csce 790 computer systems security entity authentication
play

CSCE 790 Computer Systems Security Entity Authentication Professor - PowerPoint PPT Presentation

Jan 30, 2024 •10 likes •310 views

CSCE 790 Computer Systems Security Entity Authentication Professor Qiang Zeng Spring 2020 Previous Class PKI Digital Certificate Certificate Authority Verifying Certificates and Chain of Trust Revoking Certificates

  1. 
 CSCE 790 
 Computer Systems Security 
 Entity Authentication Professor Qiang Zeng Spring 2020

  2. Previous Class • PKI – Digital Certificate – Certificate Authority – Verifying Certificates and Chain of Trust – Revoking Certificates • Kerberos CSCE 790 – Computer Systems Security 2

  3. Previous Class • Both PKI and Kerberos can be used for authentication; But PKI is mainly used to authenticate a service, while Kerberos is to authenticate both services and users • PKI mainly builds on asymmetric cryptography, while Kerberos mainly builds on symmetric cryptography • PKI is used over the Internet, while Kerberos is typically used within a single organization CSCE 790 – Computer Systems Security 3

  4. Previous class… Is PKI subject to Single Point of Failure? Yes. If the CA system is compromised, all the certificates issued by the CA system are in danger. In Kerberos, the client needs to contact the KDC at each authentication, while the client (e.g., your browser) in the PKI only needs to contact the CA system infrequently and periodically for downloading the CRL (Certificate Revocation List). CSCE 790 – Computer Systems Security 4

  5. Previous class… What is the big pain of PKI? Revocation of certificates. Without the issue, the CA system could have been kept completely offline. CSCE 790 – Computer Systems Security 5

  6. Previous class… What happens when you type “citi.com” (1) Domain name resolution: to get the IP of citi.com (2) TCP handshake: to establish TCP connection (3) SSL handshake: to establish cipher-suite and the master key (4) Get homepage, which is encrypted and authenticated using the session keys derived from the master key CSCE 790 – Computer Systems Security 6

  7. Outline • What is Entity Authentication? • The purpose of Entity Authentication? • How to perform Entity Authentication? CSCE 790 – Computer Systems Security 7

  8. What is Entity Authentication? • Entity Authentication is the process of verifying credentials that are used to prove the identity of an entity – Determining whether someone or something is, in fact, who or what it is declared to be – Usually performed at the beginning of a session • Different from Message Authentication, which only authenticates the origin of one message CSCE 790 – Computer Systems Security 8

  9. Purposes of Entity Authentication • Entity Authentication usually precedes Authorization – Authentication establishes identity, while Authorization dictates what an identity is allowed to do CSCE 790 – Computer Systems Security 9

  10. What is Identity? • It tells who you are. • Each entity has a lot of identities. E.g., you are – A student in the classroom – A customer in a bank – A patient in a hospital – The owner of your laptop – A passenger when taking a flight CSCE 790 – Computer Systems Security 10

  11. How to perform Entity Authentication? • Credentials are evidence used to prove identities • Three categories – Something you know – Something you have – Something you are CSCE 790 – Computer Systems Security 11

  12. Something You Know • In real-world – SSN – Credit Card Number – Mother’s maiden name – … • In cyber-world: Passwords – Generally weak – One password used in multiple places – Subject to password-guessing attack CSCE 790 – Computer Systems Security 12

  13. How to store user passwords • Store hash values only (i.e., never store passwords) – It will be a disaster if you store user passwords as plaintext and the server is compromised • Adding “salts” when hashing – If “hash(password)” is simply stored, the attacker who obtains the hash value can simply search in a pre- computed rainbow table, which contains the hash values of a large number of passwords – Store “salt1, hash(salt1, password1); salt2, hash(salt2, password2); …” – Now the attacker has to crack the password one by one; the pre-computed table is useless • Using a slow hash algorithm – Why? Let’s discuss Dictionary Attack first CSCE 790 – Computer Systems Security 13

  14. Brute Force Attack • The attacker may try every possibility of a password • E.g., a perfectly random 8-char password has less entropy than a 56-bit key – Each char can have 2 7 possibilities – Thus, an attack needs to try at most 2 7x8 times • Can the attacker do better? CSCE 790 – Computer Systems Security 14

  15. Dictionary Attack • In contrast to Brute Force attack, Dictionary Attack tries the collection of passwords that are frequently used, e.g., “123456”, “password”, “qwerty” • Even passwords are stored with salts, the attacker can apply Dictionary Attack (or even Brute Force attack) • If a fast hash algorithm is used, it helps the attacker speed up such attacks CSCE 790 – Computer Systems Security 15

  16. Question Should cryptographic hash algorithms, e.g., MD5, SHA-1, SHA-2, be used for storing password hashes? No. These hash algorithms are designed to be quick. Fast hash algorithms favor attackers to crack passwords once the hash values are leaked CSCE 790 – Computer Systems Security 16

  17. How to obtain a slow hash algorithm? • “salt, Hash n (salt, password)” – E.g., n = 1024; – n should increase if faster CPUs are produced • “Hash” can be, e.g., MD5, SHA1, SHA2 • It significantly increases the time required to perform Dictionary Attack or Brute Force Attack CSCE 790 – Computer Systems Security 17

  18. Password Hashing Algorithm: Bcrypt • It takes around 100ms to compute the hash value of a salted password • 100ms is fast enough that the user won't notice when they log in, but slow enough that it becomes less feasible to execute against a long list of likely passwords. • For instance, if a hacker wants to compute bcrypt() against a list of one billion likely passwords, it will take about 30,000 cpu-hours (about $1200) --- to crack a single password CSCE 790 – Computer Systems Security 18

  19. 68 Million Hacked Dropbox Accounts • Hacked and on sale now (since Sept, 2016) • 32 million of the passwords are protected with bcrypt --- they should be fine • Others are protected using salted SHA-1 --- and, it is said that salts are not leaked --- so, it is unlikely to crack the passwords with the hash values only • What lessons do you get? CSCE 790 – Computer Systems Security 19

  20. Something You Have • Digital Certificates – If you trust the CA, you trust the certificate issued by her and the identity dictated on the certificate • Security tokens – Electronic keys used to prove one’s identity CSCE 790 – Computer Systems Security 20

  21. Multi-factor Authentication • Multi-factor Authentication is an authentication method that requires the user to provide multiple pieces of credentials for authentication, from typically at least two of the three categories: – Something you know (knowledge factors) – Something you have (possession factors) – Something you are (inherence factors) • Two-factor Authentication is a type of Multi-factor Authentication CSCE 790 – Computer Systems Security 21

  22. Security Tokens • Examples – One-time-password token, e.g., RSA’s SecurID tokens – Mobile token app – Smartcard, e.g., Credit Card – RFID token, e.g., E-Zpass – USB, Bluetooth, NFC etc. • One type of widely used security tokens generates and displays one-time passwords (OTPs), where the generated password cannot be used twice – E.g., RSA’s SecurID token • Another type relies on an mobile token app to generate and display one-time passwords – E.g., Google’s two-factor authentication CSCE 790 – Computer Systems Security 22

  23. Case Study: RSA’s SecurID Tokens • OTP = Hash(time, seed) // time-based OTP • Generate once per 30 or 60 seconds • Seed is a 64-bit/128-bit secret • Tamper resistant, so the seed cannot be stolen Hash CSCE 790 – Computer Systems Security 23

  24. Case Study: RSA’s SecureID Tokens CSCE 790 – Computer Systems Security 24

  25. Question RSA’s SecurID uses a proprietary hash. What other algorithms that we have learned can be used instead? Any keyed hash (e.g., HMAC) or block cipher (e.g., AES) algorithm also works. HMAC(seed, time) Encrypt(seed, time) CSCE 790 – Computer Systems Security 25

  26. Question What if the clock in the token and that in the server get out-of-sync over time? The solution to the clock drift problems is to store a "drift" parameter per token on the server. The parameter can then be adjusted to tackle clock drift CSCE 790 – Computer Systems Security 26

  27. Case Study: Google’s mobile app token • Generated once per 30 seconds • TC = Floor[ (current_time - epoch) / 30 ] • OTP = HMAC(key, TC) CSCE 790 – Computer Systems Security 27

  28. Question If there is no Wi-Fi or cellular signal available for my cell phone, can I still use Google’s two-step verification to login in at a computer? Yes, Google Authenticator generates passcodes based on time. CSCE 790 – Computer Systems Security 28

  29. Summary • Credentials – Something you know (Knowledge factors) – Something you have (Possession factors) – Something you are (Inherence factors) • Multi-factor authentication • Time-based One Time Password (OTP) • Case studies – RSA’s SecurID – Google Authenticator CSCE 790 – Computer Systems Security 29

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CSCE 790 Computer Systems Security Firmware Security Professor Qiang Zeng Spring 2020

CSCE 790 Computer Systems Security Firmware Security Professor Qiang Zeng Spring 2020

CSCE 790 Computer Systems Security Firmware Security Professor Qiang Zeng Spring 2020 Previous Class Virus vs. Worm vs. Trojan Drive-by download Botnet Rootkit CSCE 790 Computer Systems Security 2 Trojan vs. Virus

302 views • 16 slides
CSCE 790 Computer Systems Security Introduction Professor Qiang Zeng Spring 2020 Story 1:

CSCE 790 Computer Systems Security Introduction Professor Qiang Zeng Spring 2020 Story 1:

CSCE 790 Computer Systems Security Introduction Professor Qiang Zeng Spring 2020 Story 1: Morris the first worm in history CSCE 790 Computer Systems Security 2 Story 2: Malware, Stuxnet , took down Irans nuclear facilities

344 views • 30 slides
Security Overview Security Goals The Attack Space Security Mechanisms

Security Overview Security Goals The Attack Space Security Mechanisms

CSCE Intro to Computer Systems Security Security Overview Security Goals The Attack Space Security Mechanisms Introduction to Cryptography Authentication Authorization Confidentiality Case Studies Security

472 views • 20 slides
CSCE 790 Computer Systems Security Threat Modeling Professor Qiang Zeng Spring 2020

CSCE 790 Computer Systems Security Threat Modeling Professor Qiang Zeng Spring 2020

CSCE 790 Computer Systems Security Threat Modeling Professor Qiang Zeng Spring 2020 Previous Class The CIA Triad as security objectives Threat: potential Attack: attempt Compromise: success Vulnerability: security

660 views • 29 slides
Security Security as term, Possible Security violations Authentication Criteria for

Security Security as term, Possible Security violations Authentication Criteria for

BS1 WS19/20 topic-based slides Security Security as term, Possible Security violations Authentication Criteria for Trust in Computer Systems Three hearts of Windows Security DACLs A Look at Security System is secure if

988 views • 20 slides
CSCE 790 Computer Systems Security File System Security Professor Qiang Zeng Spring 2020

CSCE 790 Computer Systems Security File System Security Professor Qiang Zeng Spring 2020

CSCE 790 Computer Systems Security File System Security Professor Qiang Zeng Spring 2020 Outline Hard links vs. symbolic links File access permissions User and process credentials Special flags: setuid, sticky bit

821 views • 48 slides
CSCE 790 Computer Systems Security Security Policy Models Professor Qiang Zeng Spring

CSCE 790 Computer Systems Security Security Policy Models Professor Qiang Zeng Spring

CSCE 790 Computer Systems Security Security Policy Models Professor Qiang Zeng Spring 2020 Previous Class Concepts Access Control, Subject, Object Goals of Access Control Confidentiality, Integrity Access Matrix

702 views • 26 slides
CSCE 790 Computer Systems Security Biometrics (Something You Are) Professor Qiang Zeng

CSCE 790 Computer Systems Security Biometrics (Something You Are) Professor Qiang Zeng

CSCE 790 Computer Systems Security Biometrics (Something You Are) Professor Qiang Zeng Spring 2020 Previous Class Credentials Something you know (Knowledge factors) Something you have (Possession factors) Something

506 views • 24 slides
CSCE 790 Secure Computer Systems PKI and Kerberos Professor Qiang Zeng Spring 2020

CSCE 790 Secure Computer Systems PKI and Kerberos Professor Qiang Zeng Spring 2020

CSCE 790 Secure Computer Systems PKI and Kerberos Professor Qiang Zeng Spring 2020 Previous Class Important Applications of Crypto User Authentication verify the identity based on something you know Sending the

302 views • 26 slides
CSCE 790 Computer Systems Security Malware Professor Qiang Zeng Spring 2020 Previous

CSCE 790 Computer Systems Security Malware Professor Qiang Zeng Spring 2020 Previous

CSCE 790 Computer Systems Security Malware Professor Qiang Zeng Spring 2020 Previous Class Implementation Principles Policy and Mechanism Decoupling Reference Monitor Bell-LaPadula (BLP) Secrecy Model No read up

822 views • 34 slides
Security in Distributed Systems Introduction Cryptography Authentication Key

Security in Distributed Systems Introduction Cryptography Authentication Key

Security in Distributed Systems Introduction Cryptography Authentication Key exchange Computer Science Lecture 18, page 1 Network Security Intruder may eavesdrop remove, modify, and/or insert messages read and

361 views • 11 slides
Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111

Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111

Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111 Operating Systems Peter Reiher Lecture 18 CS 111 Page 1 Spring 2015 Outline Basic concepts in computer security Design principles for

1.06k views • 62 slides
CSCE 790 Computer Systems Security Access Control Professor Qiang Zeng Spring 2020

CSCE 790 Computer Systems Security Access Control Professor Qiang Zeng Spring 2020

CSCE 790 Computer Systems Security Access Control Professor Qiang Zeng Spring 2020 Previous Class Biometrics Measurement and applications of human characteristics Applications Advantages and Disadvantages False

400 views • 28 slides
AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

SECURITY TOPICS PART 2 AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is who they say they are and therefore permitted to access the requested resources: getting entrance to a computer lab

833 views • 44 slides
Web Security: Authentication & UI-based attacks CS 161: Computer Security Prof. Raluca Ada

Web Security: Authentication & UI-based attacks CS 161: Computer Security Prof. Raluca Ada

Web Security: Authentication & UI-based attacks CS 161: Computer Security Prof. Raluca Ada Popa April 12, 2016 Credit: some slides are adapted from previous offerings of this course or from CS 241 of Prof. Dan Boneh Authentication &

1.11k views • 73 slides
CMPSC 497 Password Authentication Trent Jaeger Systems and Internet Infrastructure Security

CMPSC 497 Password Authentication Trent Jaeger Systems and Internet Infrastructure Security

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA CMPSC 497 Password Authentication Trent Jaeger Systems and

582 views • 31 slides
Salting things up in the sysadmin's world Juan Manuel Santos Who? (boring part) Juan Manuel

Salting things up in the sysadmin's world Juan Manuel Santos Who? (boring part) Juan Manuel

Salting things up in the sysadmin's world Juan Manuel Santos Who? (boring part) Juan Manuel Santos godlike64 on github / gmail / twitter godlike on freenode Information Systems Engineer / RHCA TL - STSE @ Red Hat Need beer

964 views • 58 slides
Salting things up in the Devops World Things just got real whoami Juan Manuel Santos

Salting things up in the Devops World Things just got real whoami Juan Manuel Santos

Salting things up in the Devops World Things just got real whoami Juan Manuel Santos Team Leader / Principal Technical Support Engineer @ Red Hat Organizer of sysarmy / nerdear.la Using Salt for a couple of years now,

518 views • 47 slides
Password hashing CS 161: Computer Security Prof. Raluca Ada Popa Feb 19, 2018 Announcement

Password hashing CS 161: Computer Security Prof. Raluca Ada Popa Feb 19, 2018 Announcement

Password hashing CS 161: Computer Security Prof. Raluca Ada Popa Feb 19, 2018 Announcement Project 2 to be released Thursday Midterm grades announced at end of week Passwords Tension between usability and security choose random and choose

528 views • 20 slides
You are the light of the world. A city that is set on a hill cannot be hidden. Matthew 5:14

You are the light of the world. A city that is set on a hill cannot be hidden. Matthew 5:14

You are the light of the world. A city that is set on a hill cannot be hidden. Matthew 5:14 The You Are Passages The You Are Passages These are not you do passages, but you are The You Are Passages These are not

1.44k views • 126 slides
Time-Memory Tradeoffs for Short Hash Collisions Akshima University of Chicago Joint work with

Time-Memory Tradeoffs for Short Hash Collisions Akshima University of Chicago Joint work with

Time-Memory Tradeoffs for Short Hash Collisions Akshima University of Chicago Joint work with David Cash, Andrew Drucker, Hoeteck Wee 1 This Talk Inspects time-space tradeo ff s for finding short collisions in Merkle-Damgrd hash

890 views • 55 slides
Lecture 14 Passwords and Authentication Stephen Checkoway University of Illinois at Chicago

Lecture 14 Passwords and Authentication Stephen Checkoway University of Illinois at Chicago

Lecture 14 Passwords and Authentication Stephen Checkoway University of Illinois at Chicago CS 487 Fall 2017 Slides based on Baileys ECE 422 Major Portions Courtesy Ryan Cunningham AUTHENTICATION Authentication Basics

653 views • 42 slides
Computer and Information Security Fall 2020 User Authentication and Access Control Tyler Bletsch

Computer and Information Security Fall 2020 User Authentication and Access Control Tyler Bletsch

ECE560 Computer and Information Security Fall 2020 User Authentication and Access Control Tyler Bletsch Duke University User Authentication Determining if a user is who they say they are before giving them access. 2 The four means of

1.15k views • 70 slides
Security: Some Fun with Passwords How to handle Passwords: the Basics Rainbow Attacks Not

Security: Some Fun with Passwords How to handle Passwords: the Basics Rainbow Attacks Not

CSCE Intro to Computer Systems Security - Passwords Security: Some Fun with Passwords How to handle Passwords: the Basics Rainbow Attacks Not too long ago Hi, I forgot my password! Let me help you. What is your name? My Name is John

369 views • 5 slides

More recommend