everybody be cool this is a robbery
play

Everybody be Cool, This is a Robbery! Normal: Normal: Emphasis: - PowerPoint PPT Presentation

May 10, 2023 •185 likes •766 views

Color Scheme Color Scheme 52 29 89 89 89 89 55 32 89 89 40 68 121 37 121 200 208 200 226 194 194 153 153 255 153 153 150 153 153 0 Text Formatting Text Formatting Everybody be Cool, This is a Robbery! Normal:

  1. Color Scheme Color Scheme 52 29 89 89 89 89 55 32 89 89 40 68 121 37 121 200 208 200 226 194 194 153 153 255 153 153 150 153 153 0 Text Formatting Text Formatting Everybody be Cool, This is a Robbery! Normal: Normal: Emphasis: Emphasis: Jean-Baptiste Bedrune , Gabriel Campana Open Sans Open Sans Open Sans Open Sans Size 12 Size 12 Size 12 Size 12 firstname.lastname@ledger.fr Black Black Turquoise Turquoise Slide title: Slide title: TITLE: TITLE: Open Sans Open Sans OPEN SANS OPEN SANS Size 14 Size 14 SIZE 12 SIZE 12 white white DARK GREY DARK GREY UPPERCASE UPPERCASE Hong Kong - New York - Paris – San Francisco - Vierzon BOLD BOLD

  2. Color Scheme Color Scheme Disclaimer 29 52 89 89 89 89 32 55 89 89 68 40 121 37 121 208 200 200 The Donjon (Ledger Security Team) assess the security of technologies used by • 226 194 194 Ledger 153 153 255 153 153 150 The vulnerabilities in this presentation were found during a security audit • 153 153 0 We don’t want to single out one particular vendor • Goals: Text Formatting Text Formatting • Raise awareness about HSM security • Normal: Normal: Emphasis: Emphasis: Open Sans Open Sans Open Sans Open Sans Lay the groundwork for other security researchers • Size 12 Size 12 Size 12 Size 12 Black Black Turquoise Turquoise Improve the overall security • Slide title: Slide title: TITLE: TITLE: Open Sans Open Sans OPEN SANS OPEN SANS Size 14 Size 14 SIZE 12 SIZE 12 white white DARK GREY DARK GREY UPPERCASE UPPERCASE BOLD BOLD

  3. Color Scheme Color Scheme Agenda 52 29 89 89 89 89 32 55 89 89 68 40 37 121 121 208 200 200 What is an HSM? • 194 226 194 Characteristics of the HSM assessed • 153 153 255 153 153 150 Brief intro to PKCS #11 • 153 153 0 Developing tools for vulnerability discovery • Vulnerability research and exploitation Text Formatting Text Formatting • Normal: Normal: Emphasis: Emphasis: Open Sans Open Sans Open Sans Open Sans Size 12 Size 12 Size 12 Size 12 Black Black Turquoise Turquoise Slide title: Slide title: TITLE: TITLE: Open Sans Open Sans OPEN SANS OPEN SANS Size 14 Size 14 SIZE 12 SIZE 12 white white DARK GREY DARK GREY UPPERCASE UPPERCASE BOLD BOLD

  4. Color Scheme Color Scheme 52 29 89 89 89 89 55 32 89 89 68 40 37 121 121 208 200 200 194 226 194 153 153 44 153 153 144 153 153 200 HSM? Text Formatting Text Formatting Normal: Normal: Emphasis: Emphasis: Open Sans Open Sans Open Sans Open Sans Size 12 Size 12 Size 12 Size 12 Black Black Turquoise Turquoise Slide title: Slide title: TITLE: TITLE: Open Sans Open Sans OPEN SANS OPEN SANS Size 14 Size 14 SIZE 12 SIZE 12 white white DARK GREY DARK GREY UPPERCASE UPPERCASE BOLD BOLD

  5. Color Scheme Color Scheme What is an HSM? 52 29 89 89 89 89 32 55 89 89 68 40 121 37 121 200 208 200 Security enclaves to store and process sensitive data • 226 194 194 Computes cryptographic operations • 153 153 255 153 153 150 Generate keys • 153 153 0 Keys never leave the enclave • Physical computing device: • Text Formatting Text Formatting PCI card or network appliance • Normal: Normal: Emphasis: Emphasis: Open Sans Open Sans Open Sans Open Sans One or more crypto-processors • Size 12 Size 12 Size 12 Size 12 Anti-tampering countermeasures Black Black Turquoise Turquoise • Slide title: Slide title: TITLE: TITLE: Open Sans Open Sans OPEN SANS OPEN SANS Size 14 Size 14 SIZE 12 SIZE 12 white white DARK GREY DARK GREY UPPERCASE UPPERCASE BOLD BOLD

  6. Color Scheme Color Scheme Usage Examples 52 29 89 89 89 89 32 55 89 89 68 40 37 121 121 208 200 200 PKI: • 226 194 194 CA’s private key generation and storage, certificates signing • 153 153 255 153 153 150 Requirement for all CAs (CA-Browser Forum Baseline) • 153 153 0 Banking: CVV verification, transaction authorization, payment card personalization • Telecommunications: strong cryptographic material for key injection by SIM • Text Formatting Text Formatting manufacturer Normal: Normal: Emphasis: Emphasis: Open Sans Open Sans Open Sans Open Sans DNSSEC: storage of Root Zone keys (FIPS 140-2 level 4 HSM) • Size 12 Size 12 Size 12 Size 12 Black Black Turquoise Turquoise Cloud services: encryption/decryption of customer data • Slide title: Slide title: TITLE: TITLE: HSM-as-a-Service: Google, Microsoft, Amazon, etc. • Open Sans Open Sans OPEN SANS OPEN SANS Size 14 Size 14 SIZE 12 SIZE 12 white white DARK GREY DARK GREY UPPERCASE UPPERCASE BOLD BOLD

  7. Color Scheme Color Scheme How much does it cost? 29 52 89 89 89 89 55 32 89 89 68 40 37 121 121 208 200 200 Only a few vendors, no market share information • 226 194 194 No public prices, large range of models for each vendor • 153 153 255 153 153 150 According to Hackable Security Modules (REcon Brussels 2017): • 153 153 0 Brand X, Model A: $29,500.00 • Brand Y, Model B: $9,500.00 • Text Formatting Text Formatting Brand Z, Model C: $15,000.00 • Normal: Normal: Emphasis: Emphasis: Open Sans Open Sans Open Sans Open Sans Size 12 Size 12 Size 12 Size 12 Black Black Turquoise Turquoise Slide title: Slide title: TITLE: TITLE: Open Sans Open Sans OPEN SANS OPEN SANS Size 14 Size 14 SIZE 12 SIZE 12 white white DARK GREY DARK GREY UPPERCASE UPPERCASE BOLD BOLD

  8. Color Scheme Color Scheme Appliance (Host + HSM) 52 29 89 89 89 89 32 55 89 89 40 68 37 121 121 208 200 200 HSM 226 194 194 PCI Express card • 153 153 255 Also available as a network • 153 153 150 appliance) 153 153 0 FIPS 140-2 level 3 certified • Components are coated in epoxy • USB and serial ports for an optional Text Formatting Text Formatting • smart-card reader Normal: Normal: Emphasis: Emphasis: Ethernet controller without connector • Open Sans Open Sans Open Sans Open Sans Size 12 Size 12 Size 12 Size 12 Host Black Black Turquoise Turquoise Standard Linux server • Slide title: Slide title: TITLE: TITLE: Open Sans Open Sans OPEN SANS OPEN SANS Linux Kernel modules • Size 14 Size 14 SIZE 12 SIZE 12 CLI and GUI software, SDK white white DARK GREY DARK GREY • UPPERCASE UPPERCASE BOLD BOLD

  9. Color Scheme Color Scheme Communication: Shared DRAM 52 29 89 89 89 89 32 55 89 89 68 40 37 121 121 Host (Linux x86-64) HSM (PowerPC) 208 200 200 226 194 194 153 153 255 153 153 150 153 153 Messaging Messaging 0 module module Text Formatting Text Formatting Kernel land Kernel land Normal: Normal: Emphasis: Emphasis: Open Sans Open Sans Open Sans Open Sans Size 12 Size 12 Size 12 Size 12 API.so API.so Black Black Turquoise Turquoise Client (host to (requests HSM HSM) handler) Slide title: Slide title: TITLE: TITLE: Open Sans Open Sans OPEN SANS OPEN SANS Size 14 Size 14 SIZE 12 SIZE 12 User land User land white white DARK GREY DARK GREY UPPERCASE UPPERCASE BOLD BOLD

  10. Color Scheme Color Scheme FIPS 140-2: Security Requirements for Cryptographic Modules 29 52 89 89 89 89 32 55 89 89 40 68 121 37 121 208 200 200 U.S. government computer security standard • 226 194 194 Level 1: basic software requirements • 153 153 255 153 153 150 Level 2, 3, 4: physical requirements • 153 153 0 Level 3: Detection and response to attempts at physical access, use or modification • of the cryptographic module Text Formatting Text Formatting Normal: Normal: Emphasis: Emphasis: Not a certification about software attacks Open Sans Open Sans Open Sans Open Sans Size 12 Size 12 Size 12 Size 12 Black Black Turquoise Turquoise Slide title: Slide title: TITLE: TITLE: Open Sans Open Sans OPEN SANS OPEN SANS Size 14 Size 14 SIZE 12 SIZE 12 white white DARK GREY DARK GREY UPPERCASE UPPERCASE BOLD BOLD

  11. Color Scheme Color Scheme 52 29 89 89 89 89 55 32 89 89 68 40 37 121 121 208 200 200 194 226 194 153 153 44 153 153 144 153 153 200 PKCS #11 Text Formatting Text Formatting Normal: Normal: Emphasis: Emphasis: Open Sans Open Sans Open Sans Open Sans Size 12 Size 12 Size 12 Size 12 Black Black Turquoise Turquoise Slide title: Slide title: TITLE: TITLE: Open Sans Open Sans OPEN SANS OPEN SANS Size 14 Size 14 SIZE 12 SIZE 12 white white DARK GREY DARK GREY UPPERCASE UPPERCASE BOLD BOLD

  12. Color Scheme Color Scheme PKCS #11: Introduction 52 29 89 89 89 89 32 55 89 89 68 40 37 121 121 208 200 200 Generic interface to communicate with a cryptographic device • 194 226 194 Smart card • 153 153 255 153 153 150 HSM, etc. • 153 153 0 Portable API: Cryptographic Token Interface (Cryptoki) • Session management • Text Formatting Text Formatting Cryptographic objects manipulation • Normal: Normal: Emphasis: Emphasis: Open Sans Open Sans Open Sans Open Sans Operations on these objects (encryption, decryption, signature, etc.) • Size 12 Size 12 Size 12 Size 12 Black Black Turquoise Turquoise Slide title: Slide title: TITLE: TITLE: Open Sans Open Sans OPEN SANS OPEN SANS Size 14 Size 14 SIZE 12 SIZE 12 white white DARK GREY DARK GREY UPPERCASE UPPERCASE BOLD BOLD

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Managing Risk: Robbery Presented by Allen J. Stendahl New Risks Continue to Evolve Plastic

Managing Risk: Robbery Presented by Allen J. Stendahl New Risks Continue to Evolve Plastic

Managing Risk: Robbery Presented by Allen J. Stendahl New Risks Continue to Evolve Plastic card fraud Counterfeit documents (Nigerian scams) Identity theft Indirect lending Robbery is a Constant As old as depository

280 views • 16 slides
Tips and Tricks for a way cool Way Cool Presentation Thank you for your interest in

Tips and Tricks for a way cool Way Cool Presentation Thank you for your interest in

Tips and Tricks for a way cool Way Cool Presentation Thank you for your interest in doing a Way Cool Presentation for the Beaty Biodiversity Museum! Since January 2011, this monthly series allows visitors to delve deeper into specific

288 views • 3 slides
100 Cool Cities: Overcoming barriers of Cool roofs and cool pavements Hashem Akbari Heat Island

100 Cool Cities: Overcoming barriers of Cool roofs and cool pavements Hashem Akbari Heat Island

100 Cool Cities: Overcoming barriers of Cool roofs and cool pavements Hashem Akbari Heat Island Group Concordia University, Montreal, Canada Tel: 514-848-2424 x3201 E_mail: Hashem@HashemAkbari.com, HAkbari@ENCS.Concordia.ca GSEP Cool Roofs

569 views • 28 slides
Cool Chips Cool Chips Markets Markets Cool Cargo Applications Cool Cargo Applications

Cool Chips Cool Chips Markets Markets Cool Cargo Applications Cool Cargo Applications

Slide 1 Cool Chips plc Cool Chips plc Cool Chips Cool Chips Markets Markets Cool Cargo Applications Cool Cargo Applications Cool Chips plc Proprietary and Confidential - Property of Cool Chips plc Slide 2 Cool Chips Market

295 views • 6 slides
How to Cool and Heat with pure water... without using any energy or moving parts Cool Cell

How to Cool and Heat with pure water... without using any energy or moving parts Cool Cell

How to Cool and Heat with pure water... without using any energy or moving parts Cool Cell Technology Cool Cells are highly insulated metal boxes used to protect batteries and sensitive electronics from overheating in the summer and from

1.02k views • 12 slides
White Roofs to Cool your Building, your City and (this is new !) Cool the World. A US Progress

White Roofs to Cool your Building, your City and (this is new !) Cool the World. A US Progress

White Roofs to Cool your Building, your City and (this is new !) Cool the World. A US Progress Report GSEP Working Group on Cool Roofs & Pavements Crystal City, VA, Sept. 12, 2011 Arthur H. Rosenfeld, Former Commissioner California Energy

1.04k views • 31 slides
The Cool Heads is fan is the perfect device to keep you cool from this summer on. It was

The Cool Heads is fan is the perfect device to keep you cool from this summer on. It was

The Cool Heads is fan is the perfect device to keep you cool from this summer on. It was specifically designed to cool off any one who has to wear a helmet, hard hat, or mask. Heat is a big issue in some places, add a hard hat to that and heat

533 views • 3 slides
Cool Chips Cool Chips Markets Markets Electronics Cooling Electronics Cooling Cool

Cool Chips Cool Chips Markets Markets Electronics Cooling Electronics Cooling Cool

Slide 1 Cool Chips plc Cool Chips plc Cool Chips Cool Chips Markets Markets Electronics Cooling Electronics Cooling Cool Chips plc Proprietary and Confidential - Property of Cool Chips plc Slide 2 Active vs. Passive Cooling

100 views • 8 slides
Patterns and Trends of Situation on Piracy and Armed Robbery Against Ships in Asia for 2011 12

Patterns and Trends of Situation on Piracy and Armed Robbery Against Ships in Asia for 2011 12

Patterns and Trends of Situation on Piracy and Armed Robbery Against Ships in Asia for 2011 12 January 2012 Regional Cooperation Agreement on Combating Piracy and Armed Robbery against Ships in Asia Scope Scope Overall patterns and trends

303 views • 26 slides
The Cool Surfaces Opportunity in Los Angeles Global Cool Ci:es

The Cool Surfaces Opportunity in Los Angeles Global Cool Ci:es

The Cool Surfaces Opportunity in Los Angeles Global Cool Ci:es Alliance (GCCA) The Global Cool Ci-es Alliance is dedicated to advancing policies and

686 views • 43 slides
Cool & Useless @KevlinHenney cool , adjective fashionably attractive or impressive

Cool & Useless @KevlinHenney cool , adjective fashionably attractive or impressive

Cool & Useless @KevlinHenney cool , adjective fashionably attractive or impressive excellent used to express acceptance or agreement unfriendly or unenthusiastic used as an intensive used when a conversation goes silent

620 views • 34 slides
Cool Chips Cool Chips Markets Markets Aerospace Applications Aerospace Applications

Cool Chips Cool Chips Markets Markets Aerospace Applications Aerospace Applications

Slide 1 Cool Chips plc Cool Chips plc Cool Chips Cool Chips Markets Markets Aerospace Applications Aerospace Applications Cool Chips plc Proprietary and Confidential - Property of Cool Chips plc Slide 2 Cool Chips Market

326 views • 6 slides
Cool Chips Cool Chips Markets Markets Domestic Refrigeration Domestic Refrigeration

Cool Chips Cool Chips Markets Markets Domestic Refrigeration Domestic Refrigeration

Slide 1 Cool Chips plc Cool Chips plc Cool Chips Cool Chips Markets Markets Domestic Refrigeration Domestic Refrigeration Cool Chips plc Proprietary and Confidential - Property of Cool Chips plc Slide 2 Cool Chips Market

346 views • 7 slides
Outline Introduction to GCCA Hot cities Cool science Benefits of reflective

Outline Introduction to GCCA Hot cities Cool science Benefits of reflective

Keeping your Communities Cool Tools for Reducing Urban Heat November 6 th , 2014 Outline Introduction to GCCA Hot cities Cool science Benefits of reflective pavements Cool pavement options Other cooling strategies Global

831 views • 41 slides
cool warm white/blue light: cool/calm yellow/red light: vibrant/stimulating can

cool warm white/blue light: cool/calm yellow/red light: vibrant/stimulating can

COLOUR PERCEPTION personal and cultural associations a ff ect our experience of color patterns established over time long-held association are o f ten though not always universal cool colours (blue/green) associated with:

503 views • 48 slides
Cool Springs Market Overview The Cool Springs submarket has become Nashvilles premiere

Cool Springs Market Overview The Cool Springs submarket has become Nashvilles premiere

Cool Springs Market Overview The Cool Springs submarket has become Nashvilles premiere corporate address. Many national and international corporations call the area home including 13 of the 25 largest publicly traded companies in the region

246 views • 9 slides
An OCL Map Type Edward Willink Willink Transformations Ltd Eclipse Foundation MMT Component

An OCL Map Type Edward Willink Willink Transformations Ltd Eclipse Foundation MMT Component

An OCL Map Type Edward Willink Willink Transformations Ltd Eclipse Foundation MMT Component co-Lead OCL Project Lead QVTd Project Lead QVTo Committer OMG (Model Driven Solutions) OCL 2.3, 2.4, 2.5 RTF Chair QVT 1.2, 1.3, 1.4 RTF Chair OCL

553 views • 7 slides
Web applications are used extensively in many areas: We will rely on web applications more in

Web applications are used extensively in many areas: We will rely on web applications more in

Muath Alkhalaf 1 Shauvik Roy Choudhary 2 Mattia Fazzini 2 Tevfik Bultan 1 Alessandro Orso 2 Christopher Kruegel 1 1 UC Santa Barbara 2 Georgia Tech Web applications are used extensively in many areas: We will rely on web applications more in

872 views • 47 slides
CO444H Pointer analysis Ben Livshits 1 Approaches to Finding Reliability and Security Bugs

CO444H Pointer analysis Ben Livshits 1 Approaches to Finding Reliability and Security Bugs

Datalog CO444H Pointer analysis Ben Livshits 1 Approaches to Finding Reliability and Security Bugs Static Analysis Tools Black-box Testing/Fuzzing 2 Coverity: a Static Analysis Company 3 Bug Report From Coverity Actual bug Path

701 views • 59 slides
Topic 19 (define x (cons 'a 'b)) Mutable Data Objects x --> (a . b) Primitive mutators for

Topic 19 (define x (cons 'a 'b)) Mutable Data Objects x --> (a . b) Primitive mutators for

Mutable data Basic operations like cons, car, cdr can construct list structure and select its parts, but cannot modify. Topic 19 (define x (cons 'a 'b)) Mutable Data Objects x --> (a . b) Primitive mutators for pairs: set-car! And

460 views • 8 slides
Learning a Static Analyzer from Data Pavol Bielik Veselin Raychev Martin Vechev Department of

Learning a Static Analyzer from Data Pavol Bielik Veselin Raychev Martin Vechev Department of

Learning a Static Analyzer from Data Pavol Bielik Veselin Raychev Martin Vechev Department of Computer Science CAV 2017 ETH Zurich July 22-28, Heidelberg Writing a Static Analyzer Framework for Java Static Type Checker Static Type

805 views • 46 slides
Structure-aware fuzzing for real-world projects Rka Kovcs Etvs Lornd University,

Structure-aware fuzzing for real-world projects Rka Kovcs Etvs Lornd University,

Structure-aware fuzzing for real-world projects Rka Kovcs Etvs Lornd University, Hungary rekanikolett@gmail.com 1 Overview tutorial, no groundbreaking discoveries Motivation growing code size -> growing number of bugs

387 views • 27 slides
Opensource Column Store Databases: MariaDB ColumnStore vs. ClickHouse Alexander Rubin

Opensource Column Store Databases: MariaDB ColumnStore vs. ClickHouse Alexander Rubin

Opensource Column Store Databases: MariaDB ColumnStore vs. ClickHouse Alexander Rubin VirtualHealth About me Working with MySQL for 10-15 years Started at MySQL AB 2006 - Sun Microsystems, Oracle (MySQL Consulting) - Percona since

644 views • 50 slides
Monadic Imperatjve languages C# Java C / C++ Fortran Subtract abstractjons Scala Add

Monadic Imperatjve languages C# Java C / C++ Fortran Subtract abstractjons Scala Add

by Mario Fusco mario.fusco@gmail.com twitter: @mariofusco Monadic Imperatjve languages C# Java C / C++ Fortran Subtract abstractjons Scala Add abstractjons F# Hybrid languages Algol Lisp ML Haskell Functjonal languages new

1.71k views • 73 slides

More recommend