challenges with building end to end encrypted challenges
play

Challenges With Building End-to-End Encrypted Challenges With - PowerPoint PPT Presentation

Nov 27, 2023 •41 likes •361 views

Challenges With Building End-to-End Encrypted Challenges With Building End-to-End Encrypted Applications Learnings From Etesync Applications Learnings From Etesync stosb.com/talks Tom Hacohen tom@stosb.com FOSDEM 2019 @TomHacohen

  1. Challenges With Building End-to-End Encrypted Challenges With Building End-to-End Encrypted Applications – Learnings From Etesync Applications – Learnings From Etesync stosb.com/talks Tom Hacohen tom@stosb.com FOSDEM 2019 @TomHacohen

  2. Who Am I? Who Am I? Long time Open Source developer Privacy and digital security enthusiast Maintainer and creator of EteSync Building a security startup with Entrepreneur First

  3. Secure, end-to-end encrypted and fully versioned personal information sync for Android, the desktop and the web. Currently supports contacts, calendars and tasks, with more on the way.

  4. EteSync Overview EteSync Overview Encrypted and Tamper-Proof Journal Encrypted and Tamper-Proof Journal

  5. EteSync Overview EteSync Overview How Are the Encryption Keys Derived How Are the Encryption Keys Derived # The key from all of the others are derived master_key = Scrypt(user_email, password) # An encryption key for each journal and its contents journal_key = HMAC_SHA256(journal_uid, master_key) journal_key_enc = HMAC_SHA256("aes", journal_key) journal_key_mac = HMAC_SHA256("hmac", journal_key)

  6. EteSync Overview EteSync Overview How Is the Data Encrypted How Is the Data Encrypted # The journal itself (meta information) journal_info_enc = iv + AES_CBC_PKCS7(iv, journal_key_enc, journal_info_clear) journal_info_mac = HMAC_SHA256(journal_info_enc + version, journal_key_mac) journal_info = journal_info_mac + journal_info_enc journal_uid = RANDOM_SHA256() # A random sha256 like blob # The journal entries: prev_uid = PREVIOUS_UID # The uid of the previous entry entry_info = iv + AES_CBC_PKCS7(iv, journal_key_enc, entry_info_clear) entry_uid = HMAC_SHA256(prev_uid + entry_info + version, journal_key_mac)

  7. So Let's Talk About the Challenges… So Let's Talk About the Challenges…

  8. Platform Portability Platform Portability Everything is implemented on the client, so… All clients need libraries for all crypto primitives Want library support on all platforms (e.g. iCal support) Need to write the same code for all platforms

  9. Account Init & Protocol Upgrade Account Init & Protocol Upgrade Everything is implemented on the client, so… On every client: Account init code - set initial state Account upgrade code - changes in data format Support for past and current protocol versions Partial "solution" : only implement in master clients

  10. Protocol Upgrade Protocol Upgrade Every client needs to support the new version, so either… Update all apps simultaneously (hard with F-Droid) First deploy support, and then deploy upgrade logic

  11. Protocol Upgrade (Part 2) Protocol Upgrade (Part 2) You can't transform the data on the server, so… You can't support multiple API versions at once Gracefully handle future unsupported versions

  12. What's Considered a Protocol Upgrade? What's Considered a Protocol Upgrade? Everything. Changing cryptography methods (e.g. elliptic curves) Changing cryptography parameters (e.g. for Scrypt) Changing the structure of the data Every other thing you can think of

  13. Development Speed Development Speed Did I mention everything needs to be implemented on every client?

  14. Debugging Debugging You can't ask for data, and when you do, you o�en won't get it No access to data make it hard to investigate issues Can't test changes and fixes on existing data Can't look in the data for affected users Have to rely on users to test and reproduce on their own devices

  15. 3rd Party Applications 3rd Party Applications We can't trust 3rd parties with encryption passwords, so… We can't easily add integrations with 3rd party apps Never let users enter credentials in 3rd party apps

  16. Data Immutability Data Immutability Because the journal is immutable: You can't fix saved malformed data Can't update the saved format Always need to support old formats and malformed data You guessed it. On all the clients!

  17. Usability Issues Usability Issues Having both an encryption and a login password Encryption password recovery is not straightforward

  18. You Are Held to a Higher Standard You Are Held to a Higher Standard Signed Pages - secure web app delivery As mentioned before: can't ask for data Watch out with what you put in logs and debug info

  19. A Few More Things to Watch out For… A Few More Things to Watch out For…

  20. Performance Considerations Performance Considerations No server-side search or processing Have to download all the data, or at least an index However, most operations are fast because they are local

  21. A False Sense of Security A False Sense of Security Revoking or changing encryption passwords: Encrypt the old key with the new key (potentially insecure) Re-encrypt the whole data (problematic) Old key for past data, new key for new data (complex) Offer alternatives? How do you educate users about the trade‑offs?

  22. Replay and Downgrade Attacks Replay and Downgrade Attacks

  23. Leaking User Data Leaking User Data Sensitive information in logs and debug info Mixing together user-controlled and non-user controlled data Optimisations o�en leak data, for example: Compressing data can o�en lead to leaks De-duplicating files using clear-text SHA256 sum Variable bitrate audio and video

  24. The UI Can Make All the Difference The UI Can Make All the Difference Informing users when data is changed Showing users how many devices are active There are other potential flaws and safeguards

  25. Improving the EteSync Protocol Improving the EteSync Protocol

  26. Untying the Username and Encryption Key Untying the Username and Encryption Key Deriving the key from the username proved problematic Was a useful shortcut but a big pain Can't easily change the username It accidentally made the user inconsistently case sensitive

  27. Improve Integrity Assurances Improve Integrity Assurances Sign journal items (rather than just HMAC) HMAC the global state + have a counter

  28. Move to Per-Device Keys Move to Per-Device Keys Can better use hardware tokens Sometimes built-in hardware! Can better handle lost devices Useful infrastructure for 3rd party apps Can have a key per app, not just device…

  29. Finishing Notes Finishing Notes End-to-end encryption is the only way forward! Privacy is a sacred right, don't give it up! You're the weakest link:

  30. Useful Links Useful Links My blog: https://stosb.com EteSync's website: https://www.etesync.com EteSync's sources: https://github.com/etesync Signed Pages: https://github.com/tasn/webext-signed- pages

  31. Questions? Questions? stosb.com/talks Tom Hacohen tom@stosb.com FOSDEM 2019 @TomHacohen

  32. Attribution Attribution Icon by Freepik from flaticon.com is licensed under CC 3.0 BY Icon by Smashicons from flaticon.com is licensed under CC 3.0 BY Compression example by the unicode.org Security by Randall Munroe ( XKCD )

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

100% Encrypted Web New Challenges for TLS Kirk Hall Dir Policy & Compliance, Certificate

100% Encrypted Web New Challenges for TLS Kirk Hall Dir Policy & Compliance, Certificate

#RSAC P D AC-W10 SESSION ID: SESSION ID: 100% Encrypted Web New Challenges for TLS Kirk Hall Dir Policy & Compliance, Certificate Services Entrust Datacard #RSAC We are moving toward a 100% encrypted web but can we get it right?

857 views • 58 slides
BISHOPS DAY in the Region MESSAGE CELEBRATIONS CHALLENGES CHALLENGES Trust CHALLENGES

BISHOPS DAY in the Region MESSAGE CELEBRATIONS CHALLENGES CHALLENGES Trust CHALLENGES

BISHOPS DAY in the Region MESSAGE CELEBRATIONS CHALLENGES CHALLENGES Trust CHALLENGES Urban Ministries CHALLENGES FINDING SHAPE for a CHANGING CHURCH CHALLENGES for GREATER NEW JERSEY 560 congregations 90,697 members

579 views • 15 slides
THROUGH BUILDING TIES THAT BIND: SNAPSHOT THOUGHTS FROM THE TML- GLOBAL CHALLENGES PROJECT Dr

THROUGH BUILDING TIES THAT BIND: SNAPSHOT THOUGHTS FROM THE TML- GLOBAL CHALLENGES PROJECT Dr

TACKLING GLOBAL CHALLENGES THROUGH BUILDING TIES THAT BIND: SNAPSHOT THOUGHTS FROM THE TML- GLOBAL CHALLENGES PROJECT Dr Nelson Mlambo University of Namibia Transnationalizing Modern Languages Global Challenges: Co-researcher

300 views • 9 slides
Green Building: Green Building: Todays Practices Todays Practices Tomorrows Challenges

Green Building: Green Building: Todays Practices Todays Practices Tomorrows Challenges

Montgomery County Planning Board 2009 Growing Smarter Speaker Series Thursday, February 12 th , 2009 Green Building: Green Building: Todays Practices Todays Practices Tomorrows Challenges Tomorrows Challenges Carl Elefante, FAIA,

845 views • 72 slides
Challenges in Building Quantum Computers Anastasiia Butko Computational Research Division (CRD)

Challenges in Building Quantum Computers Anastasiia Butko Computational Research Division (CRD)

Challenges in Building Quantum Computers Anastasiia Butko Computational Research Division (CRD) Lawrence Berkeley National Laboratory (LBNL) July 7, 2020 Computing Sciences Summer Student Program Talk Berkeley, CA Challenges in Building

543 views • 43 slides
Order-Revealing Encry ryption: Definitions, Constructions, and Challenges David Wu Searching on

Order-Revealing Encry ryption: Definitions, Constructions, and Challenges David Wu Searching on

Order-Revealing Encry ryption: Definitions, Constructions, and Challenges David Wu Searching on Encrypted Data Database breaches have become the norm rather than the exception [Data taken from Vigilante.pw] Searching on Encrypted Data

1.19k views • 53 slides
Challenges in building human networks Dr. Abdur Chowdhury Outline Human networks?

Challenges in building human networks Dr. Abdur Chowdhury Outline Human networks?

Challenges in building human networks Dr. Abdur Chowdhury Outline Human networks? Challenges Human Network? The Internet Today Computers ~1.5 Billion ~2.4 Billion people online 200M domains, >50B pages Education

593 views • 18 slides
GREEN BUILDING : Challenges and Opportunities Sustainability a process meeting the needs of

GREEN BUILDING : Challenges and Opportunities Sustainability a process meeting the needs of

GREEN BUILDING : Challenges and Opportunities Sustainability a process meeting the needs of the present, but without compromising the ability of the future generations to meet their own needs Kevin NG, Henderson Land GREEN BUILDING :

551 views • 26 slides
Technological Change and the challenges for development: building on the experience of less

Technological Change and the challenges for development: building on the experience of less

GLOBELICS: Rio de Janeiro - 3-6 November 2003 Technological Change and the challenges for development: building on the experience of less favoured regions Manuel Heitor in collaboration with: Nuno vila, Pedro Conceio and Francisco Veloso

623 views • 50 slides
Building MEL capacity Challenges and opportunities Ge Gene nevieve Lau Laurier London Funders

Building MEL capacity Challenges and opportunities Ge Gene nevieve Lau Laurier London Funders

Building MEL capacity Challenges and opportunities Ge Gene nevieve Lau Laurier London Funders R&E Group, 7 March 2018 Building MEL C Building MEL Capacity apacity 1. Presentation and discussion- focusing on: The purpose and motivations

285 views • 15 slides
Building a Business on Data: Challenges and Rewards Naras Eechambadi and Kurt Newman March 27,

Building a Business on Data: Challenges and Rewards Naras Eechambadi and Kurt Newman March 27,

Building a Business on Data: Challenges and Rewards Naras Eechambadi and Kurt Newman March 27, 2019 Todays Presentation Business Opportunity The Data Markets & Use Cases Challenges Solution Results

433 views • 24 slides
Challenges & Opportunities for the Challenges & Opportunities for the Pharmaceutical

Challenges & Opportunities for the Challenges & Opportunities for the Pharmaceutical

Challenges & Opportunities for the Challenges & Opportunities for the Pharmaceutical Industry Dr Gino Martini FRPharmS EIPG President Why do I enjoy being an Industrial Pharmacist? Something happened here Sir Alexander Fleming & his

647 views • 46 slides
The technical and mathematical challenges What are the goals that set the challenges? We want

The technical and mathematical challenges What are the goals that set the challenges? We want

The technical and mathematical challenges What are the goals that set the challenges? We want maps that can yield an atomic model with a known accuracy, and we want to visualize conformational variability. We want tomograms of cells in which we

813 views • 37 slides
CHALLENGES AND OPPORTUNITIES IN BUILDING RRI INTO HIGHER EDUCATION INSTITUTIONS JACQUELINE

CHALLENGES AND OPPORTUNITIES IN BUILDING RRI INTO HIGHER EDUCATION INSTITUTIONS JACQUELINE

CHALLENGES AND OPPORTUNITIES IN BUILDING RRI INTO HIGHER EDUCATION INSTITUTIONS JACQUELINE BROERSE ATHENA, VRIJE UNIVERSITEIT AMSTERDAM 7 th Living Knowledge Conference Dublin, 22-24 June 2016 WHY RRI? Science and technology important

235 views • 22 slides
1. Building Description and Background 2. Fire 3. Inquest 4. Challenges 5. Lessons Learned 6.

1. Building Description and Background 2. Fire 3. Inquest 4. Challenges 5. Lessons Learned 6.

917 Dundas Street W, Whitby 2016 OMFPOA Symposium Fire Chief Dave Speed CFPO Nicholas Webb 1. Building Description and Background 2. Fire 3. Inquest 4. Challenges 5. Lessons Learned 6. Moving Forward 1) Building Description and Background

468 views • 15 slides
Introduction Indian/International Regulations Challenges Way Forward 1 1 3/19/2018

Introduction Indian/International Regulations Challenges Way Forward 1 1 3/19/2018

3/19/2018 Building a Nation Not just Highways Transportation of Hazardous Chemicals Key Challenges and Potential Solutions Topics Covered `` Introduction Indian/International Regulations Challenges Way Forward 1 1 3/19/2018

430 views • 10 slides
CSCE 2214 Lab 06 Pre-Knowledge In order to complete this lab you will need to understand the

CSCE 2214 Lab 06 Pre-Knowledge In order to complete this lab you will need to understand the

CSCE 2214 Lab 06 Pre-Knowledge In order to complete this lab you will need to understand the function of the CPU control block, and the sign extend block Pre-Lab The pre- lab for this week is shown at the end of last weeks lab. Objective In

81 views • 4 slides
What Would it Take to Train an Agent to Play with a Shape-Sorter? Feryal Behbahani Shape sorter?

What Would it Take to Train an Agent to Play with a Shape-Sorter? Feryal Behbahani Shape sorter?

What Would it Take to Train an Agent to Play with a Shape-Sorter? Feryal Behbahani Shape sorter? Simple children toy: put shapes in the correct holes Trivial for adults Yet children cannot fully solve until 2 years old (!)

805 views • 21 slides
Dynamically Optimizing End-to-End Latency for Time-Triggered Networks Zonghui Li NEAT2019

Dynamically Optimizing End-to-End Latency for Time-Triggered Networks Zonghui Li NEAT2019

Dynamically Optimizing End-to-End Latency for Time-Triggered Networks Zonghui Li NEAT2019 2019/8/19 1 Content Background Motivation Best TT Protocol Evaluation Conclusion and Future Work 2 Background

434 views • 26 slides
Global Plan to End TB Monitoring progress How Global Plan is being used?...1 United Nations

Global Plan to End TB Monitoring progress How Global Plan is being used?...1 United Nations

Global Plan to End TB Monitoring progress How Global Plan is being used?...1 United Nations High-Level Meeting on HIV/AIDS in June 2016 Heads of State and Governments endorse UN Political Declaration and commit to: Funding and

472 views • 18 slides
Enterprise Storage Architecture Fall 2019 Security Tyler Bletsch Duke University What this

Enterprise Storage Architecture Fall 2019 Security Tyler Bletsch Duke University What this

ECE590-03 Enterprise Storage Architecture Fall 2019 Security Tyler Bletsch Duke University What this lecture contains Included: Not included: Cryptography internals Basic definitions How to program using Fundamental

543 views • 51 slides
Voting Lecture 22 Requirements Requirements Integrity/End-to-End verifiability Requirements

Voting Lecture 22 Requirements Requirements Integrity/End-to-End verifiability Requirements

Voting Lecture 22 Requirements Requirements Integrity/End-to-End verifiability Requirements Integrity/End-to-End verifiability Collected as cast: Each voter should be convinced that their vote was collected correctly Requirements

1.43k views • 129 slides
Network Security Where we are in the Course Security crosses all layers Applicatjon

Network Security Where we are in the Course Security crosses all layers Applicatjon

Network Security Where we are in the Course Security crosses all layers Applicatjon Transport Network Link Physical CSE 461 University of Washington 2 Security Threats Security is like performance Means many things

1.12k views • 92 slides
FUTURE INTERNET ARCHITECTURE Marc Mosko Palo Alto Research Center ACM ICN Panel 2016, Kyoto

FUTURE INTERNET ARCHITECTURE Marc Mosko Palo Alto Research Center ACM ICN Panel 2016, Kyoto

FUTURE INTERNET ARCHITECTURE Marc Mosko Palo Alto Research Center ACM ICN Panel 2016, Kyoto Japan 1 FUTURE INTERNET ARCHITECTURE Protocol Feature 2 FUTURE INTERNET ARCHITECTURE* Protocol Feature IPv6 Large address space,

76 views • 4 slides

More recommend