http mutual authentication and web security
play

HTTP Mutual authentication and Web security Yutaka OIWA SAAG, IETF - PowerPoint PPT Presentation

Apr 05, 2023 •112 likes •404 views

HTTP Mutual authentication and Web security Yutaka OIWA SAAG, IETF 80 Prague RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST) Web security Its importance no need to

  1. HTTP Mutual authentication and Web security Yutaka OIWA SAAG, IETF 80 Prague RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  2. Web security Its importance…‧ no need to say Transaction security (credit card, PayPal etc.) User data privacy Most online consumer and business commerce transactions rely on Web RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  3. HTTP (Web) is very tricky! Web/HTTP auth is tricky…‧ why? It has completely different design from other protocols with authentications It has very different nature of security implications, even using the same technology Let me compare this with other conventional protocols, such as IMAP/TLS RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  4. Authentication in usual protocols (mail client scenario) A pre-configured, single server to be connected (per an account) A single (or a few) authenticated connection are established, and used for several requests sequentially A single connection Authentication Channel setup Data Processing Security setup RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  5. Web client scenario Target host dynamically determined from URL host-part It is often provided externally •‣ from URL link in an email •‣ from external Web site for federation (e.g. PayPal checkout, OpenID, OAuth etc.) No preconfigured authentication When the server demands, the browser/webpage requires user credentials RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  6. Web and authentication HTTP is a (kind of) packed-based protocol Each single request is independent from others Even requests on the same channel are independent from each other •‣ Requests on a “”single session”„ can be sent on several different TCP/TLS connections •‣ Requests on “”different sessions”„ can be sent on the same connection RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  7. Web and authentication HTTP is a (kind of) packed-based protocol Send a credential Post a mail form …‧ access granted …‧ server process the req. Connection 1 Access web mail A Want to write a mail …‧ auth required …‧ “”new mail”„ form sent to client Connection 2 RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  8. Web and authentication …‧even an interleaving is possible Send a credential A Read a news B Post a mail form …‧ access granted …‧ auth req. …‧ server process the req. Connection 1 Send a credential B Access web mail A Want to write a mail …‧ access granted …‧ auth required …‧ “”new mail”„ Connection 2 RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  9. Web and authentication Interleaving example: Gmail (Google) Sessions of two different accounts (one for gmail.com domain, one for my own domain) runs concurrently on the same browser RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  10. Functionality layering Conventional protocols Web/https (per 1 host) on TCP/TLS (e.g. IMAP) Authentication Authentication requests requests requests requests Application session Application session Authentication requests requests requests requests requests requests requests requests security security security Transport security security = application session transport transport transport transport RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  11. Web authentication methods HTTP auth (RFC 2617) has two problems 1: not very strong –— Basic = plaintext on wire –— Digest = just a salted MD5…‧dictionary attack possible 2: not used •‣ Bad UI design –— Who wants to see that popup dialog? •‣ Lack of required flexibility to implement web apps –— Log out, session timeout –— Support for guest users RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  12. Web authentication methods Cookies are widely (ab)used •‣ password checking implemented in application level using HTML and Web forms •‣ Application level session ID is issued as a “”cookie”„ •‣ All authorizations and authentication status controls (such as logout, timeout etc.) are also implemented in application level Cookie: SID=UxVwgVTWXnGVZDeGEo13PeOBK … RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  13. Web authentication methods Cookie-based authentication Problems •‣ Plaintext passwords always available to Web server •‣ Very weak against Phishing attacks •‣ Often misimplemented to cause security issues RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  14. Phishing A social attack on the Web attacker leads victims to a wrong site with a similar looking to the genuine site Steal a username and a password Why happens ( only ) on Web? •‣ Key: how the server authentication really works RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  15. TLS server authentication The client has an “” intended host ”„ The server sends a certificate to the client With hostname in CN or altDomainName field The client checks whether the two hostname matches This works for the mail client scenario, as “”intended host”„ is fixed. However…‧ RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  16. TLS server authentication In the Web browser scenario: The “”intended host”„ is a part of the given URL •‣ Dynamically determined by the browser •‣ “”The given URL”„ sometimes comes externally So, what happens? •‣ If the URL https://www.yahooo.co.jp/ is given, the browser will accept a connection with someone other than Yahoo! Japan™℣ RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  17. Current Phishing countermeasures Phishing site blacklists •‣ Hard to maintain •‣ Impossible to be perfect EV SSL certificates •‣ Sacrifices Web openness in trade with financial security requirements •‣ Users still need to check the EV status bar display RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  18. Problem statement We have to fix the Web authentication by technology which is Enough secure! •‣ Addresses many current issues on the authentication And, implementable, deployable and usable! •‣ Web people reject all ideas which decrease services’‚ flexibility and users’‚ experiences •‣ Not just scalability or security RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  19. Use cases to be targeted Usual “”Web applications”„ …‧ our proposal’‚s main target •‣ Small ones such as Wiki, Trac etc. •‣ Large ones such as Google, Yahoo, etc. Application-specific auth scope designs Needs flexibility, depending on pages “”Intranet-type”„ sites Users always authenticated to used All pages authenticated with same credential RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  20. HTTP “”Mutual”„ auth. New access authentication method for HTTP Secure ( � HTTP Basic/Digest, HTML Form) •‣ No offline password dictionary attack possible from received/eavesdropped traffic Easy to use ( � TLS client certificates) Provides Mutual authentication : clients can check server’‚s validity •‣ Authentication will ONLY succeed with servers possessing valid authentication secrets •‣ Phishers can’‚t make authentication to succeed RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

  21. HTTP Mutual authentication proposal Some design decisions Use HTTP-level authentications •‣ Works well with HTTP architecture and existing Web application designs Use with TLS encryption/server authentication •‣ Already working quite well, minus Phishing Strong protection of user identity •‣ No information leakage on eavesdropping •‣ Mutual authentication to detect Phishing attacks RESEARCH CENTER FOR INFORMATION SECURITY (RCIS) NATIONAL INSTITUTE OF ADVANCED INDUSTRIAL SCIENCE AND TECHNOLOGY (AIST)

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Repairing HTTP authn. for Web security - HTTP Mutual authentication proposal - Yutaka OIWA (AIST

Repairing HTTP authn. for Web security - HTTP Mutual authentication proposal - Yutaka OIWA (AIST

Repairing HTTP authn. for Web security - HTTP Mutual authentication proposal - Yutaka OIWA (AIST Japan) May 25, 2011 W3C Workshop on Identity in the Browser Some Keywords yesterday and today You can't get there from here directly

322 views • 13 slides
EAP-SIM Security Analysis Mobility Solutions Keyspace and Mutual Authentication Weaknesses Uri

EAP-SIM Security Analysis Mobility Solutions Keyspace and Mutual Authentication Weaknesses Uri

EAP-SIM Security Analysis Mobility Solutions Keyspace and Mutual Authentication Weaknesses Uri Blumenthal (analysis done by Sarvar Patel) Member of Technical Staff EAP-SIM Draft and its Security Claims Current EAP-SIM provides

342 views • 7 slides
Overview of HTTP Mutual Overview of HTTP Mutual authentication protocol authentication protocol

Overview of HTTP Mutual Overview of HTTP Mutual authentication protocol authentication protocol

Overview of HTTP Mutual Overview of HTTP Mutual authentication protocol authentication protocol proposal proposal Yutaka OIWA Yutaka OIWA RCIS, AIST RCIS, AIST July 26, 2010 July 26, 2010 Motivation Motivation Current HTTP

445 views • 11 slides
IT350 Web and Internet Programming SlideSet #18: HTTP Authentication

IT350 Web and Internet Programming SlideSet #18: HTTP Authentication

IT350 Web and Internet Programming SlideSet #18: HTTP Authentication http://www.httpwatch.com/httpgallery/authentication/ http://httpd.apache.org/docs/2.2/howto/auth.html Outline HTTP Basic Authentication HTTP Digest Authentication 1

349 views • 8 slides
Authentication Most technical security safeguards have Authentication authentication as a

Authentication Most technical security safeguards have Authentication authentication as a

Authentication Most technical security safeguards have Authentication authentication as a precondition How to authenticate: Something you know Password, Secrets Something you have Smart Card, Token Something you are Biometrie

607 views • 4 slides
EM 3 A : Efficient Mutual Multi-hop Mobile Authentication Scheme for PMIP Networks Sanaa Taha

EM 3 A : Efficient Mutual Multi-hop Mobile Authentication Scheme for PMIP Networks Sanaa Taha

EM 3 A Introduction System Model Security Analysis Performance Evaluation Conclusions and future work EM 3 A : Efficient Mutual Multi-hop Mobile Authentication Scheme for PMIP Networks Sanaa Taha November 18, 2011 Sanaa Taha EM 3 A :

361 views • 24 slides
Security II: Web authentication Such text-based protocols can be demonstrated via generic TCP

Security II: Web authentication Such text-based protocols can be demonstrated via generic TCP

Hyper Text Transfer Protocol (HTTP) version 0.9 With HTTP, a client (web browser) contacts a server on TCP port 80, sends a request line and receives a response file. Security II: Web authentication Such text-based protocols can be

383 views • 7 slides
SY306 Web and Databases for Cyber Operations SlideSet #21: HTTP Authentication

SY306 Web and Databases for Cyber Operations SlideSet #21: HTTP Authentication

SY306 Web and Databases for Cyber Operations SlideSet #21: HTTP Authentication http://www.httpwatch.com/httpgallery/authentication/ http://httpd.apache.org/docs/2.2/howto/auth.html Outline HTTP Basic Authentication HTTP Digest

226 views • 8 slides
A Simple and Cost-effective RFID Tag-Reader Mutual Authentication Scheme Divyan M. Konidala, Zeen

A Simple and Cost-effective RFID Tag-Reader Mutual Authentication Scheme Divyan M. Konidala, Zeen

A Simple and Cost-effective RFID Tag-Reader Mutual Authentication Scheme Divyan M. Konidala, Zeen Kim, Kwangjo Kim Information and Communications University (ICU), International Research Center for Information Security (IRIS), Auto-ID Lab Korea

273 views • 12 slides
AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

SECURITY TOPICS PART 2 AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is who they say they are and therefore permitted to access the requested resources: getting entrance to a computer lab

833 views • 44 slides
Web Security Secure Socket Layer (SSL) December 7, 2000 SSL 2 Web Security authentication:

Web Security Secure Socket Layer (SSL) December 7, 2000 SSL 2 Web Security authentication:

SSL 1 Web Security Secure Socket Layer (SSL) December 7, 2000 SSL 2 Web Security authentication: basic, digest often supplemented by cookies access control via network addresses multi-layered: SHTTP (secure HTTP) = just

713 views • 32 slides
Security Security as term, Possible Security violations Authentication Criteria for

Security Security as term, Possible Security violations Authentication Criteria for

BS1 WS19/20 topic-based slides Security Security as term, Possible Security violations Authentication Criteria for Trust in Computer Systems Three hearts of Windows Security DACLs A Look at Security System is secure if

988 views • 20 slides
Cisco Security Authentication Failure Rate Cisco Security Authentication Failure Rate or SHIT

Cisco Security Authentication Failure Rate Cisco Security Authentication Failure Rate or SHIT

Cisco Security Authentication Failure Rate Cisco Security Authentication Failure Rate or SHIT THAT DOES NOT WORK!!! security authentication failure rate To configure the number of allowable unsuccessful login attempts, use the security

476 views • 6 slides
Information Security Identification and authentication Advanced User Authentication II

Information Security Identification and authentication Advanced User Authentication II

Information Security Identification and authentication Advanced User Authentication II 2016-01-29 Amund Hunstad Guest Lecturer, amund@foi.se Agenda for lecture I within this part of the course Background Authentication eID

683 views • 44 slides
Information Security Identification and authentication Advanced User Authentication II

Information Security Identification and authentication Advanced User Authentication II

Information Security Identification and authentication Advanced User Authentication II 2019-02-08 Amund Hunstad Guest Lecturer, amund@foi.se Agenda for lecture I within this part of the course Background Authentication eID

1.19k views • 102 slides
AUTHENTICATION B Verifies something about A CHOICE (?) CONFIDENTIALITY 2 KINDS OF CRED. USABLE

AUTHENTICATION B Verifies something about A CHOICE (?) CONFIDENTIALITY 2 KINDS OF CRED. USABLE

AUTHENTICATION B Verifies something about A CHOICE (?) CONFIDENTIALITY 2 KINDS OF CRED. USABLE BY ANYONE TIED TO RP WHITELISTING (WL) CLAIM MINIMALITY (CM) MUTUAL AUTHE MUTUAL PROOF PARTIC. (MPP) ATTRIBUTE ANTI (FPI) Phishing 3RD FIX

347 views • 6 slides
Session 3 Hash Function, Asymmetric Encryption and Signature Sbastien Combfis Fall 2019

Session 3 Hash Function, Asymmetric Encryption and Signature Sbastien Combfis Fall 2019

I5020 Computer Security Session 3 Hash Function, Asymmetric Encryption and Signature Sbastien Combfis Fall 2019 This work is licensed under a Creative Commons Attribution NonCommercial NoDerivatives 4.0 International License.

740 views • 53 slides
Provably secure hash functions - do we care? Krystian Matusiewicz Technical University of Denmark

Provably secure hash functions - do we care? Krystian Matusiewicz Technical University of Denmark

Computational Complexity Provably-secure constructions Problems with provably-secure constructions Attempts at practical constructions Provably secure hash functions - do we care? Krystian Matusiewicz Technical University of Denmark Quo Vadis

874 views • 20 slides
RSA-PSS in XMLDSig Position Paper W3C Workshop Mountain View 1 25.09.2007

RSA-PSS in XMLDSig Position Paper W3C Workshop Mountain View 1 25.09.2007

RSA-PSS in XMLDSig Position Paper W3C Workshop Mountain View 1 25.09.2007 Konrad.Lanz@iaik.tugraz.at Konrad Lanz Digital Signature Services OASIS-DSS - IAIK (Inst. f. angew. Informationsverarbeitung und Kommunikation) - SIC

669 views • 15 slides
Collision Resistant Usage of SHA-1 via Message Pre-processing Michael Szydlo RSA Security

Collision Resistant Usage of SHA-1 via Message Pre-processing Michael Szydlo RSA Security

Collision Resistant Usage of SHA-1 via Message Pre-processing Michael Szydlo RSA Security Yiqun Lisa Yin Independent Consultant Recent Advances in Hash Collision Attacks Efficient collisions found for MD4, MD5 Improved techniques

800 views • 10 slides
Web Security What should be the Threat Model for the Web? Goal and Threat Model Much can go

Web Security What should be the Threat Model for the Web? Goal and Threat Model Much can go

Web Security What should be the Threat Model for the Web? Goal and Threat Model Much can go wrong on the web! Clients encounter malicious content Web servers are target of break-ins Fake content/servers trick users Data sent

446 views • 16 slides
Secure Coding Patterns Andreas Hallberg, TrueSec Trust Domain-Driven Security The Untrusted

Secure Coding Patterns Andreas Hallberg, TrueSec Trust Domain-Driven Security The Untrusted

Secure Coding Patterns Andreas Hallberg, TrueSec Trust Domain-Driven Security The Untrusted Pattern Immutability The Inverse Life Coach Pattern Trust The foundation of software security 1. Hello! Im Businessman Bob! 2. Hello! Im the

666 views • 66 slides
CS 204: Advanced Computer Networks Jiasi Chen Lectures: MWF 12:10-1pm Humanities and Social

CS 204: Advanced Computer Networks Jiasi Chen Lectures: MWF 12:10-1pm Humanities and Social

CS 204: Advanced Computer Networks Jiasi Chen Lectures: MWF 12:10-1pm Humanities and Social Sciences 1403 http://www.cs.ucr.edu/~jiasi/teaching/cs204_spring17/ 1 Why Networks? Supports the applications that we use today Social media

725 views • 46 slides
Modern Security Model for Linux Operating Systems Aleksander Zdyb S OFTWARE E NGINEER T IZEN P

Modern Security Model for Linux Operating Systems Aleksander Zdyb S OFTWARE E NGINEER T IZEN P

Aleksander Zdyb Modern Security Model for Linux Operating Systems Aleksander Zdyb S OFTWARE E NGINEER T IZEN P LATFORM S ECURITY a.zdyb@samsung.com https://github.com/azdyb Briefly about security requirements About Tizen operating system

920 views • 46 slides

More recommend