embedded device cryptography in the field
play

Embedded Device Cryptography in the Field Introduction Motivation - PowerPoint PPT Presentation

Sep 12, 2022 •196 likes •699 views

Embedded Device Cryptography in the Field Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Alex Kropivny Local Attacks Trust Relationships Use Cases Factory Testing

  1. Embedded Device Cryptography in the Field Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Alex Kropivny Local Attacks Trust Relationships Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other January 5, 2015 Conclusions

  2. Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Local Attacks Trust Relationships Introduction Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  3. Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Local Attacks Trust Relationships Motivation Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  4. Who am I? Embedded Device Cryptography in the Field Introduction Senior security analyst at a device assessment team. Motivation State of Affairs Coping Mechanisms [ ] cryptographer Indefensible Local Attacks [x] reverse engineer Trust Relationships [ ] hat owner Use Cases Factory Testing Firmware Upgrades Want to one day become a full stack developer. Still not done Wireless Protocols Other counting all the layers. Conclusions

  5. Device Assessment Team? Embedded Device Cryptography in the Field Security assessments of embedded devices 1 and software Introduction systems 2 that use them. Motivation State of Affairs Coping Mechanisms Design reviews and source code audits for manufacturers. Indefensible Local Attacks Black box reverse engineering for major end users. Trust Relationships Use Cases Factory Testing Automation, smart grid, medical industries - disclosure left up to Firmware Upgrades Wireless Protocols clients. 3 Other Conclusions 1 Catch-all term for magic black boxes that do stuff. 2 Heterogeneous networks that make security fun . 3 Any vulnerabilities shown in these slides aren’t theirs.

  6. Talk Scope Embedded Device Cryptography in the Field For simplicity, let “embedded devices” be: Introduction 1 kB - 1 MB program memory. Motivation 1 MHz - 100 MHz clock frequency. State of Affairs Coping Mechanisms No money spent on tamper resistance or DRM. Indefensible Local Attacks No Linux/Windows/. . . Trust Relationships No OpenSSL/GnuPG/Bouncy Castle/. . . Use Cases Factory Testing Firmware Upgrades Not all bad news: Wireless Protocols Other Conclusions Small attack surface! Single purpose! Analysis is easy!

  7. What Qualifies as a Break? Embedded Device Cryptography in the Field Our team has to be pragmatic. If it’s not exploitable against a real-world system, it’s not a result. Introduction Motivation State of Affairs Coping Mechanisms Attack Valid Indefensible Local Attacks Remote code execution Always Trust Relationships Use Cases Factory Testing Control or reconfiguration Often Firmware Upgrades Wireless Protocols Denial of service Rarely Other Conclusions Privacy Very Rarely

  8. Pop Quiz Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Q: What fraction of cryptographic constructions do we find valid Local Attacks Trust Relationships “results” in? Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  9. Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Local Attacks Trust Relationships State of Affairs Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  10. Hollywood SCADA Hacking Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Local Attacks Trust Relationships Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  11. Actual SCADA Hacking Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Local Attacks Trust Relationships Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  12. Vulnerabilities Surprise Features Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible System with no threat model can’t be insecure, only Local Attacks surprising. Trust Relationships Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  13. Embedded Device Cryptanalysis Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Local Attacks Trust Relationships Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  14. Embedded Device Cryptanalysis Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Local Attacks Trust Relationships Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  15. Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Local Attacks Trust Relationships Coping Mechanisms Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  16. Approach Embedded Device Cryptography in the Field Introduction Motivation If it’s stupid and it works, it’s not stupid. State of Affairs Coping Mechanisms Indefensible Blame is the enemy of safety. Focus should be on Local Attacks Trust Relationships understanding how the system behavior as a whole Use Cases contributed to the loss and not on who or what to Factory Testing Firmware Upgrades blame for it. 4 Wireless Protocols Other Conclusions 4 Engineering a Safer World: Systems Thinking Applied to Safety

  17. Talk Outline Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms What are major uses and threat models we’ve seen? Indefensible How do their implementations fail? (Vulnerabilities rated Local Attacks Trust Relationships from ⋆ to ⋆ ⋆ ⋆ ⋆ ⋆ based on frequency seen.) Use Cases If possible, why does the failure occur? Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  18. Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Local Attacks Trust Relationships Indefensible Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  19. Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Local Attacks Trust Relationships Local Attacks Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  20. Local Attacks Embedded Device Cryptography Against low-cost devices not hardened against them, attacks in the Field range from easy to doable: Introduction Side channels Motivation State of Affairs Coping Mechanisms Fault injection Indefensible Decapping and probing + fault injection Local Attacks Trust Relationships Use Cases Deleting keys on tamper would be nice, but: Factory Testing Firmware Upgrades Wireless Protocols One-way operations that brick the device are scary to Other deploy. Conclusions Requires an internal power supply, which adds cost . Tamper detection for one device is easy; for two or more, extremely hard.

  21. Local Attacks Embedded Device Cryptography in the Field If a device is widely available to attackers, hardware compromise Introduction in the large can be assumed. Motivation State of Affairs Coping Mechanisms On widely deployed devices, shared secrets are massive Indefensible Local Attacks central points of failure. Trust Relationships In an ideal world, compromise via local access does not give Use Cases Factory Testing attacker any more capabilities than they already have. Firmware Upgrades Wireless Protocols Good bang-for-buck measures exist to make local attacks Other harder do exist. (Disabling read access to internal memory, Conclusions burning fuses.)

  22. User As Threat (DRM) Embedded Device Cryptography in the Field Introduction DRM/smart card technologies make well-funded attempts to Motivation defend against some local attacks. State of Affairs Coping Mechanisms Indefensible Higher cost per chip! Local Attacks Trust Relationships Cost of comparing security of different vendors/models Use Cases high. Factory Testing Firmware Upgrades Wireless Protocols Better off spending resourses on system architecture that avoids Other Conclusions shared secrets and distrusting the user, if possible.

  23. Embedded Device Cryptography in the Field Introduction Motivation State of Affairs Coping Mechanisms Indefensible Local Attacks Trust Relationships Trust Relationships Use Cases Factory Testing Firmware Upgrades Wireless Protocols Other Conclusions

  24. Trust Relationships Embedded Device Cryptography in the Field Introduction The following will still be trusted: Motivation State of Affairs Coping Mechanisms Manufacturer signing keys. Indefensible Local Attacks Development infrastructure. Trust Relationships Hardware and initial firmware bringup supply chain. Use Cases Factory Testing Firmware Upgrades Often, use of cryptography merely shuffles trust around the Wireless Protocols Other system, but does not eradicate it. Conclusions

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Cryptography basics for embedded developers Embedded Linux Conference, San Diego, 2016 "If

Cryptography basics for embedded developers Embedded Linux Conference, San Diego, 2016 "If

Cryptography basics for embedded developers Embedded Linux Conference, San Diego, 2016 "If you think cryptography is the solution to your problem, then you don't understand your problem " - Roger Needham Cryptography basics are

417 views • 25 slides
Embedded Linux Device Drivers Aleksandar Peji Andrija Pri Balkan Computer Congress 2014

Embedded Linux Device Drivers Aleksandar Peji Andrija Pri Balkan Computer Congress 2014

Embedded Linux Device Drivers Aleksandar Peji Andrija Pri Balkan Computer Congress 2014 September 7 th , Novi Sad, Serbia Agenda About Embedded Systems Hardware Specifics of Embedded Systems Embedded Linux Linux Device

244 views • 11 slides
EMSEC: Embedded Security and Cryptography Responsables: Gildas Avoine, Pierre-Alain Fouque

EMSEC: Embedded Security and Cryptography Responsables: Gildas Avoine, Pierre-Alain Fouque

EMSEC: Embedded Security and Cryptography Responsables: Gildas Avoine, Pierre-Alain Fouque Prsentation: Stphanie Delaune (CNRS) EMSEC team Embedded Security & Cryptography 7 permanent researchers, 12 PhD students, and 2 post-docs

308 views • 11 slides
Cryptography for Embedded Devices Tobias Oder Ruhr-University Bochum Workshop on Cryptography

Cryptography for Embedded Devices Tobias Oder Ruhr-University Bochum Workshop on Cryptography

Efficient Implementation of Lattice-based Cryptography for Embedded Devices Tobias Oder Ruhr-University Bochum Workshop on Cryptography for the 09.11.2017 Internet of Things and Cloud 2017 Lattice-based Cryptography Set of vectors in n

601 views • 27 slides
Device tree and embedded Linux Vitaly Bordug Principal Engineer What is the device tree?

Device tree and embedded Linux Vitaly Bordug Principal Engineer What is the device tree?

Device tree and embedded Linux Vitaly Bordug Principal Engineer What is the device tree? Just a data structure representing: a tree, layered out system of nodes; only one parent allowed. Each node has following properties:

175 views • 13 slides
Tweaking Code-Based Cryptography for Embedded Systems DIMACS Workshop on The Mathematics of

Tweaking Code-Based Cryptography for Embedded Systems DIMACS Workshop on The Mathematics of

Tweaking Code-Based Cryptography for Embedded Systems DIMACS Workshop on The Mathematics of Post-Quantum Cryptography Tim Gneysu, Ingo von Maurich 1/12/2015 Horst Grtz Institute for IT-Security, Ruhr-Universitt Bochum, Germany Motivation

920 views • 70 slides
Device Creation with Qt Enterprise Embedded Andy Nichols Overview The challenges of device

Device Creation with Qt Enterprise Embedded Andy Nichols Overview The challenges of device

Device Creation with Qt Enterprise Embedded Andy Nichols Overview The challenges of device creation What is Qt Enterprise Embedded Prototyping a device Device creation 2 The Challenges of Device Creation 3 The Application is

611 views • 50 slides
Elliptic Curve Cryptography and Security of Embedded Devices Ph.D. Defense Vincent Verneuil

Elliptic Curve Cryptography and Security of Embedded Devices Ph.D. Defense Vincent Verneuil

Elliptic Curve Cryptography and Security of Embedded Devices Ph.D. Defense Vincent Verneuil Institut de Math ematiques de Bordeaux Inside Secure June 13th, 2012 V. Verneuil - Elliptic Curve Cryptography and Security of Embedded Devices 1

1.72k views • 143 slides
Smaller Keys for Code based Cryptography: QC MDPC McEliece Implementations on Embedded

Smaller Keys for Code based Cryptography: QC MDPC McEliece Implementations on Embedded

Smaller Keys for Code based Cryptography: QC MDPC McEliece Implementations on Embedded Devices 4 th Code based Cryptography Workshop 2013, Rocquencourt, France Stefan Heyse, Ingo von Maurich and Tim Gneysu Horst Grtz Institute for

500 views • 39 slides
Flattened Device Trees for embedded FreeBSD Rafa Jaworowski raj@semihalf.com, raj@FreeBSD.org

Flattened Device Trees for embedded FreeBSD Rafa Jaworowski raj@semihalf.com, raj@FreeBSD.org

Flattened Device Trees for embedded FreeBSD Rafa Jaworowski raj@semihalf.com, raj@FreeBSD.org BSDCan 2010, Ottawa Flattened Device Trees for embedded FreeBSD Presentation outline Introduction Integration of FDT with FreeBSD

372 views • 33 slides
Embedded Device Generation Turning Software into Hardware Rohit Ramesh and Prabal Dutta

Embedded Device Generation Turning Software into Hardware Rohit Ramesh and Prabal Dutta

Embedded Device Generation Turning Software into Hardware Rohit Ramesh and Prabal Dutta Speakers Notes : - Im Rohit Ramesh, a PhD Student as the University of Michigan - Ive been working on Embedded Device Generation with Prof.

736 views • 52 slides
Fo Four on Embedded Device ces with Strong Co Counter ermea measures es Ag Against S t

Fo Four on Embedded Device ces with Strong Co Counter ermea measures es Ag Against S t

Fo Four on Embedded Device ces with Strong Co Counter ermea measures es Ag Against S t Side-Channel Attack cks CHES 2017 September 26-28, Taipei, Taiwan Zhe Liu Patrick Longa Geovandro C. C. F. Pereira Oscar Reparaz

853 views • 49 slides
Embedded System Security Professor Patrick McDaniel Charles Sestito Fall 2015 Embedded System

Embedded System Security Professor Patrick McDaniel Charles Sestito Fall 2015 Embedded System

Embedded System Security Professor Patrick McDaniel Charles Sestito Fall 2015 Embedded System Microprocessor used as a component in a device and is designed for a specific control function within a device Used In: Cell Phones

560 views • 31 slides
Cameras in embedded systems: Device tree and ACPI view Sakari Ailus - Intel A typical embedded

Cameras in embedded systems: Device tree and ACPI view Sakari Ailus - Intel A typical embedded

Cameras in embedded systems: Device tree and ACPI view Sakari Ailus - Intel A typical embedded system with a camera Image Signal Processor Raw camera sensor Lens voice coil vana camera regulator module vdig lens GPIO reset

439 views • 39 slides
ykpang@beyondsecurity.com Fuzz Testing for Embedded Device Security Assurance (EDSA) ISASecure

ykpang@beyondsecurity.com Fuzz Testing for Embedded Device Security Assurance (EDSA) ISASecure

Empowering Security Teams ykpang@beyondsecurity.com Fuzz Testing for Embedded Device Security Assurance (EDSA) ISASecure EDSA Certification Communication/Network Robustness Testing (CRT) CRT examines the capability of the device to

859 views • 33 slides
validation problem April 30, 2014 Embedded Linux Conference San Jose, CA Tomasz Figa Linux

validation problem April 30, 2014 Embedded Linux Conference San Jose, CA Tomasz Figa Linux

Trees need care a solution to Device Tree validation problem April 30, 2014 Embedded Linux Conference San Jose, CA Tomasz Figa Linux Kernel Developer Samsung R&D Institute Poland Overview 1. Device Tree recap 2. Device Tree data flow

688 views • 42 slides
How to Speak at a Conference Beth Tucker Long @e3betht Who am I? Beth Tucker Long PHP

How to Speak at a Conference Beth Tucker Long @e3betht Who am I? Beth Tucker Long PHP

How to Speak at a Conference Beth Tucker Long @e3betht Who am I? Beth Tucker Long PHP Developer Stay-at-home mom User group leader Mentor & Apprentice e3betht Audience Participation? Completely fine. Ask me

407 views • 39 slides
Build a Mini-Amazon-Go in 1 Day Nov 2019 Zhi Zhang, Rachel Hu Amazon AI d2l.ai Outline

Build a Mini-Amazon-Go in 1 Day Nov 2019 Zhi Zhang, Rachel Hu Amazon AI d2l.ai Outline

Build a Mini-Amazon-Go in 1 Day Nov 2019 Zhi Zhang, Rachel Hu Amazon AI d2l.ai Outline Initiate the work-horse(SageMaker notebook) Showcase a demo from the noob Sampling real-world data Hello world for object labeling

279 views • 12 slides
Ayesh Karunaratne Freelance Software Developer Kandy, Sri Lanka - Everywhere https://ayesh.me

Ayesh Karunaratne Freelance Software Developer Kandy, Sri Lanka - Everywhere https://ayesh.me

Ayesh Karunaratne Freelance Software Developer Kandy, Sri Lanka - Everywhere https://ayesh.me Ayesh @Ayeshlive Ayesh <form> <input name="query" /> <input type="submit" /> </form> var query =

1.42k views • 106 slides
The importance of being a noob (not a tech talk) Luka Kladaric hello@luka.io @kll

The importance of being a noob (not a tech talk) Luka Kladaric hello@luka.io @kll

The importance of being a noob (not a tech talk) Luka Kladaric hello@luka.io @kll http://speakerscore.com/luka 1 who am I? http://speakerscore.com/luka 2 3 civil service & first job Faculty of Mechanical Engineering and Naval

173 views • 13 slides
Kolla Project onboarding Mark Goddard | mgoddard | Kolla Train PTL What does Kolla do?

Kolla Project onboarding Mark Goddard | mgoddard | Kolla Train PTL What does Kolla do?

30.04.2019 Kolla Project onboarding Mark Goddard | mgoddard | Kolla Train PTL What does Kolla do? Kollas mission is to provide production-ready containers and deployment tools for operating OpenStack clouds. Project background Founded

958 views • 61 slides
Let Me Know: A Dialogue For Notifications Project Pitch CS294S Fall 2020 Goal: Event-based

Let Me Know: A Dialogue For Notifications Project Pitch CS294S Fall 2020 Goal: Event-based

Let Me Know: A Dialogue For Notifications Project Pitch CS294S Fall 2020 Goal: Event-based Notifications Notifications are useful across many domains Let me know if it will rain tomorrow Let me know if Juventus wins

283 views • 7 slides
Nova versioned notifications The result of a 3-year journey balazs.gibizer@ericsson.com Agenda

Nova versioned notifications The result of a 3-year journey balazs.gibizer@ericsson.com Agenda

Nova versioned notifications The result of a 3-year journey balazs.gibizer@ericsson.com Agenda My new use case The need to overhaul Novas notification interface The journey It is Done so it is DEMO time! Is there

252 views • 14 slides
Implementation of Epidemic Routing with IP Convergence Layer in ns-3 Dr. Justin P. Rohrer and Lt.

Implementation of Epidemic Routing with IP Convergence Layer in ns-3 Dr. Justin P. Rohrer and Lt.

Implementation of Epidemic Routing with IP Convergence Layer in ns-3 Dr. Justin P. Rohrer and Lt. Andrew N. Mauldin jprohrer@nps.edu Naval Postgraduate School TaNCAD Lab ( https://tancad.net ) WNS3, June 13, 2018 Abstract Implementation of

774 views • 55 slides

More recommend