conducting large scale active and passive measurements of
play

Conducting large-scale active and passive measurements of SSH - PowerPoint PPT Presentation

Jun 14, 2023 •411 likes •594 views

Conducting large-scale active and passive measurements of SSH deployments Oliver Gasser Master Thesis Advisor: Ralph Holz Chair for Network Architectures and Services Faculty of Computer Science Technische Universit at M unchen June

  1. Conducting large-scale active and passive measurements of SSH deployments Oliver Gasser Master Thesis Advisor: Ralph Holz Chair for Network Architectures and Services Faculty of Computer Science Technische Universit¨ at M¨ unchen June 27, 2012 Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 1

  2. Outline SSH 101 1 Motivation 2 Goals 3 Scanning SSH deployments 4 Schedule 5 Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 2

  3. Outline SSH 101 1 Motivation 2 Goals 3 Scanning SSH deployments 4 Schedule 5 Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 3

  4. SSH Secure Shell Network protocol for secure communication Common applications: Remote shell, command execution, file transfer Two major versions: SSH-1 and SSH-2 Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 4

  5. SSH Connection Client – Server model Mutual authentication Server with host key (fingerprint) Client with password, public key, host based, . . . Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 5

  6. Outline SSH 101 1 Motivation 2 Goals 3 Scanning SSH deployments 4 Schedule 5 Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 6

  7. Motivation Previous scans showed Weak host keys Same host key used on multiple hosts Host based authentication Vulnerable servers Insecure ciphers Examine typo domain exploitation Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 7

  8. Outline SSH 101 1 Motivation 2 Goals 3 Scanning SSH deployments 4 Schedule 5 Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 8

  9. Goals of the Thesis General overview of SSH deployments → topology Identify SSH properties in different locations and ASs Interesting correlations? Known weaknesses SSH-1 Weak host keys (Debian OpenSSL bug) Host keys with bad entropy, short keys Reuse of host keys on multiple hosts Unpatched servers Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 9

  10. Goals of the Thesis Typo domains Known phenomenon: Registration of typo domains like tu-munchen.de Use Levensthein distance to create some based on important (university) domains Use University of Luxembourg’s tool SDBF to create plausible (sub-)domains DNS lookup and SSH scan to prove existence (and warn) Comparison of results: SSH vs. SSL (‘SSL landscape’) Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 10

  11. Optional Work Two choices Build up host key database → notary service Patch Bro to analyze SSH protocol Notaries: Promised by Perspectives, never reality Exists for SSL (Perspectives, Convergence, Crossbear) Implement PoC for OpenSSH Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 11

  12. Outline SSH 101 1 Motivation 2 Goals 3 Scanning SSH deployments 4 Schedule 5 Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 12

  13. Methods Accumulate host names and IP addresses (e.g. zone files) Generate plausible domains and subdomains (e.g. SDBF) Write tool for scanning ssh-keyscan libssh Save and evaluate scanning results Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 13

  14. Related Work IPv4 scans: Lenstra et al.: ‘Ron was wrong, Whit is right’ IPv4 scans: Nadia Henninger et al.: unpublished Yilek et al., IMC 2007: ‘When private keys are public’ Perspectives: First notary concept, includes SSH, not implemented Crossbear (for SSL) Conclusion No comprehensive understanding of SSH deployments and problems Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 14

  15. Outline SSH 101 1 Motivation 2 Goals 3 Scanning SSH deployments 4 Schedule 5 Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 15

  16. Schedule Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 16

  17. The End... Thank you for your attention! Oliver Gasser (TU M¨ unchen) Conducting large-scale active and passive measurements of SSH deployments 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

What Are Active and Passive Voice? Can you write definitions for active and passive

What Are Active and Passive Voice? Can you write definitions for active and passive

What Are Active and Passive Voice? Can you write definitions for active and passive voice? Active Voice In an active sentence, the subject performs the action (the verb) to the object . Passive Voice In a passive sentence, the thing

610 views • 14 slides
MySpeedTest: Active and Passive Measurements of Cellular Data Network Performance Sachit

MySpeedTest: Active and Passive Measurements of Cellular Data Network Performance Sachit

MySpeedTest: Active and Passive Measurements of Cellular Data Network Performance Sachit Muckaden Georgia Institute of Technology Motivation To study the effect of several possible parameters on performance Understand if and how

284 views • 10 slides
OpenINTEL an infrastructure for long-term, large-scale and high-performance active DNS

OpenINTEL an infrastructure for long-term, large-scale and high-performance active DNS

OpenINTEL an infrastructure for long-term, large-scale and high-performance active DNS measurements DACS DACS Design and Analysis of Communication Systems Why measure DNS? (Almost) every networked service relies on DNS DNS

773 views • 15 slides
Active / Passive Voice Acquistion THE PASSIVE VOICE IS EVIL. Two exceptions:

Active / Passive Voice Acquistion THE PASSIVE VOICE IS EVIL. Two exceptions:

Active / Passive Voice Acquistion THE PASSIVE VOICE IS EVIL. Two exceptions: blame-shifting scientific writing Acquisition Active Voice: the subject performs the action of the verb Example: The dog attacked my neighbor.

595 views • 21 slides
Estimation of Oceanic Rainfall using Passive Estimation of Oceanic Rainfall using Passive and

Estimation of Oceanic Rainfall using Passive Estimation of Oceanic Rainfall using Passive and

1 1 Estimation of Oceanic Rainfall using Passive Estimation of Oceanic Rainfall using Passive and Active Measurements from SeaWinds SeaWinds and Active Measurements from Spaceborne Microwave Sensor Microwave Sensor Spaceborne Khalil Ali

1.04k views • 67 slides
DNSSM: A Large Scale Passive DNS Security Monitoring Framework Samuel Marchal, J er ome

DNSSM: A Large Scale Passive DNS Security Monitoring Framework Samuel Marchal, J er ome

samuel.marchal@uni.lu 16/04/12 DNSSM: A Large Scale Passive DNS Security Monitoring Framework Samuel Marchal, J er ome Fran cois, Cynthia Wagner, Radu State, Alexandre Dulaunoy, Thomas Engel, Olivier Festor Motivation Solution

217 views • 18 slides
Large scale retrofit of the UK in 10 years? Aneaka Kellay, Carbon Co-op Credit: Passive House Plus

Large scale retrofit of the UK in 10 years? Aneaka Kellay, Carbon Co-op Credit: Passive House Plus

Large scale retrofit of the UK in 10 years? Aneaka Kellay, Carbon Co-op Credit: Passive House Plus Magazine, https://passivehouseplus.ie/news/health/disastrous-preston-retrofit-scheme-remains-unresolved EWI was meant to increase the value of

296 views • 8 slides
Optimization techniques for large-scale traceroute measurements Benjamin Hof Lehrstuhl f ur

Optimization techniques for large-scale traceroute measurements Benjamin Hof Lehrstuhl f ur

Abschlussvortrag Masters Thesis Optimization techniques for large-scale traceroute measurements Benjamin Hof Lehrstuhl f ur Netzarchitekturen und Netzdienste Institut f ur Informatik Technische Universit at M unchen

855 views • 23 slides
Pinpointing Delay and Forwarding Anomalies Using Large-Scale Traceroute Measurements Romain

Pinpointing Delay and Forwarding Anomalies Using Large-Scale Traceroute Measurements Romain

Pinpointing Delay and Forwarding Anomalies Using Large-Scale Traceroute Measurements Romain Fontugne 1 , Emile Aben 2 , Cristel Pelsser 3 , Randy Bush 1 November 1, 2017 1 IIJ Research Lab, 2 RIPE NCC, 3 University of Strasbourg / CNRS 1 / 25

499 views • 35 slides
Understanding SSH: Large-scale measurements and notary-based authentication Final Presentation

Understanding SSH: Large-scale measurements and notary-based authentication Final Presentation

Understanding SSH: Large-scale measurements and notary-based authentication Final Presentation Oliver Gasser Master Thesis Advisor: Ralph Holz Chair for Network Architectures and Services Faculty of Computer Science Technische Universit

773 views • 74 slides
Applying the Halo Model to Large Scale Structure Measurements of the Luminous Red Galaxies: SDSS

Applying the Halo Model to Large Scale Structure Measurements of the Luminous Red Galaxies: SDSS

Applying the Halo Model to Large Scale Structure Measurements of the Luminous Red Galaxies: SDSS DR7 Preliminary Results Beth Ann Reid Princeton University & ICE, Bellaterra, Spain Collaborators: D Spergel, P Bode, W Percival Special

262 views • 25 slides
Alert: An Architecture for Transforming a Passive DBMS into an Active DBMS Ulf Schreier, Hamid

Alert: An Architecture for Transforming a Passive DBMS into an Active DBMS Ulf Schreier, Hamid

Alert: An Architecture for Transforming a Passive DBMS into an Active DBMS Ulf Schreier, Hamid Pirasesh, Rakesh Agrawal, C. Mohan IBM Almaden Research Center Alert Idea Does not build an Active DMBS from scratch Extends a Passive DBMS into an

474 views • 16 slides
AM++: A Generalized Active Message Framework Andrew Lumsdaine Indiana University Large-Scale

AM++: A Generalized Active Message Framework Andrew Lumsdaine Indiana University Large-Scale

AM++: A Generalized Active Message Framework Andrew Lumsdaine Indiana University Large-Scale Computing Not just for PDEs anymore Computational ecosystem is a bad match for informatics applications Hardware Software

704 views • 43 slides
Passive Voice vs. Active Voice 1 06.19.10 || English 1301: Composition I || D. Glen Smith,

Passive Voice vs. Active Voice 1 06.19.10 || English 1301: Composition I || D. Glen Smith,

Passive Voice vs. Active Voice 1 06.19.10 || English 1301: Composition I || D. Glen Smith, instructor Passive Verbs Avoid excessive use of passive verbs. They can bog down descriptive writing and create boring sentences. (See Bedford p 142.)

202 views • 5 slides
Lecture X: Active vs. Passive Objects 2015-01-27 Prof. Dr. Andreas Podelski, Dr. Bernd Westphal

Lecture X: Active vs. Passive Objects 2015-01-27 Prof. Dr. Andreas Podelski, Dr. Bernd Westphal

Software Design, Modelling and Analysis in UML Lecture X: Active vs. Passive Objects 2015-01-27 Prof. Dr. Andreas Podelski, Dr. Bernd Westphal X 2015-01-27 main Albert-Ludwigs-Universit at Freiburg, Germany Active and Passive

306 views • 4 slides
Internet-scale Experimentation The challenges of large-scale networked system experimentation and

Internet-scale Experimentation The challenges of large-scale networked system experimentation and

Internet-scale Experimentation The challenges of large-scale networked system experimentation and measurements MIT Tech Review on The Loon Project The state of affairs An ever growing Internet ~3 billion people 15 billion devices

1.21k views • 107 slides
Acquisition of domain- specific multiword expressions in Serbian Vesna Paji , Milo Paji

Acquisition of domain- specific multiword expressions in Serbian Vesna Paji , Milo Paji

Acquisition of domain- specific multiword expressions in Serbian Vesna Paji , Milo Paji Center for data mining and bioinformatics University of Belgrade Faculty of Agriculture PARSEME svesna@agrif.bg.ac.rs From domain-specific MWEs

415 views • 4 slides
High Performing Teams Alicia R. McLain, Lean Agile Transformation |Executive Coach E:

High Performing Teams Alicia R. McLain, Lean Agile Transformation |Executive Coach E:

The Stability States of Scrum: 2 Keys to Building High Performing Teams Alicia R. McLain, Lean Agile Transformation |Executive Coach E: SdAgileCoP@gmail.com @AgileLeaderSD #DoDbuildsHighPerformingTeams #DoRbuildsHighPerformingTeams Agenda

692 views • 31 slides
2 3 4 Is competition among regulators good or bad for prudential management of banks and for

2 3 4 Is competition among regulators good or bad for prudential management of banks and for

2 3 4 Is competition among regulators good or bad for prudential management of banks and for financial stability? Competition can lead regulatory authorities to get a reputation for being easier on banks. Competition can lead to pressure to

515 views • 27 slides
Distributed Systems 2014 Assignment 2 Leyna Sadamori leyna.sadamori@inf.ethz.ch Distributed

Distributed Systems 2014 Assignment 2 Leyna Sadamori leyna.sadamori@inf.ethz.ch Distributed

Distributed Systems 2014 Assignment 2 Leyna Sadamori leyna.sadamori@inf.ethz.ch Distributed Sysyems Introduction Assignment 2 Leyna Sadamori | October 6, 2014 | 1 Web Services Distributed Sysyems Introduction Assignment 2

508 views • 23 slides
DNS domain suffix option for DHCPv6 (draft-yan-dhc-dhcpv6-opt-dnszone-03.txt) IETF 63 (Paris)

DNS domain suffix option for DHCPv6 (draft-yan-dhc-dhcpv6-opt-dnszone-03.txt) IETF 63 (Paris)

DNS domain suffix option for DHCPv6 (draft-yan-dhc-dhcpv6-opt-dnszone-03.txt) IETF 63 (Paris) Zhemin, Ding Renxiaing, Yan Alcatel Shanghai Bell Acknowledge Thanks for the comments from: Ralph Droms Bernie Volz Jinmei Tatuya Ted Lemon Joe

344 views • 7 slides
Extbase Cheat Sheet 1 Forge: http://forge.typo3.org/projects/show/typo3v4-mvc Patrick Lobacher

Extbase Cheat Sheet 1 Forge: http://forge.typo3.org/projects/show/typo3v4-mvc Patrick Lobacher

v 2.05 / 21.02.2012 Git: git clone http://git.typo3.org/TYPO3v4/CoreProjects/MVC/extbase.git Extbase Cheat Sheet 1 Forge: http://forge.typo3.org/projects/show/typo3v4-mvc Patrick Lobacher Extension Builder:

250 views • 4 slides
Learning Programs from Noisy Data Veselin Raychev Pavol Bielik Martin Vechev Andreas Krause

Learning Programs from Noisy Data Veselin Raychev Pavol Bielik Martin Vechev Andreas Krause

Learning Programs from Noisy Data Veselin Raychev Pavol Bielik Martin Vechev Andreas Krause ETH Zurich Why learn programs from examples? Input/output examples often easier to provide examples than specification (e.g. in FlashFill) 2

1.11k views • 108 slides
Complex Data Structures 2 Complex Data Structures Arrays, structs, objects How to handle

Complex Data Structures 2 Complex Data Structures Arrays, structs, objects How to handle

Class 12 Questions about project Assign (see Schedule for links) Project proposal Initial: due by e-mail 9/22/09 Final: due (written, 2 pages) 9/29/09 1 Complex Data Structures 2 Complex Data Structures Arrays,

290 views • 18 slides

More recommend