course summary review
play

Course Summary & Review CS 161: Computer Security Prof. Vern - PowerPoint PPT Presentation

Feb 12, 2023 •122 likes •992 views

Course Summary & Review CS 161: Computer Security Prof. Vern Paxson TAs: Jethro Beekman, Mobin Javed, Antonio Lupher, Paul Pearce & Matthias Vallentin http://inst.eecs.berkeley.edu/~cs161/ May 2, 2013 Know Your TA Mobin Javed

  1. Course Summary & Review CS 161: Computer Security Prof. Vern Paxson TAs: Jethro Beekman, Mobin Javed, Antonio Lupher, Paul Pearce & Matthias Vallentin http://inst.eecs.berkeley.edu/~cs161/ May 2, 2013

  2. Know Your TA Mobin Javed 1-2PM, 2-3PM Antonio Lupher Jethro Beekman 5-6PM 9-10AM, 4-5PM Paul Pearce 10-11AM, 11-12 Matthias Vallentin 2-3PM, 3-4PM

  3. Announcements / Goals • For final exam, you can bring two sheets of notes (double-sided, normally viewable) • Review: a (partial) “map” of security space • Specific topics: – Detection/Evasion/NIDS-vs-HIDS – Integrity/Authentication/Certificates – (TLS +) DNSSEC – XSS – Spoofing – CSRF – HKN

  19. Detection Styles, Evasion, NIDS vs. HIDS

  20. Needn’t be Styles of Detection exclusive • Signature-based: look for activity that matches a known attack (or known malware) Blacklisting + Simple; easy to share; addresses a very common threat – Misses novel attacks or variants; can have high FP • Vulnerability signatures: look for activity that matches a known vulnerability (i.e., how not what) + ~Simple; easy to share; addresses v. common threat; detects variants – Misses novel attacks; significant work to develop • Specification-based: define what activity is okay, flag anything else Whitelisting + Can detect novel attacks; possibly low FP – Lots of work; not shareable; churn requires maintenance

  21. Styles of Detection, con’t • Anomaly-based: build up / infer profile of “normal” activity, flag deviations as potential attacks + Can detect novel attacks – Can miss both known and novel attacks; training data might be tainted; Base Rate Fallacy can lead to high FPs • Behavioral: look for specific evidence of compromise rather than attacks themselves + Can detect novel attacks; often low FPs; can be cheap – Post-facto detection; narrow, and thus often evadable • Honeypots: provide system/resource that isn’t actually used otherwise, monitor access to it + Can detect novel attacks; examine attacker goals – Attacker may spot fakery; noise from endemic attacks

  22. The Problem of Evasion • Most detection approaches can be eluded – Doesn’t mean the approach is worthless • Evasions arise from uncertainties/ambiguities – One strategy to address: impose an interpretation (“normalization”) • Evasion considerations: – Incomplete analysis: detector doesn’t fully analyze – Spec deviations: not all systems implemented correctly – Attacker can stress the monitor • Exhaust its resources (state, CPU) • Exploit its own bugs (crash, code injection) – Monitor lacks sufficient information to disambiguate • And can’t alert on presence of ambiguity due to FPs

  23. Full TCP Reassembly is Not Enough seq=1, TTL=22 r r Sender / Attacker seq=1, TTL=16 X n Packet discarded in transit due seq=2, TTL=16 X i to TTL hop count expiring Receiver seq=2, TTL=22 o o seq=3, TTL=16 X c seq=3, TTL=22 o o seq=4, TTL=22 t t seq=4, TTL=16 X e ~~~~ ro ~~ roo ~ r ~~~ root rice? roce? rict? roct? TTL field in IP header Assume the Receiver ri ~~ ? ro ~~ ? r ~~~ ? ri ~~ ? specifies maximum ric ~ ? roc ~ ? rio ~ ? roo ~ ? riot? root? rioe? rooe? ~~~~ r ~~~ is 20 hops away forwarding hop count nic ~ ? noc ~ ? nio ~ ? noo ~ ? nice? noce? nict? noct? ni ~~ ? no ~~ ? n ~~~ ? ni ~~ ? niot? noot? nioe? nooe? NIDS Assume NIDS is 15 hops away

  24. NIDS vs. HIDS • NIDS benefits: – Can cover a lot of systems with single deployment • Much simpler management – Easy to “bolt on” / no need to touch end systems – Doesn’t consume production resources on end systems – Harder for an attacker to subvert / less to trust • HIDS benefits: – Can have direct access to semantics of activity • Better positioned to block (prevent) attacks • Harder to evade – Can protect against non-network threats – Visibility into encrypted activity – Performance scales much more readily (no chokepoint) • No issues with “dropped” packets

  25. Cryptographic Authentication

  26. Integrity & Authentication • Symmetric: keyed MACs (Message Auth. Code) • Integrity: along with message, sender transmits a tag computed using original message + secret key – Receiver computes tag using received message + secret key – If two tags match, then message hasn’t been altered – Plus: if tags match, sender must have had secret key , so receiver can have (a degree of) confidence in sender’s identity • MAC functions require careful construction to resist attacks: eavesdropper concocting new message that matches given tag … – … Or computing revised tag for revised message

  27. Integrity & Authentication, con’t • Asymmetric: digital signatures – I = information/statement to be “signed” (attested to) – H = Hash( I ), digest of I using well-known cryptographic hash function (no key!) – S = Signature(H), blob of bits that encodes H using private half of public/private key pair – W = Who signed it (to know which public key to use) • Recipient locates public key for W … – … uses it to compute H' = inverse of S – If H' matches hash of I computed by recipient, then: • Have integrity due to properties of crypto hash function • Have authentication due to manifest possession of private key • Also have non-repudiation if public key verified

  28. Digital Signatures, con’t • Important: digital signatures tied to a single object. Can’t be transferred! – (not like having digitized copy of someone’s written signature; analogy to that would be having copy of someone’s private key) • If Alice produces a signature S of some document D, and Mallory gets a copy of S … • … that doesn’t let Mallory do anything other than prove that Alice indeed decided to sign D • Mallory cannot: – Transfer S to apply to some other document • Nor can Mallory alter S to fit to a modified document – Alter D so that S is still valid for it

  29. Certificates • Cert = signed statement about someone’s public key – Does not say anything about the identity of who gives you the cert – Simply states given public key K Bob belongs to Bob … • … and backs up this statement with a digital signature made using a different public/private key pair, say from Alice • Bob then can prove his identity to you by you sending him something encrypted with K Bob … – … which he then demonstrates he can read • Works provided you trust that you have a valid copy of Alice’s public key … – … and you trust Alice to use prudence when she signs other people’s keys, such as Bob’s

  30. DNSSEC (& TLS)

  31. Summary of TLS & DNSSEC Technologies • TLS: provides channel security for communication over TCP (confidentiality, integrity, authentication) – Client & server agree on crypto, session keys – Underlying security dependent on trust in Certificate Authorities (as well as implementors) • DNSSEC: provides object security for DNS results – Just integrity & authentication, not confidentiality – No client/server setup “dialog” – Tailored to be caching-friendly – Underlying security dependent on trust in Root Name Server’s key … – … plus support provided by every level of DNS hierarchy from Root to final name server… and local resolver!

  32. Operation of DNSSEC • Overall idea: DNS results become certificates – Verify their “trust lineage” via chain of signatures – Implication: elements of the chain are cacheable • Conceptually, querier (client’s resolver) collects both final result plus chain of signatures attesting to result coming from the Right Place – Basis for assuming result is Correct is just the lineage • In practice: resolver works its way from DNS root down to final name server for a name • At each level, gets signed statement re key(s) for next level • Builts up chain of trusted keys • Resolver has root’s key wired into it

  33. DNSSEC (with simplifications): www.google.com A? Client’s k.root-servers.net com. NS a.gtld-servers.net Resolver a.gtld-servers.net. A 192.5.6.30 … com. DS description-of-com’s-key com. RRSIG DS signature-of-that- DS -record-using-root’s-key

  34. DNSSEC (with simplifications): www.google.com A? Client’s k.root-servers.net com. NS a.gtld-servers.net Resolver a.gtld-servers.net. A 192.5.6.30 … com. DS description-of-com’s-key com. RRSIG DS signature-of-that- DS -record-using-root’s-key Up through here is the same as before …

  35. DNSSEC (with simplifications): www.google.com A? Client’s k.root-servers.net com. NS a.gtld-servers.net Resolver a.gtld-servers.net. A 192.5.6.30 … com. DS description-of-com’s-key com. RRSIG DS signature-of-that- DS -record-using-root’s-key This new RR (“Delegation Signer”) provides a way to securely identify .com ’s public key (specifies a name and hash for it)

  36. DNSSEC (with simplifications): www.google.com A? Client’s k.root-servers.net com. NS a.gtld-servers.net Resolver a.gtld-servers.net. A 192.5.6.30 … com. DS description-of-com’s-key com. RRSIG DS signature-of-that- DS -record-using-root’s-key The actual process of retrieving .com ’s public key is complicated (actually involves multiple keys) but for our purposes doesn’t change how things work

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Security Summary Michael McCool Intel Osaka, W3C Web of Things F2F, 17 May 2017 Summary

Security Summary Michael McCool Intel Osaka, W3C Web of Things F2F, 17 May 2017 Summary

Security Summary Michael McCool Intel Osaka, W3C Web of Things F2F, 17 May 2017 Summary Summary Plenary Review of security process Breakout Review of Threat Model Stakeholders, Roles , Assets, Adversaries, Attack Surfaces,

385 views • 6 slides
Feasibility Summary Workshop Agenda Review CNVC Timeline Feasibility Summary: Key

Feasibility Summary Workshop Agenda Review CNVC Timeline Feasibility Summary: Key

Feasibility Summary Workshop Agenda Review CNVC Timeline Feasibility Summary: Key Elements Dos and Donts Q&A Upcoming Events and Deadlines College Quick Pitches and Teambuilding Nov. 1 | 5-6 p.m. | Chicago Booth

530 views • 31 slides
Unit 23 Summary Review of some key concepts from the first half of the semester A BRIEF SUMMARY

Unit 23 Summary Review of some key concepts from the first half of the semester A BRIEF SUMMARY

23.1 23.2 Unit 23 Summary Review of some key concepts from the first half of the semester A BRIEF SUMMARY 23.3 23.4 A Few Big Ideas 1 A Few Big Ideas 2 Any algorithm can be implemented Software interacts with hardware by setting,

259 views • 5 slides
Wicklow GAA Review 2017 Outline of Presentation 1. Summary of key recommendation arising from

Wicklow GAA Review 2017 Outline of Presentation 1. Summary of key recommendation arising from

Wicklow GAA Review 2017 Outline of Presentation 1. Summary of key recommendation arising from high level review in 2016 by Leinster GAA 2. Stratford/Grangecon GAA Club motion 3. Method and Approach 4. Summary of Club Survey 5.

243 views • 10 slides
LHC LHC Crab Cavities Rama Calaga, CERN DOE Review, Jul 9, 2012 Review comments & Crab

LHC LHC Crab Cavities Rama Calaga, CERN DOE Review, Jul 9, 2012 Review comments & Crab

LHC LHC Crab Cavities Rama Calaga, CERN DOE Review, Jul 9, 2012 Review comments & Crab workshop summary Next steps towards a prototype cryomodule SPS tests preparation DOE Review, Jun 2011 Executive Summary & Recommendations: Work

1.05k views • 34 slides
Grant Review Summary Round 1 Summary of Project Scores and Funding allocation by JOGL Project

Grant Review Summary Round 1 Summary of Project Scores and Funding allocation by JOGL Project

Grant Review Summary Round 1 Summary of Project Scores and Funding allocation by JOGL Project Title Project No. Feasibility Mean Impact Mean Average Review Score Budget Total (Euros) Funding Request Budget Rank/Score Optimising NEB Lamp

248 views • 22 slides
City of Los Angeles 2019 Annual Review Agenda Executive Summary Utilization Review -

City of Los Angeles 2019 Annual Review Agenda Executive Summary Utilization Review -

JUNE 4, 2020 City of Los Angeles 2019 Annual Review Agenda Executive Summary Utilization Review - Exam Utilization - Network Utilization Working Together Performance Guarantee Review Questions C onfident ial N

278 views • 13 slides
FY2019 review 14.2.2020 agenda 1 Year in review 2 Financial results 3 Summary & outlook

FY2019 review 14.2.2020 agenda 1 Year in review 2 Financial results 3 Summary & outlook

FY2019 review 14.2.2020 agenda 1 Year in review 2 Financial results 3 Summary & outlook Terhi Kauppi Tero Virtala CFO CEO Year in review FY2019 highlights 1/2 Revenue 31.6 (20.1) M, +57% . Operating profit 6.5 (0.6) M,

483 views • 23 slides
SLADE GREEN BIG LOCAL Writing a Review PLAN THE REVIEW Summary of the year Plan Main

SLADE GREEN BIG LOCAL Writing a Review PLAN THE REVIEW Summary of the year Plan Main

SLADE GREEN BIG LOCAL Writing a Review PLAN THE REVIEW Summary of the year Plan Main Questions Our Plan Our Progress The Big Local Outcomes Case Studies SUMMARY OF THE YEAR We have had a busy year, completing lots of

447 views • 19 slides
PayPoint plc Preliminary results presentation 24 May 2012 Agenda Results summary

PayPoint plc Preliminary results presentation 24 May 2012 Agenda Results summary

PayPoint plc Preliminary results presentation 24 May 2012 Agenda Results summary Strategy and execution Financial review Operational review Summary 2 Results summary Years ended March Strong results with

1.11k views • 65 slides
FINANCIAL REVIEW SUMMARY

FINANCIAL REVIEW SUMMARY

44 INTERSERVE ANNUAL REPORT 2013 STRATEGIC REPORT FINANCIAL REVIEW FINANCIAL REVIEW SUMMARY

245 views • 8 slides
1 L Mar-4-05 SMM009, Exam Review Overview Working problems Summary of the course 2 L

1 L Mar-4-05 SMM009, Exam Review Overview Working problems Summary of the course 2 L

INSTITUTIONEN FR SYSTEMTEKNIK LULE TEKNISKA UNIVERSITET Exam Review David Carr Virtual Environments, Fundamentals Spring 2004 1 L Mar-4-05 SMM009, Exam Review Overview Working problems Summary of the course 2 L Mar-4-05

337 views • 17 slides
CollegeBound Saver and CollegeBound 529 Program Review May 24, 2017 Program Review Summary of

CollegeBound Saver and CollegeBound 529 Program Review May 24, 2017 Program Review Summary of

CollegeBound Saver and CollegeBound 529 Program Review May 24, 2017 Program Review Summary of Findings and Recommendations A comprehensive, independent investment review of CollegeBound Saver (Direct) and CollegeBound 529 (Advisor)

425 views • 30 slides
Independent Review of Aurora Network summary of findings Michael Van Doornik, Manager Advisory

Independent Review of Aurora Network summary of findings Michael Van Doornik, Manager Advisory

Independent Review of Aurora Network summary of findings Michael Van Doornik, Manager Advisory (VIC) 31 October 2018 Agenda 1. Terms of reference 2. Limitations of the review 3. Our approach to undertaking the review Overview of

233 views • 21 slides
Gifted Model Review Committee Final Report Summary June 2019 1 Summary of Purpose The purpose

Gifted Model Review Committee Final Report Summary June 2019 1 Summary of Purpose The purpose

Gifted Model Review Committee Final Report Summary June 2019 1 Summary of Purpose The purpose of this final report has three particular dimensions. In accordance with the results of GSCS previous Curriculum Audit (2016) and Strategic Plan

403 views • 39 slides
Guidance for Comprehensive Transportation Review (CTR) 2019 Edition Summary of Changes from

Guidance for Comprehensive Transportation Review (CTR) 2019 Edition Summary of Changes from

Guidance for Comprehensive Transportation Review (CTR) 2019 Edition Summary of Changes from 2012 June 12, 2019 Overview History and Evolution of CTRs in the District Whats New in 2019 Edition DDOT Site Review

483 views • 17 slides
1 The problem Address the problem of stopping determined attackers from exploiting our

1 The problem Address the problem of stopping determined attackers from exploiting our

1 The problem Address the problem of stopping determined attackers from exploiting our software Interest in Control Flow Integrity(CFI) Data execution prevention (DEP), stack smashing protection (SSP), address space layout

673 views • 34 slides
Countering Terrorism through Information and Privacy Protection Technologies Robert Popp, John

Countering Terrorism through Information and Privacy Protection Technologies Robert Popp, John

Terrorism Information Technology Privacy Countering Terrorism through Information and Privacy Protection Technologies Robert Popp, John Poindexter IEEE Security & Privacy, vol. 4, no. 6, Nov.-Dec. 2006 1 / 10 Terrorism Information

376 views • 14 slides
R EVOLUTION & P OLITICAL V IOLENCE Is violence random? Mapiripn massacre in Colombia

R EVOLUTION & P OLITICAL V IOLENCE Is violence random? Mapiripn massacre in Colombia

Poli-416: R EVOLUTION & P OLITICAL V IOLENCE Is violence random? Mapiripn massacre in Colombia Is violence random? Public discourse on violence as chaotic or random Rwandan genocide Logic of Violence in Civil Wars Why

870 views • 32 slides
AI Security and Insecurity Joel Brynielsson, 15 May 2019 joel.brynielsson@foi.se Foto:

AI Security and Insecurity Joel Brynielsson, 15 May 2019 joel.brynielsson@foi.se Foto:

AI Security and Insecurity Joel Brynielsson, 15 May 2019 joel.brynielsson@foi.se Foto: iStockPhoto December 2018: 32 nd Conference on Neural Information Processing Systems 8500 participants (ten from Sweden) 4500 submissions

141 views • 13 slides
Application-level sandboxing Erik Poll 1 Overview 1. Compartmentalisation 2. Classic OS access

Application-level sandboxing Erik Poll 1 Overview 1. Compartmentalisation 2. Classic OS access

Software Security Application-level sandboxing Erik Poll 1 Overview 1. Compartmentalisation 2. Classic OS access control compartmentalisation between processes Chapter 2 of lecture notes 3. Language-level access control

909 views • 69 slides
Upcoming Wireless Networks and New Challenges Generalities Mesh networks Vehicular

Upcoming Wireless Networks and New Challenges Generalities Mesh networks Vehicular

Upcoming Wireless Networks and New Challenges Generalities Mesh networks Vehicular networks Security and Cooperation in Wireless Networks Georg-August University Gttingen Introduction Upcoming wireless networks: Personal

904 views • 42 slides
Debugging From Theoretical/Concept Considerations to Weapons for Efficient Coding Carlos J.

Debugging From Theoretical/Concept Considerations to Weapons for Efficient Coding Carlos J.

Debugging From Theoretical/Concept Considerations to Weapons for Efficient Coding Carlos J. Barrios H. PhD. cbarrios@uis.edu.co Sources of This Presentation: Guest lecture DR. R o b e r t O a t e s Icos R esearch Group University o f

1.14k views • 67 slides
Outline 1 Zero-Knowledge MTAT.07.005 Cryptographic Protocols First Lecture: Main Notions Second

Outline 1 Zero-Knowledge MTAT.07.005 Cryptographic Protocols First Lecture: Main Notions Second

Zero-Knowledge Zero-Knowledge Two-Party Protocols Two-Party Protocols Outline 1 Zero-Knowledge MTAT.07.005 Cryptographic Protocols First Lecture: Main Notions Second Lecture: Proofs of Knowledge Introduction to Zero-Knowledge Third Lecture:

473 views • 31 slides

More recommend