challenges and possibilities for safe and secure asn 1
play

Challenges and Possibilities for Safe and Secure ASN.1 Encoders and - PowerPoint PPT Presentation

Feb 14, 2024 •251 likes •706 views

Challenges and Possibilities for Safe and Secure ASN.1 Encoders and Decoders Mark Tullsen Galois, Inc. LangSec, May 2018 Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 1 / 32 Outline Introduction 1 Five

  1. Challenges and Possibilities for Safe and Secure ASN.1 Encoders and Decoders Mark Tullsen Galois, Inc. LangSec, May 2018 Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 1 / 32

  2. Outline Introduction 1 Five Things to Like About ASN.1 2 Obstacles to Secure ASN.1 3 Approaches to Secure ASN.1 Encoders/Decoders 4 Galois’ Current & Future Work 5 Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 2 / 32

  3. Introduction 1 Five Things to Like About ASN.1 2 Obstacles to Secure ASN.1 3 Approaches to Secure ASN.1 Encoders/Decoders 4 Galois’ Current & Future Work 5 Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 3 / 32

  4. About This Talk Primarily a "position paper" : Secure ASN.1 IMHO For technical details, see our CAV 2018 paper Formal Verification of a Vehicle-to-Vehicle (V2V) Messaging System Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 4 / 32

  5. What is ASN.1? ASN.1 is not a format a single specification a library (that we can implement once) ASN.1 is a language by which we define hundreds of protocols and data-formats! Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 5 / 32

  6. The Importance (& Risks) of ASN.1 ASN.1 pervasive Decoding ASN.1-defined messages: definitely on the attack surface Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 6 / 32

  7. Introduction 1 Five Things to Like About ASN.1 2 Obstacles to Secure ASN.1 3 Approaches to Secure ASN.1 Encoders/Decoders 4 Galois’ Current & Future Work 5 Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 7 / 32

  8. ASN.1 is Abstract ASN.1 does not limit us to a single implementation language nor to a single de facto representation of the "abstract" values T ::= SEQUENCE (SIZE(1..4)) OF INTEGER One may have different concrete values/representations: typedef int T[4]; // probably not if SI Z E(1..10000) typedef int *T; // length elsewhere , or special encode of "last" typedef struct node *T; // i.e., a linked-list Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 8 / 32

  9. ASN.1 is Highly Expressive (for describing data) ASN.1 provides an extensive and powerful set of types and constraints for describing data (beyond typical programming languages!) Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 9 / 32

  10. ASN.1 is Highly Expressive (for describing data) ASN.1 provides an extensive and powerful set of types and constraints for describing data (beyond typical programming languages!) Address::= SEQUENCE { street VisibleString (SI Z E (5 .. 50)) OPTIONAL , city VisibleString (SI Z E (2..30)), state VisibleString (SI Z E(2) ^ FROM ("A".." Z ")), zipCode NumericString (SI Z E(5 | 9)) } ListOfItems ::= SEQUENCE (SI Z E (1..100)) OF Item Item ::= SEQUENCE { itemCode INTEGER (1..99999), power INTEGER (110 | 220), deliveryTime INTEGER (8..12 | 14..19), isTaxable BOOLEAN } Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 9 / 32

  11. ASN.1 is Compositional I.e., we can compose small data definitions to create larger ones. Has a real module system. Can refer to modules outside the current system. Can embed data of undetermined types, safely and sanely. With Information Objects . . . even more elegantly Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 10 / 32

  12. ASN.1 is Versatile: Multiple Encoding Schemes Allows for a variety of encoding methods, each specified separately from the definition of abstract values. E.g., Basic Encoding Rules (BER), Distinguished Encoding Rules (DER), XML Encoding Rules (XER), Canonical XML Encoding Rules (CXER), Packed Encoding Rules (PER, unaligned: UPER, canonical: CPER, canonical unaligned: CUPER), Octet Encoding Rules (OER, canonical: COER), etc. Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 11 / 32

  13. ASN.1 is Versatile: Multiple Encoding Schemes Allows for a variety of encoding methods, each specified separately from the definition of abstract values. E.g., Basic Encoding Rules (BER), Distinguished Encoding Rules (DER), XML Encoding Rules (XER), Canonical XML Encoding Rules (CXER), Packed Encoding Rules (PER, unaligned: UPER, canonical: CPER, canonical unaligned: CUPER), Octet Encoding Rules (OER, canonical: COER), etc. Self-describing: BER, DER, etc. Highly bit-efficient: *OER, *PER (must know ASN.1 type to decode) Canonical signifies that a given value has only a single valid encoding E.g., for X.509, DER is used (canonical) Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 11 / 32

  14. ASN.1 is Extensible: Features for Protocol Evolution Provides mechanisms for extensibility to allow protocols and formats to evolve gracefully. MyCoffeeShopMenu ::= SEQUENCE { coffee Price, tea Price, ...!1, -- extensible , exception -marker! [[ sandwich Price, -- Version2 dessert Price ]] } Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 12 / 32

  15. ASN.1 is Extensible: Features for Protocol Evolution Provides mechanisms for extensibility to allow protocols and formats to evolve gracefully. MyCoffeeShopMenu ::= SEQUENCE { coffee Price, tea Price, ...!1, -- extensible , exception -marker! [[ sandwich Price, -- Version2 dessert Price ]] } This data specification marked as extensible has evolved The bits on the wire indicate if the data is in the base or extension Thus, Version1 encoders/decoders work on Version2 data. Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 12 / 32

  16. Introduction 1 Five Things to Like About ASN.1 2 Obstacles to Secure ASN.1 3 Approaches to Secure ASN.1 Encoders/Decoders 4 Galois’ Current & Future Work 5 Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 13 / 32

  17. Obstacles to Secure ASN.1 Following Frederick Brooks—and Aristotle—in the use of these terms: Obstacles, Essential (intrinsic, "of the essence") Obstacles, Accidental (historical, poor design, etc.) Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 14 / 32

  18. Essential Obstacles The Five Things to Like each creates some degree of complexity in the ASN.1 definition language itself non-trivial learning curve for users and implementers complexity for an ASN.1 compiler complexity in (and multiplicity of) the encode/decode routines etc. Thus, a large effort to fully support the language Unsurprisingly, fully compliant compilers are expensive & proprietary There will be a loss of abstraction in the concrete types: room for errors in the interfacing code. (The cost of Things to Like 1, 2, 5.) With new & improved (bit-efficient) encoding schemes (PER, UPER, OER, etc.), Previous—and simpler—library-based solutions inadequate Compiler that uses global knowledge and "constraint solving": recommended! Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 15 / 32

  19. Accidental Obstacles Evolutionary artifacts Complicate the language Force us to support old features and old specs E.g., explicit TAGs / AUTOMATIC TAGS newer encoding schemes that fix old ones methods to encode unknowns or parameters Over-complexity Information Objects Encoding scheme details e.g., long tags vs. long lengths vs. long values Many closely related encoding schemes (is there a canonical encoding or not) The ASN.1 Language itself Literally thousands of grammar rules to parse the language. Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 16 / 32

  20. The Unfortunate Outcome ASN.1’s complex and evolving language features, as well as its complex and evolving encoding schemes, together hinder adoption increase the complexity of tools & compilers, and necessitate large and complex encoder/decoder implementations. Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 17 / 32

  21. The Unfortunate Outcome ASN.1’s complex and evolving language features, as well as its complex and evolving encoding schemes, together hinder adoption increase the complexity of tools & compilers, and necessitate large and complex encoder/decoder implementations. None of which bode well for the task of creating robust & secure implementations. Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 17 / 32

  22. Introduction 1 Five Things to Like About ASN.1 2 Obstacles to Secure ASN.1 3 Approaches to Secure ASN.1 Encoders/Decoders 4 Galois’ Current & Future Work 5 Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 18 / 32

  23. The Goal . . . creating robust & secure 1 encoder/decoder implementations. 1 secure: absence of software flaws Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 19 / 32

  24. The Goal . . . creating robust & secure 1 encoder/decoder implementations. With very high assurance . 1 secure: absence of software flaws Mark Tullsen (Galois, Inc.) ASN.1 Challenges and Possibilities LangSec, May 2018 19 / 32

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Optical Transport Networks: motivation, challenges and possibilities Huaiyuan Ma PhD Trial

Optical Transport Networks: motivation, challenges and possibilities Huaiyuan Ma PhD Trial

Optical Transport Networks: motivation, challenges and possibilities Huaiyuan Ma PhD Trial Lecture Feb 26th, 2015 NTNU, Trondheim Optical Transport Networks : motivation, challenges and possibilities 1 Outline Why OTN ? Challenges

460 views • 25 slides
Secure Returns SAFE AS A VAULT Secure SECONDS TO UPLOAD Efficient ACCESSIBLE ANYWHERE

Secure Returns SAFE AS A VAULT Secure SECONDS TO UPLOAD Efficient ACCESSIBLE ANYWHERE

Secure Returns SAFE AS A VAULT Secure SECONDS TO UPLOAD Efficient ACCESSIBLE ANYWHERE Convenient What is Secure Returns ? Secure Returns is a secure website where you and your clients can securely upload & download confidential

202 views • 9 slides
Updating Guidance on the Safe and Secure Handling of Medicines September 2016 Why the update?

Updating Guidance on the Safe and Secure Handling of Medicines September 2016 Why the update?

Updating Guidance on the Safe and Secure Handling of Medicines September 2016 Why the update? Section Title The safe and secure handling of medicines brief history Guidelines for the safe THE SAFE AND SECURE HANDLING OF MEDICINES: &

302 views • 13 slides
Transforming Healthcare - Exploring the Current Challenges and Possibilities in Nursing

Transforming Healthcare - Exploring the Current Challenges and Possibilities in Nursing

Transforming Healthcare - Exploring the Current Challenges and Possibilities in Nursing Poster Presentations February 15, 2018 These Presenters have provided outstanding research and projects Be sure to visit each of the participants and

316 views • 10 slides
PS Booster Longitudinal Beam Dynamics in Run 3: New Challenges, New Possibilities Simon

PS Booster Longitudinal Beam Dynamics in Run 3: New Challenges, New Possibilities Simon

PS Booster Longitudinal Beam Dynamics in Run 3: New Challenges, New Possibilities Simon Albright BE-RF-BR Acknowledgements: BLonD Developers, OP-PSB, 1 LIU-PSB, RF Colleagues past and present Contents Introduction Controlled

1.13k views • 94 slides
Neutrino A Astrophys ysics cs: C Challenges a and P Possibilities Sovan C Chakraborty y

Neutrino A Astrophys ysics cs: C Challenges a and P Possibilities Sovan C Chakraborty y

Neutrino A Astrophys ysics cs: C Challenges a and P Possibilities Sovan C Chakraborty y MPI for Physics, Munich Institute of Physics, Bhubaneswar NEUTRINOS Chargeless Spin Weakly interacting Almost massless Ne Neutr

882 views • 71 slides
Alvirne 2020 Budget Committee Presentation November 6, 2019 Project Priorities 1. Safe/secure

Alvirne 2020 Budget Committee Presentation November 6, 2019 Project Priorities 1. Safe/secure

Alvirne 2020 Budget Committee Presentation November 6, 2019 Project Priorities 1. Safe/secure building entrance and Main Office 2. Safe/secure drop-off sequence (site improvements) 3. Improved function for high school cafeteria (student

221 views • 20 slides
Connecting Europe facility Support to safe and secure parkings 6 November 2018 Mobility and

Connecting Europe facility Support to safe and secure parkings 6 November 2018 Mobility and

Connecting Europe facility Support to safe and secure parkings 6 November 2018 Mobility and Transport Safe and secure parking in CEF (2014-2017) 8 Actions (works and studies) co-funded under CEF since 2014. Total budget: 45,574,586

199 views • 9 slides
THE FUTURE OF SHIPPING, CHALLENGES AND POSSIBILITIES Emanuele Grimaldi Keynote speech Helsinki

THE FUTURE OF SHIPPING, CHALLENGES AND POSSIBILITIES Emanuele Grimaldi Keynote speech Helsinki

THE FUTURE OF SHIPPING, CHALLENGES AND POSSIBILITIES Emanuele Grimaldi Keynote speech Helsinki 21st Nov 2019 Net based technologies Robotics/drones DIGITALIZA TION Rationalization - staff costs - human error Economies of scale Capital

637 views • 14 slides
The New York Secure Ammunition and Firearms Enforcement (SAFE) Act Dr. Ed Engelbride Dr. Bruce

The New York Secure Ammunition and Firearms Enforcement (SAFE) Act Dr. Ed Engelbride Dr. Bruce

The New York Secure Ammunition and Firearms Enforcement (SAFE) Act Dr. Ed Engelbride Dr. Bruce McBride Regina McGraw, Esq. Joseph Storch, Esq. Sarah Harvey SAFE Act Basics Response to the Sandy Hook Elementary School shooting in Newton,

512 views • 18 slides
Secure and Fair Enforcement for Mortgage Licensing (SAFE Act) - Background The Secure and

Secure and Fair Enforcement for Mortgage Licensing (SAFE Act) - Background The Secure and

SAFE Act, RESPA, and ECOA Requirements for the HOME Program Administered by The information provided in this document is provided for general information only. TDHCA endeavors to ensure the accuracy and validity of all information contained

649 views • 32 slides
Small Area Health Data Needs, Challenges, and Possibilities from the Lens of Public Health

Small Area Health Data Needs, Challenges, and Possibilities from the Lens of Public Health

Small Area Health Data Needs, Challenges, and Possibilities from the Lens of Public Health Department Accreditation Kaye Bender PHAB President/CEO National Committee on Vital and Health Statistics September 13, 2018 Describing the Lens

255 views • 9 slides
Secure Management of Hazardous Materials in Sri Lanka Hazardous Waste Management PCB Safe

Secure Management of Hazardous Materials in Sri Lanka Hazardous Waste Management PCB Safe

International Conference on Safe & Secure Management of Hazardous Materials in Sri Lanka Hazardous Waste Management PCB Safe Handling & Disposal Ed Verhamme. Managing Partner September 17th & 18th 2015 Consultant, Coach &

732 views • 46 slides
Adaptive FPGA-based Database Accelerators Achievements, Possibilities, and Challenges Daniel

Adaptive FPGA-based Database Accelerators Achievements, Possibilities, and Challenges Daniel

Adaptive FPGA-based Database Accelerators Achievements, Possibilities, and Challenges Daniel Ziener and Jrgen Teich Database Acceleration Overview Idea: Translate each SQL query into an FPGA-based accelerator circuit through run-time

260 views • 10 slides
Challenges in Access Right Assignment for Secure Home Networks

Challenges in Access Right Assignment for Secure Home Networks

Challenges in Access Right Assignment for Secure Home Networks Tiffany Hyun-Jin Kim, Lujo Bauer, James Newsome, Adrian Perrig (CMU) Jesse Walker

484 views • 17 slides
FY 2019 CITY MANAGERS PROPOSED BUDGET Safe, Secure & Just Community April 4, 2018

FY 2019 CITY MANAGERS PROPOSED BUDGET Safe, Secure & Just Community April 4, 2018

FY 2019 CITY MANAGERS PROPOSED BUDGET Safe, Secure & Just Community April 4, 2018 Strategic Plan Theme Areas Distinct & Vibrant Neighborhoods Inclusive City Well-Managed Government Safe & Resilient Community

426 views • 18 slides
Double Beta Decay: Scintillators Mark Chen Queens University Neutrino 2008 Christchurch,

Double Beta Decay: Scintillators Mark Chen Queens University Neutrino 2008 Christchurch,

Double Beta Decay: Scintillators Mark Chen Queens University Neutrino 2008 Christchurch, New Zealand May 28, 2008 1 Talk Outline scintillators for double beta decay: what they can offer survey of experimental programs

595 views • 35 slides
CptS 360 (System Programming) Unit 3: Development Tools Bob Lewis School of Engineering and

CptS 360 (System Programming) Unit 3: Development Tools Bob Lewis School of Engineering and

Unit 3: Development Tools CptS 360 (System Programming) Unit 3: Development Tools Bob Lewis School of Engineering and Applied Sciences Washington State University Spring, 2020 Bob Lewis WSU CptS 360 (Spring, 2020) Unit 3: Development Tools

382 views • 23 slides
Frank Karlitschek KDE Developer openDesktop.org KDE-Look.org KDE-Apps.org Social Desktop

Frank Karlitschek KDE Developer openDesktop.org KDE-Look.org KDE-Apps.org Social Desktop

Frank Karlitschek KDE Developer openDesktop.org KDE-Look.org KDE-Apps.org Social Desktop ownCloud Dienstag, 6. Juli 2010 Unclouding OwnCloud Dienstag, 6. Juli 2010 - Why ownCloud - Current Status - The Future Dienstag, 6. Juli 2010

2.3k views • 186 slides
A multi-tasking wordset for Standard Forth Andrew Haley Consulting Engineer 8 September 2017

A multi-tasking wordset for Standard Forth Andrew Haley Consulting Engineer 8 September 2017

A multi-tasking wordset for Standard Forth Andrew Haley Consulting Engineer 8 September 2017 Background Forth has been multi-tasking for almost 50 years. It's time to standardize it. Chuck Moore's early Forths had a simple and effjcient

263 views • 22 slides
Controlling a Solver Execution: the runsolver Tool Olivier R OUSSEL CRIL - CNRS UMR 8188

Controlling a Solver Execution: the runsolver Tool Olivier R OUSSEL CRIL - CNRS UMR 8188

Controlling a Solver Execution: the runsolver Tool Olivier R OUSSEL CRIL - CNRS UMR 8188 roussel@cril.univ-artois.fr http://www.cril.univ-artois.fr/ roussel/runsolver/ Controlling a Solver Execution: the runsolver Tool 1 Outline The goal

608 views • 16 slides
Introduction to Java Programming Lecture 1 CGS 3416 Spring 2016 January 7, 2016 Main Components

Introduction to Java Programming Lecture 1 CGS 3416 Spring 2016 January 7, 2016 Main Components

Introduction to Java Programming Lecture 1 CGS 3416 Spring 2016 January 7, 2016 Main Components of a computer CPU - Central Processing Unit: The brain of the computer ISA - Instruction Set Architecture: the specific set of low-level

556 views • 20 slides
CS 451 Software Engineering Yuanfang Cai Room 104, University Crossings 215.895.0298

CS 451 Software Engineering Yuanfang Cai Room 104, University Crossings 215.895.0298

CS 451 Software Engineering Yuanfang Cai Room 104, University Crossings 215.895.0298 yfcai@cs.drexel.edu 1 Drexel University Drexel University Dilbert On Requirements 2 Drexel University Introduction The hardest single part of

1.05k views • 41 slides
Operational Choices in Generating Real Time Political Event Data Philip A. Schrodt, Ph.D. Parus

Operational Choices in Generating Real Time Political Event Data Philip A. Schrodt, Ph.D. Parus

Operational Choices in Generating Real Time Political Event Data Philip A. Schrodt, Ph.D. Parus Analytics LLC and Open Event Data Alliance Charlottesville, Virginia USA http://philipschrodt.org https://github.com/openeventdata/ 4th Workshop

628 views • 24 slides

More recommend