routing. Given G = ( V , E ) , ( s 1 , t 1 ) ,..., ( s k , t k ) , find a set of k paths

1.82k views • 154 slides
DRUPAL ADMIN UI MODERNIZATION Cristina Chumillas - Ymbra DRUPAL ADMIN UI MODERNIZATION C R I S

DRUPAL ADMIN UI MODERNIZATION Cristina Chumillas - Ymbra DRUPAL ADMIN UI MODERNIZATION C R I S

DRUPAL ADMIN UI MODERNIZATION Cristina Chumillas - Ymbra DRUPAL ADMIN UI MODERNIZATION C R I S T I N A C H U M I L L A S D E S I G N E R & D R U P A L F R O N T E N D @chumillas ckrina I N D E X Initiative overview Design System

1.12k views • 60 slides
PKI based Access Control with Attribute on n users Application Profile (AP) cwr cwr cwr cwr

PKI based Access Control with Attribute on n users Application Profile (AP) cwr cwr cwr cwr

Visibl Card issuing Unive Foreign users Card e rsity holder Metho intern Data element Stude Staff Guest Unive Unive Other ds al nts admin admin rsity rsity s admin istrati istrati users consol depen istrati on on

407 views • 21 slides
Cabot School ! DiNisco Design PARTNERSHIP Concept Diagram ADMIN. ADMIN. PREVIOUSLY PROPOSED

Cabot School ! DiNisco Design PARTNERSHIP Concept Diagram ADMIN. ADMIN. PREVIOUSLY PROPOSED

!! Working Group Meeting May 23, 2016 Cabot School ! DiNisco Design PARTNERSHIP Concept Diagram ADMIN. ADMIN. PREVIOUSLY PROPOSED CURRENT PROPOSED Circulation Diagrams SERVICE SERVICE KITCHEN BLUE ZONE BLUE ZONE & PARKING

285 views • 17 slides
Presentation to NSW PAC re Gullen Range, 5 th September, 2014 Michael Crawford, B Sc, BA Admin, M

Presentation to NSW PAC re Gullen Range, 5 th September, 2014 Michael Crawford, B Sc, BA Admin, M

Presentation to NSW PAC re Gullen Range, 5 th September, 2014 Michael Crawford, B Sc, BA Admin, M Admin Studies, PhD Director, Waubra Foundation Overview Wind farm noise damages health and well-being over a wide area Noise guidelines

245 views • 13 slides
Writing online Georgina.brooke@admin.ox.ac.uk Olivia.Williams@admin.ox.ac.uk Digital

Writing online Georgina.brooke@admin.ox.ac.uk Olivia.Williams@admin.ox.ac.uk Digital

Digital Communications Writing online Georgina.brooke@admin.ox.ac.uk Olivia.Williams@admin.ox.ac.uk Digital Communications Creating engaging content Digital Communications Writing up your article Digital Communications Visual appeal

683 views • 40 slides
Trafford Co-ordination Centre www.traffordccg.nhs.uk Trafford Co-ordination Centre Admin Team

Trafford Co-ordination Centre www.traffordccg.nhs.uk Trafford Co-ordination Centre Admin Team

Trafford Co-ordination Centre www.traffordccg.nhs.uk Trafford Co-ordination Centre Admin Team Referral Care Management Co-ordination 12 Admin Staff Manage Proxy/Integrated Co-location Primary Services Referrals Homecare

240 views • 13 slides
KUSTOMIZE H ELLO $ OC ADM NEW - PROJECT HCS-C OMPANY \ -- ADMIN ="V INCENT VAN D AM "

KUSTOMIZE H ELLO $ OC ADM NEW - PROJECT HCS-C OMPANY \ -- ADMIN ="V INCENT VAN D AM "

KUSTOMIZE H ELLO $ OC ADM NEW - PROJECT HCS-C OMPANY \ -- ADMIN ="V INCENT VAN D AM " \ -- DISPLAY - NAME =" JOYREX 2001" \ -- ADMIN - ROLE ="O PEN S OURCE A RCHITECT " D ELIVERING SOFTWARE D EVELOPED A

695 views • 24 slides
Caterpillar Pre-School Monday 6 th July Welcome! Pre-School Admin Tapestry Our Setting

Caterpillar Pre-School Monday 6 th July Welcome! Pre-School Admin Tapestry Our Setting

Cheselbournes Caterpillar Pre-School Monday 6 th July Welcome! Pre-School Admin Tapestry Our Setting The EYFS Questions Pre- School Admin Welcome Pack all information should be in this document. Please

472 views • 24 slides
Conficker / Downadup spreading vectors MS08-067 Vulnerability in Server service USB-Flash drives

Conficker / Downadup spreading vectors MS08-067 Vulnerability in Server service USB-Flash drives

Conficker / Downadup spreading vectors MS08-067 Vulnerability in Server service USB-Flash drives Autorun & Autoplay ADMIN$ shares 2 abc123 academia access account Admin admin admin1 admin12 admin123 adminadmin administrator

643 views • 17 slides
Class Admin Overview Overview of Complex Networks Class admin Class admin Basic definitions

Class Admin Overview Overview of Complex Networks Class admin Class admin Basic definitions

Overview Class Admin Overview Overview of Complex Networks Class admin Class admin Basic definitions Basic definitions Complex Networks, Course 303A, Spring, 2009 Books Books Examples of Examples of Complex Networks Complex Networks

368 views • 14 slides
Outline Overview Overview of Complex Networks Class admin Class admin Complex Networks,

Outline Overview Overview of Complex Networks Class admin Class admin Complex Networks,

Overview Outline Overview Overview of Complex Networks Class admin Class admin Complex Networks, CSYS/MATH 303, Spring, 2010 Class admin Basic definitions Basic definitions Popularity Popularity Basic definitions Examples of Examples

460 views • 16 slides
Council of Chapters Officer Appreciation Workshop Alex Hanlon, COCGB Chair Elect 2017 Tuesday,

Council of Chapters Officer Appreciation Workshop Alex Hanlon, COCGB Chair Elect 2017 Tuesday,

Council of Chapters Officer Appreciation Workshop Alex Hanlon, COCGB Chair Elect 2017 Tuesday, August 1 st 4 to 6 PM Hilton Key Ballroom 1 Agenda 4:00 to 4:20 Hors doeuvres and networking 4:20 to 4:30 Introduction 4:30 to 6:00

508 views • 13 slides
Global 3D MHD Simulations of Dynamo Effects Lia Hankla University of Colorado, Boulder

Global 3D MHD Simulations of Dynamo Effects Lia Hankla University of Colorado, Boulder

Global 3D MHD Simulations of Dynamo Effects Lia Hankla University of Colorado, Boulder Bhupendra Mishra, Jake Simon, Mitch Begelman, Phil Armitage 1 Black Hole Binary State Transitions First discovered: Cygnus X-1 Usually: X-ray burst,

904 views • 12 slides
The Perrin-McClintock Resolvent, Solvable Quintics and Plethysms Frank Grosshans In his seminal

The Perrin-McClintock Resolvent, Solvable Quintics and Plethysms Frank Grosshans In his seminal

The Perrin-McClintock Resolvent, Solvable Quintics and Plethysms Frank Grosshans In his seminal paper of 1771, Lagrange found that certain polynomials of degree 6 called resolvents could be used to determine whether a quintic polynomial was

873 views • 33 slides
W3C Workshop on Rule Languages for Interoperability Colleen McClintock (cmcclintock@ilog.com) 1

W3C Workshop on Rule Languages for Interoperability Colleen McClintock (cmcclintock@ilog.com) 1

Apr 27,28 2005 W3C Workshop on Rule Languages for Interoperability Colleen McClintock (cmcclintock@ilog.com) 1 Christian de Sainte Marie (csma@ilog.fr) W3C Workshop on Rule Language Interoperability Business Rules and Product Rules

108 views • 8 slides
SEEC Toolbox seminars Animal movement modelling with moveHMM Theoni Photopoulou

SEEC Toolbox seminars Animal movement modelling with moveHMM Theoni Photopoulou

SEEC Toolbox seminars Animal movement modelling with moveHMM Theoni Photopoulou theoni.photopoulou@uct.ac.za theoni p 29 June 2017 Brief overview Animal movement data What is it Why is it interesting What do we want to know Analysing

736 views • 25 slides
September 18 - The Impossible Location Fallacy Birds Eye View of SF Bay Area - 1868 Chain of

September 18 - The Impossible Location Fallacy Birds Eye View of SF Bay Area - 1868 Chain of

t o r y o f A H i s Golden Gate Park Fromm Institute - Fall 2019 - John Freeman September 18 - The Impossible Location Fallacy Birds Eye View of SF Bay Area - 1868 Chain of Lakes Mallard Lake Strawberry Hill Botanical Garden Lake

626 views • 44 slides
Direct Current Electricity 14-1 Equivalent Units A = W/V = N/T m C = J/V = N m/V F

Direct Current Electricity 14-1 Equivalent Units A = W/V = N/T m C = J/V = N m/V F

Direct Current Electricity 14-1 Equivalent Units A = W/V = N/T m C = J/V = N m/V F = C/V = C 2 /J = C 2 /N M H = V s/A = T m 2 /A J = N m = V C = C 2 /F N = J/m = V C/m T = N s/C m = N/A m V

779 views • 60 slides
Non Elderly Uninsured Rate Federal Politics and Californias Potential to Resist Andrew B.

Non Elderly Uninsured Rate Federal Politics and Californias Potential to Resist Andrew B.

Non Elderly Uninsured Rate Federal Politics and Californias Potential to Resist Andrew B. Bindman MD Professor of Medicine and Epidemiology & Biostatistics University of California San Francisco >20 million have gained coverage

218 views • 8 slides

More recommend