introduction to software security
play

Introduction to Software Security (Wake up, Neo. . . ) Emmanuel - PowerPoint PPT Presentation

Aug 21, 2023 •129 likes •688 views

Introduction to Software Security (Wake up, Neo. . . ) Emmanuel Fleury <emmanuel.fleury@u-bordeaux.fr> LaBRI, Universit de Bordeaux, France October 8, 2019 Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8,

  1. Introduction to Software Security (Wake up, Neo. . . ) Emmanuel Fleury <emmanuel.fleury@u-bordeaux.fr> LaBRI, Université de Bordeaux, France October 8, 2019 Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 1 / 53

  2. Overview Motivations 1 What is ’Software Security’ ? 2 Security Vulnerabilities 3 Malware Alerts 4 Software Vulnerabilities 5 Examples of Real Flaws 6 Course Overview 7 References & Further Readings 8 Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 2 / 53

  3. Overview Motivations 1 What is ’Software Security’ ? 2 Security Vulnerabilities 3 Malware Alerts 4 Software Vulnerabilities 5 Examples of Real Flaws 6 Course Overview 7 References & Further Readings 8 Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 3 / 53

  4. Internet is under attack !!! Newsgroups: comp.risks Subject: Virus on the Arpanet - Milnet <Stoll@DOCKMASTER.ARPA> Thu, 3 Nov 88 06:46 EST Hi Gang! It's now 3:45 AM on Wednesday 3 November 1988. I'm tired, so don't believe everything that follows... Apparently, there is a massive attack on Unix systems going on right now. I have spoken to systems managers at several computers, on both the east & west coast, and I suspect this may be a system wide problem. Symptom: hundreds or thousands of jobs start running on a Unix system bringing response to zero. [...] This virus is spreading very quickly over the Milnet. Within the past 4 hours, I have evidence that it has hit >10 sites across the country, both Arpanet and Milnet sites. I suspect that well over 50 sites have been hit. Most of these are "major" sites and gateways. [...] This is bad news. Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 4 / 53

  5. An Autopsy of the ’Morris Worm’ Case Nov. 2, 1988, 6PM (East Coast Time), New-York : Morris drop his worm on the network of the MIT Artificial Intelligence Lab. Nov. 2, 1988, 7PM (East Coast Time), Berkeley : Berkeley main Gateway get infected. Nov. 3, 1988, 6AM (East Coast Time), All over US : After a night spent fighting the worm system administrators start to gather information and organize resistance. At this time about 2,500 backbones are down thus almost shutting down the Internet. Nov. 4, 1988, Berkeley, Usenix Conference : A lot of the most talented system administrators from US were attending Usenix conference in Berkeley and had to solve the problem remotely from there (most of the time by phone as they can’t log on their server). A first analysis of the Worm is presented at one of the Workshop and patches start to get forged. Several days later : The worm is eradicated from the backbones of Internet, security updates and patches are applied. Morris is arrested at his university. Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 5 / 53

  6. Sequel of Morris Worm Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 6 / 53

  7. What We Learned from the Worm People are more dependant of information networks than they could think (nowadays, they also share a lot more sensitive information than they think without being prepared for it); Internet is sensitive to massive network attacks ; Internet security is a World wide problem. There is a need for computer security experts able to deal with such alerts. Forging patches against new attacks, inventing better counter-measures, staying ahead from potential attackers. There is a need for central agencies gathering informations and coordinating efforts about computer security issues. There is a need for an international community of experts exchanging about computer security in real-time. Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 7 / 53

  8. Vulnerability Statistics (CERT|CC) Year #Vulnerabilities 1999 894 · 10 4 2000 1 , 020 2001 1 , 677 2002 2 , 156 2003 1 , 527 1 . 5 2004 2 , 451 2005 4 , 935 #Vulnerabilities 2006 6 , 610 2007 6 , 520 1 2008 5 , 632 2009 5 , 736 2010 4 , 652 2011 4 , 155 0 . 5 2012 5 , 297 2013 5 , 191 2014 7 , 946 0 2015 6 , 480 2016 6 , 447 2000 2005 2010 2015 2017 14 , 714 Year 2018 16 , 555 2019 424 Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 8 / 53

  9. Overview Motivations 1 What is ’Software Security’ ? 2 Security Vulnerabilities 3 Malware Alerts 4 Software Vulnerabilities 5 Examples of Real Flaws 6 Course Overview 7 References & Further Readings 8 Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 9 / 53

  10. Computer Security Security is “ the freedom of danger, risk and loss ” . Data Cryptography, Cryptanalysis, Security . . . Computer Protocol Cryptographic Protocols, Network Security, Security Security . . . Software Application Security, Operating System Security, Security . . . Data Security : Protect/Attack static data; Protocol Security : Protect/Attack data exchanges; Software Security : Protect/Attack computer programs. Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 10 / 53

  11. Software Security Goals Software Security “ Spirit ” Software Security is about preventing/finding misusage of computer programs in order to gain unauthorized capabilities or knowledge. Application Security : Lies in user-space; Attacker Concerned about usual programming errors: Users Buffer-overflows, heap-overflows, format string bugs, . . . Root Operating System Security : Lies in kernel-space; Concerned about structural security: Kernel Access control, randomization of process memory layout, data execution prevention, . . . Software Obfuscation/Reverse-engineering : Extracting knowledge from pieces of software: Disassembler, cfg-recovery, decompiler, obfuscators, . . . Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 11 / 53

  12. Security Flaws: Why ? Computer programs are complex and long ! They need experts to be handled properly. Programs interact with each others in an unpredictable way. Networks leverage program interactions of several magnitude orders. Internet is an extremely hostile place where you cannot hide. What You See Is Not What You eXecute ( WYSINWYX ). (see next slides. . . ) Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 12 / 53

  13. Architectural Models Harvard Architecture First implemented in the Mark I (1944). CPU Keep program and data separated. Bus Bus Allows to fetch data and instructions in the same time. Program Data Memory Memory Simple to handle for programmers but less powerful for computers. Princeton Architecture CPU First implemented in the ENIAC (1946). Allows self-modifying code and entanglement Bus of program and data . Memory Difficult to handle for programmers but more powerful for computers. (program and data) Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 13 / 53

  14. What Consequences on Real World? Facts about modern software: Programmers are coding in Harvard architecture. Machines are executing code in Princeton architecture. Compilers translate code from Harvard to Princeton architecture. But, a few is lost in translation. . . and some bugs may allow malicious users to access unauthorized features through unexpected behaviors. Most of the security issues in software security are coming from a misunderstanding of the coupling of these two architectures. And, some of the computer security experts see exploitation as “ Programming Weird Machine ” (using such “ machine ” outside of its specifications). ∗ “What You See Is Not What You Execute” (WYSINWYX) is a term coined by Gogul Balakrishnan and Thomas Reps in 2007. Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 14 / 53

  15. A Magic Example #include <stdio.h> #include <stdint.h> What will be the output ? int foo ( void ) { char buffer[8]; 1 ‘ 1 ’ char * ret; ret = buffer + 24; 2 ‘ 0 ’ (*ret) += 7; return 0; 3 ‘ -1 ’ } 4 ‘ Segmentation fault ’ int main ( void ) { int i = 0; foo (); i = 1; printf ("%d \n ", i); return 0; } Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 15 / 53

  16. A Magic Example #include <stdio.h> #include <stdint.h> What will be the output ? int foo ( void ) { char buffer[8]; 1 ‘ 1 ’ char * ret; ret = buffer + 24; 2 ‘ 0 ’ (*ret) += 7; return 0; 3 ‘ -1 ’ } 4 ‘ Segmentation fault ’ int main ( void ) { int i = 0; foo (); Let’s try it ! i = 1; printf ("%d \n ", i); return 0; } Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 15 / 53

  17. Overview Motivations 1 What is ’Software Security’ ? 2 Security Vulnerabilities 3 Malware Alerts 4 Software Vulnerabilities 5 Examples of Real Flaws 6 Course Overview 7 References & Further Readings 8 Emmanuel Fleury (LaBRI, France) Introduction to Software Security October 8, 2019 16 / 53

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CS-412 Software Security Introduction Mathias Payer EPFL, Spring 2019 Mathias Payer CS-412

CS-412 Software Security Introduction Mathias Payer EPFL, Spring 2019 Mathias Payer CS-412

CS-412 Software Security Introduction Mathias Payer EPFL, Spring 2019 Mathias Payer CS-412 Software Security Course outline Secure software lifecycle Security policies Attack vectors Defense strategies: mitigations and testing Case

681 views • 49 slides
Software Defjned Networking Security Outline Introduction What is SDN? SDN attack

Software Defjned Networking Security Outline Introduction What is SDN? SDN attack

Software Defjned Networking Security Outline Introduction What is SDN? SDN attack surface Recent vulnerabilities Security response Defensive technologies Next steps Introduction Security nerd, recovering

790 views • 39 slides
Introduction Gang Tan Penn State University Spring 2019 CMPSC 447: Software Security Why a

Introduction Gang Tan Penn State University Spring 2019 CMPSC 447: Software Security Why a

Introduction Gang Tan Penn State University Spring 2019 CMPSC 447: Software Security Why a course on software security? Software plays a major role in the modern society But is a major source of security problems. Software is the

659 views • 30 slides
deel 2 sws1 1 Software and Web Security - 1 &amp; 2 Software is the main source of security

deel 2 sws1 1 Software and Web Security - 1 &amp; 2 Software is the main source of security

Software and Web Security deel 2 sws1 1 Software and Web Security - 1 &amp; 2 Software is the main source of security vulnerabilities esp in systems accessible via a network part 1 security problems in machine code, compiled from C(++)

1.35k views • 67 slides
Software and Web Security deel 2 deel 2 sws1 Software and Web Security - 1 &amp; 2 y Software

Software and Web Security deel 2 deel 2 sws1 Software and Web Security - 1 &amp; 2 y Software

1 Software and Web Security deel 2 deel 2 sws1 Software and Web Security - 1 &amp; 2 y Software is the main source of security vulnerabilities esp in systems accessible via a network i t ibl i t k part 1 part 1 security problems

672 views • 65 slides
Software In-Security Buffer overflows Overview Web Application security Malware OS

Software In-Security Buffer overflows Overview Web Application security Malware OS

Lecture overview Table of contents: Introduction to SW security Software In-Security Buffer overflows Overview Web Application security Malware OS security topics Code scanning Emmanuel Benoist Taught by Ulrich

479 views • 13 slides
CS527 Software Security Introduction Mathias Payer Purdue University, Spring 2018 Mathias Payer

CS527 Software Security Introduction Mathias Payer Purdue University, Spring 2018 Mathias Payer

CS527 Software Security Introduction Mathias Payer Purdue University, Spring 2018 Mathias Payer CS527 Software Security About me Instructor: Mathias Payer Research area: system/software security Memory/type safety Mitigating control-flow

460 views • 25 slides
Introduction to Security Kira Chan K. Chan: CSE435: Software Engineering Software expectation

Introduction to Security Kira Chan K. Chan: CSE435: Software Engineering Software expectation

11/26/19 Introduction to Security Kira Chan K. Chan: CSE435: Software Engineering Software expectation In a regular messaging application, what do you expect? Let's assume you want to use it to meet your friend for Friday night dinner.

950 views • 45 slides
How Much Should You Invest In Software Security? f ? Kelce S. Wilson, PhD, MBA, JD Technical

How Much Should You Invest In Software Security? f ? Kelce S. Wilson, PhD, MBA, JD Technical

How Much Should You Invest In Software Security? f ? Kelce S. Wilson, PhD, MBA, JD Technical Director, Standards and Licensing Research In Motion May 24, 2011 1 Introduction Introduction 2 Introduction New economic theory for optimizing

442 views • 22 slides
CS 335 Software Development Introduction Jan 13, 2014 Healthcare.gov must verify a would-be

CS 335 Software Development Introduction Jan 13, 2014 Healthcare.gov must verify a would-be

CS 335 Software Development Introduction Jan 13, 2014 Healthcare.gov must verify a would-be applicants eligibility from Homeland Security, IRS and Social Security systems, in real time, plus enroll members electronically to any

346 views • 8 slides
Software Security By Hunter Stevenson Khalid Alharbi CSCI 5828 Foundations of Software

Software Security By Hunter Stevenson Khalid Alharbi CSCI 5828 Foundations of Software

Software Security By Hunter Stevenson Khalid Alharbi CSCI 5828 Foundations of Software Engineering Spring 2012 What is the talk NOT about? Cryptography. Database security. Operating Systems security. Network security.

1.37k views • 121 slides
Software Security: Defenses &amp; Principles CS 161: Computer Security Prof. Vern Paxson TAs:

Software Security: Defenses &amp; Principles CS 161: Computer Security Prof. Vern Paxson TAs:

Software Security: Defenses &amp; Principles CS 161: Computer Security Prof. Vern Paxson TAs: Devdatta Akhawe, Mobin Javed &amp; Matthias Vallentin http://inst.eecs.berkeley.edu/~cs161/ January 25, 2011 Testing for Software Security Issues

444 views • 42 slides
Engineering Secure Software The Basics of Software Security Terminology Vulnerabilities Trust

Engineering Secure Software The Basics of Software Security Terminology Vulnerabilities Trust

Engineering Secure Software The Basics of Software Security Terminology Vulnerabilities Trust Boundary Attacks Threats Application Attacker Exploit Vulnerability : a software defect with security consequences Threat : a potential danger to

1.54k views • 80 slides
Outline More secure design principles Software engineering for security CSci 5271 Introduction

Outline More secure design principles Software engineering for security CSci 5271 Introduction

Outline More secure design principles Software engineering for security CSci 5271 Introduction to Computer Security Secure use of the OS Defensive programming and design, contd Announcements intermission Stephen McCamant Bernsteins

535 views • 8 slides
CS 528 Mobile and Ubiquitous Computing Lecture 11: Mobile Security and Mobile Software

CS 528 Mobile and Ubiquitous Computing Lecture 11: Mobile Security and Mobile Software

CS 528 Mobile and Ubiquitous Computing Lecture 11: Mobile Security and Mobile Software Vulnerabilities Emmanuel Agu Mobile Security Issues Introduction So many cool mobile apps Access to web, personal information, social media, etc

1.05k views • 55 slides
Outline Security risk and management Some terminology CSci 5271 Introduction to Computer

Outline Security risk and management Some terminology CSci 5271 Introduction to Computer

Outline Security risk and management Some terminology CSci 5271 Introduction to Computer Security Logistics intermission Day 2: Intro to Software and OS Security Example security failures Stephen McCamant University of Minnesota, Computer

608 views • 8 slides
Prefixation of Russian verbs of motion: a frame-based account Yulia Zinova &amp; Rainer Osswald

Prefixation of Russian verbs of motion: a frame-based account Yulia Zinova &amp; Rainer Osswald

Prefixation of Russian verbs of motion: a frame-based account Yulia Zinova &amp; Rainer Osswald Heinrich-Heine-Universit at D usseldorf CTF14 Concept Types and Frames in Language, Cognition, and Science 2527 August, 2014, D

508 views • 29 slides
Fatima Parker-Allie 28 October 2014 Overview SANBI Background and Value Chain SABIF

Fatima Parker-Allie 28 October 2014 Overview SANBI Background and Value Chain SABIF

Biodiversity Information Management at SANBI Mobilising Biodiversity Information in Support of Science and Policy Fatima Parker-Allie 28 October 2014 Overview SANBI Background and Value Chain SABIF Capacity Development Regional

737 views • 22 slides
AI AI Department of Computer Science University of Calgary CPSC 601.73 Winter 2003

AI AI Department of Computer Science University of Calgary CPSC 601.73 Winter 2003

Cellular Automata Cellular Automata and beyond and beyond The World of Simple Programs The World of Simple Programs Christian Jacob AI AI Department of Computer Science University of Calgary CPSC 601.73 Winter 2003 Emergent

697 views • 45 slides
Management Guy D. Collins, Ph.D. Cotton Extension Associate Professor Cotton County Meetings

Management Guy D. Collins, Ph.D. Cotton Extension Associate Professor Cotton County Meetings

Cotton Variety Selection and Management Guy D. Collins, Ph.D. Cotton Extension Associate Professor Cotton County Meetings Successful Launch in 2015 !! NC On-Farm Cotton Variety Evaluation Program 2015 Variety Entries NG 3405 B2XF DP 1538

943 views • 40 slides
Complex Schema Mapping and Linking Data: Beyond Binary Predicates Jacobo Rouces Gerard de Melo

Complex Schema Mapping and Linking Data: Beyond Binary Predicates Jacobo Rouces Gerard de Melo

Complex Schema Mapping and Linking Data: Beyond Binary Predicates Jacobo Rouces Gerard de Melo Katja Hose Aalborg University Tsinghua University Aalborg University jacobo@rouces.org gdm@demelo.org khose@cs.aau.dk Overview Data

944 views • 30 slides
Abstractions for Routing Abstractions for Network Routing Brighten Godfrey Brighten Godfrey

Abstractions for Routing Abstractions for Network Routing Brighten Godfrey Brighten Godfrey

Abstractions for Routing Abstractions for Network Routing Brighten Godfrey Brighten Godfrey DIMACS 23 May 2012 DIMACS 23 May 2012 Abstractions for Network Routing Impressions of Network Routing Neo-Dadaisms for Network Routing

635 views • 46 slides
A heterospective on homophonophobia Daniel HarbourQueen Mary, University of London WOTM4 ,

A heterospective on homophonophobia Daniel HarbourQueen Mary, University of London WOTM4 ,

A heterospective on homophonophobia Daniel HarbourQueen Mary, University of London WOTM4 , Grossbothen June 2008 t {2, 3 FS } and 2 MS = 3 FS . (1) Afro-Asiatic prefixal conjugation S P 1 -aziz n-aziz 2 M t -aziz t -aziz-u 2 F t

777 views • 11 slides
Neosemantics - A Linked Data Toolkit for Neo4j Jess Barrasa - Neo4j Jess Barrasa

Neosemantics - A Linked Data Toolkit for Neo4j Jess Barrasa - Neo4j Jess Barrasa

Neosemantics - A Linked Data Toolkit for Neo4j Jess Barrasa - Neo4j Jess Barrasa @BarrasaDV https://neo4j.com/labs/nsmtx-rdf https://neo4j.com/labs/nsmtx-rdf What is NSMNTX? NSMNTX is a plugin that enables the use of RDF in Neo4j

549 views • 27 slides

More recommend