lecture 14 web security
play

Lecture 14 - Web Security CSE497b - Spring 2007 Introduction - PowerPoint PPT Presentation

Feb 24, 2024 •106 likes •346 views

Lecture 14 - Web Security CSE497b - Spring 2007 Introduction Computer and Network Security Professor Jaeger www.cse.psu.edu/~tjaeger/cse497b-s07/ CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger Network

  1. Lecture 14 - Web Security CSE497b - Spring 2007 Introduction Computer and Network Security Professor Jaeger www.cse.psu.edu/~tjaeger/cse497b-s07/ CSE497b Introduction to Computer and Network Security - Spring 2007 - Professor Jaeger

  2. Network vs. Web Security CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  3. What is the web? • A collection of application-layer services used to distribute content – Web content (HTML) – Multimedia – Email – Instant messaging • Many applications – News outlets, entertainment, education, research and technology, … – Commercial, consumer and B2B • The largest distributed system in existence – threats are as diverse as applications and users – But need to be thought out carefully … CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  4. Secure socket Layer (SSL/TLS) • Used to authenticate servers – Uses certificates, “root” CAs • Can authenticate clients • Inclusive security protocol HTTP • Security at the socket layer – Transport Layer Security (TLS) SSL – Provides • authentication TCP • confidentiality • integrity IP CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  5. SSL Handshake (1) Client Hello (algorithms,…) (2) Server Hello (alg. selection, …) (3) Server Certificate (4) ClientKeyRequest Client Server (5) ChangeCipherSuite (6) ChangeCipherSuite (7) Finished (8) Finished CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  6. Simplified Protocol Detail Participants : Alice/A (client) and Bob/B (server) Crypto Elements : Random R, Certificate C, k + i Public Key (of i ) Crypto Functions : Hash function H ( x ) , Encryption E ( k, d ) , Decryption D ( k, d ) , Keyed MAC HMAC ( k, d ) 1. Alice → Bob R A 2. Bob → Alice R B , C B Alice pick pre-master secret S Alice calculate master secret K = H ( S, R A , R B ) B , S ) , HMAC ( K, ′ CLNT ′ + [#1 , #2]) E ( k + 3. Alice → Bob recover pre-master secret S = D ( k − B , E ( k + Bob B , S )) Bob calculate master secret K = H ( S, R A , R B ) HMAC ( K, ′ SRV R ′ + [#1 , #2]) 4. Bob → Alice Note : Alice and Bob : IV Keys, Encryption Keys, and Integrity Keys 6 keys,where each key k i = g i ( K, R A , R B ) , and g i is key generator function. CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  7. SSL: Tradeoffs • Advantages – Confidential session – Server authentication* – GUI clues for users – Built into every browser – Protocol has heavily analyzed • Disadvantages – Users don ’ t check certificates (don ’ t know meaning) – Too easy to obtain certificates – Too many roots in the browsers – Some settings are terrible • ssl v2 is on, totally insecure cipher suites included CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  8. Reality of SSL • SSL is here to stay no matter what • credit card over SSL connection is probably safer than credit card to waiter • biggest hurdles: – performance – user education (check those certificates) – too many trusted sites (edit your browser prefs) – misconfiguration (turn off bad ciphersuites) – can be used for many non-web applications • Now used for more than https, base for many distributed applications, etc. CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  9. Library Attack …. • I am sitting in the local library using the computer … • … to buy some stuff … • … and walk away … CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  10. Cookies • Cookies were designed to offload server state to browsers – Not initially part of web tools (Netscape) – Allows users to have cohesive experience – E.g., flow from page to page, • Someone made a design choice – Use cookies to authenticate and authorize users – E.g. Amazon.com shopping cart, WSJ.com CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  11. Cookie Issues … • New design choice means – Cookies must be protected Against forgery (integrity) • Against disclosure (confidentiality) • • Cookies not robust against web designer mistakes – Were never intended to be – Need same scrutiny as any other tech. Many security problems arise out of a technology built for one thing incorrectly applied to something else. CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  12. Cookie Design 1: mygorilla.com • Requirement: authenticate users on site mygorilla.com • Design: 1. use digest authentication to login user 2. set cookie containing hashed username 3. check cookie for hashed username User Server • Q: Is there anything wrong with this design? CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  13. Cookie Design 2: mygorilla.com • Requirement: authenticate users on site mygorilla.com • Design: 1. use digest authentication to login user 2. set cookie containing encrypted username 3. check cookie for encrypted username User Server • Q: Is there anything wrong with this design? CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  14. Web Content • All providers serve up content … • All sorts of technologies to improve content – Interactivity: Forms, CGI, Javascript, … – Web applications: Java, Flash, ActiveX… – Dynamic content: Servlets, Active Server Pages … • However, these come with risks … – Both clients and servers must use complex and sometimes untried technologies … – … that have led to some nasty security problems. CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  15. JavaScript • Scripting Language used to improve the quality/experience – Create dialogs, forms, graphs, … – Built upon API functions (lots of different flavors) – No ability to read local files, open connections … • Security: No ability to read local files, open connections, but … – DOS – the “infinite popup” script • Often could not “break out” with restarting computer – Spoofing – easy to create “password” dialogs CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  16. Applications/Plugins • A plugin is a simply a program used by a browser to process content – MIME type maps content to plugin – Like any old application (e.g., RealAudio) – Newer browsers have autoinstall features • A kind of plug-in … – (1997) David.exe – “Free pornography …” • Moral: beware of plugins CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  17. Drive by downloads • Using a deceptive means to get someone to install something on their own (spyware/adware) – Once you have one, then it starts downloading lots of others, their friends, … – A personal favorite: extortion-ware -- pay us 40$ for our popup blocker, etc …. • The real gambit is that they demand 40$ for the uninstall option • Answer: go get ad-aware and install it (its free)! CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  18. Spyware • Definition: hidden software that uses local host to transmit user secrets – e.g., browsing habits, forms data • Typically found in “free” software – Gnutella, game tools, demo software, MP3 tools ...) – Implemented using spyware “engines” - gator • Embeds in local host to – Adds shared libraries (.dlls), adds to startup as TSR programs (in registries, start) – Often difficult or impossible to remove • You are never really sure it is gone (advice: reinstall) • Gets installed by user action or via some of IEs ability to “help” the user via tools such as Active-X CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  19. Active X • Active X is a MS windows technology – Really, just a way to run arbitrary code – Called controls (.OCX), just programs – Conforms to MS APIs to interact with web • Extends user experience in lots of nice ways – Microsoft upgrade, BIOS Upgrades, Lookup services • Active X controls are automatically downloaded and run by browser – Must pass authenticode “trust” check – Must be marked as “safe for scripting” • Assumed promise of sandboxing … • Massive security hole …. CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

  20. Authenticode • Problem: I need to run an application code on my machine, but I worry about security • Solution: Make sure code only comes from people that you trust. • Authenticode – Sign download content – Check that signer is “trusted” – Used for all Win* content – Problem: Jan 2001 • Verisign issued two bad MS CSE497b Introduction to Computer (and Network) Security - Spring 2007 - Professor Jaeger Page

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A

Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A

Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A Threatens Privacy Threatens Try to achieve Lecture 2B: Network threats Lecture 3A: Attacks on Lecture 6A: Security Protocols Web servers, malware

381 views • 25 slides
TCP/IP: TCP Network Security Lecture 7 Eike Ritter Network Security - Lecture 7 1 TCP

TCP/IP: TCP Network Security Lecture 7 Eike Ritter Network Security - Lecture 7 1 TCP

TCP/IP: TCP Network Security Lecture 7 Eike Ritter Network Security - Lecture 7 1 TCP spoofing Alice trusts Bob (e.g., logins on Alice are allowed with no password if TCP connection comes from host Bob) Mallory wants to impersonate

923 views • 17 slides
Outline Security Principles and Policies Security terms and concepts CS 239 Security

Outline Security Principles and Policies Security terms and concepts CS 239 Security

Outline Security Principles and Policies Security terms and concepts CS 239 Security policies Computer Security Basic concepts Peter Reiher Security policies for real systems January 13, 2005 Lecture 2 Lecture 2 Page 1

347 views • 9 slides
CSc 337 LECTURE 24: SECURITY Our current view of security until now, we have assumed:

CSc 337 LECTURE 24: SECURITY Our current view of security until now, we have assumed:

CSc 337 LECTURE 24: SECURITY Our current view of security until now, we have assumed: valid user input non-malicious users nothing will ever go wrong this is unrealistic! The real world in order to write secure code, we

211 views • 18 slides
CSE 154 LECTURE 25: WEB SECURITY Our current view of security until now, we have assumed:

CSE 154 LECTURE 25: WEB SECURITY Our current view of security until now, we have assumed:

CSE 154 LECTURE 25: WEB SECURITY Our current view of security until now, we have assumed: valid user input non-malicious users nothing will ever go wrong this is unrealistic! The real world in order to write secure code,

445 views • 18 slides
CSE 154 LECTURE 26: WEB SECURITY Our current view of security until now, we have assumed:

CSE 154 LECTURE 26: WEB SECURITY Our current view of security until now, we have assumed:

CSE 154 LECTURE 26: WEB SECURITY Our current view of security until now, we have assumed: valid user input non-malicious users nothing will ever go wrong this is unrealistic! The real world in order to write secure code,

210 views • 18 slides
CCM4350 Security Architecture and Engineering Lecture 2 Security Design Principles 15.10.2012

CCM4350 Security Architecture and Engineering Lecture 2 Security Design Principles 15.10.2012

CCM4350 Security Architecture and Engineering Lecture 2 Security Design Principles 15.10.2012 1 Content of Todays Lecture Summary and Wrap up on Security Terminology The Fundamental Dilemma of Security Five Design Principles

801 views • 25 slides
Announcements This Thursday: Last lecture! Special Lecture on Smart Transportation Security

Announcements This Thursday: Last lecture! Special Lecture on Smart Transportation Security

Announcements This Thursday: Last lecture! Special Lecture on Smart Transportation Security Recent advance in security issues of self-driving cars and smart traffic light --- one of the most disruptive tech today, impacting the safety

518 views • 29 slides
CSE 543 - Computer Security Lecture 11 - OS Security October 2, 2007 URL:

CSE 543 - Computer Security Lecture 11 - OS Security October 2, 2007 URL:

CSE 543 - Computer Security Lecture 11 - OS Security October 2, 2007 URL: http://www.cse.psu.edu/~tjaeger/cse543-f07/ CSE543 Computer (and Network) Security - Fall 2007 - Professor Jaeger 1 OS Security An secure OS should provide the

873 views • 28 slides
Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture

Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture

Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 9 Page 1 CS 236 Online Some Important Network Characteristics for Security Degree of locality Media used Protocols used Lecture 9

156 views • 11 slides
CSE 543 - Computer Security Lecture 12 - MAC Security October 4, 2007 URL:

CSE 543 - Computer Security Lecture 12 - MAC Security October 4, 2007 URL:

CSE 543 - Computer Security Lecture 12 - MAC Security October 4, 2007 URL: http://www.cse.psu.edu/~tjaeger/cse543-f07/ CSE543 Computer (and Network) Security - Fall 2007 - Professor Jaeger 1 Mandatory Access Control Is about administration

462 views • 19 slides
Intro, history, hacking Network Security Lecture 1 Welcome to Network Security Should be able

Intro, history, hacking Network Security Lecture 1 Welcome to Network Security Should be able

Intro, history, hacking Network Security Lecture 1 Welcome to Network Security Should be able to Skills identify design and Ability to analyze the implementation security of networked vulnerabilities in network systems protocols

564 views • 33 slides
TCP/IP: Ethernet, IP, and ARP (and a PGP refresher) Network Security Lecture 2 Any questions

TCP/IP: Ethernet, IP, and ARP (and a PGP refresher) Network Security Lecture 2 Any questions

TCP/IP: Ethernet, IP, and ARP (and a PGP refresher) Network Security Lecture 2 Any questions on Administrativia, organizational matters? Historical/cultural overview? Eike Ritter Network Security - Lecture 2 1 Today PGP in 6

431 views • 42 slides
TCP/IP: ICMP, UDP Network Security Lecture 5 Recap and overview Looking at security of

TCP/IP: ICMP, UDP Network Security Lecture 5 Recap and overview Looking at security of

TCP/IP: ICMP, UDP Network Security Lecture 5 Recap and overview Looking at security of TCP/IP IP, Ethernet, ARP Sniffing the network and forging packets tcpdump, wireshark Today: ICMP and UDP Eike Ritter Network Security -

881 views • 38 slides
Network provider Security Markus Peuhkuri 2005-04-28 Lecture topics Basics of security

Network provider Security Markus Peuhkuri 2005-04-28 Lecture topics Basics of security

Network provider Security Markus Peuhkuri 2005-04-28 Lecture topics Basics of security Security threats Regulators and ISP security Some headlines Davie-Besse nuclear reactor control network

482 views • 17 slides
Lecture 11: Energy and security Lecture 11: Energy and security considerations in wireless PHY +

Lecture 11: Energy and security Lecture 11: Energy and security considerations in wireless PHY +

Lecture 11: Energy and security Lecture 11: Energy and security considerations in wireless PHY + link considerations in wireless PHY + link layers layers Mythili Vutukuru CS 653 Spring 2014 Feb 10, Monday Energy and Security We will

259 views • 8 slides
High spin states Interpretation Ba , 135 La and 135 Ce Nuclei 135 Ba 135 La 135 Ce of 135 within

High spin states Interpretation Ba , 135 La and 135 Ce Nuclei 135 Ba 135 La 135 Ce of 135 within

High spin states Interpretation Ba , 135 La and 135 Ce Nuclei 135 Ba 135 La 135 Ce of 135 within Cranked Nilsson-Strutinsky Model S. Kaim , 1 , I. Azeri , 1 A. Aboudi, 1 R. Belgharbi, 1 A. Laala 1 1 Universit des Frres Mentouri Constantine1,

1.02k views • 54 slides
Coordinated Scheduling: A Mechanism for Efficient Multi-Node Communication Edward W. Knightly

Coordinated Scheduling: A Mechanism for Efficient Multi-Node Communication Edward W. Knightly

Coordinated Scheduling: A Mechanism for Efficient Multi-Node Communication Edward W. Knightly and Chengzhi Li Rice Networks Group http://www.ece.rice.edu/networks Background: Priority Scheduling Each packet has a priority index

436 views • 31 slides
The Nazarov-Sodin constant and critical points of Gaussian fields M. McAuley Joint work with

The Nazarov-Sodin constant and critical points of Gaussian fields M. McAuley Joint work with

The Nazarov-Sodin constant and critical points of Gaussian fields M. McAuley Joint work with Dmitry Beliaev and Stephen Muirhead Mathematical Institute University of Oxford Random Waves in Oxford, June 2018 Preliminaries Let f : R 2 R be

508 views • 19 slides
Perfectly S Secure O Oblivious A s Algorithms s in t the M Multi-Server S Setting T-H.

Perfectly S Secure O Oblivious A s Algorithms s in t the M Multi-Server S Setting T-H.

Perfectly S Secure O Oblivious A s Algorithms s in t the M Multi-Server S Setting T-H. Hubert Chan, Jonathan Katz, Ka Kartik Nay ayak, Antigoni Polychroniadou, Elaine Shi Defini De ning ng an n Obl Oblivious us RAM Example request

812 views • 33 slides
Cryptography and network security Firewalls slide 1 Firewalls Idea: separate local network

Cryptography and network security Firewalls slide 1 Firewalls Idea: separate local network

Cryptography and network security Firewalls slide 1 Firewalls Idea: separate local network from the Internet Trusted hosts and networks Firewall Router Intranet Demilitarized Zone: DMZ publicly accessible servers and networks

746 views • 31 slides
Paying for College 2018-2019 Todays Questions What do we need to do? How will we pay

Paying for College 2018-2019 Todays Questions What do we need to do? How will we pay

Paying for College 2018-2019 Todays Questions What do we need to do? How will we pay for this? 2 Todays Questions We know what to do We know what steps to take We have a plan to pay for college 3 Agenda College

576 views • 46 slides
Use of IKEv2 and IPsec with Multiple CoA support MONAMI6 WG, IETF 68 Vijay Devarapalli

Use of IKEv2 and IPsec with Multiple CoA support MONAMI6 WG, IETF 68 Vijay Devarapalli

Use of IKEv2 and IPsec with Multiple CoA support MONAMI6 WG, IETF 68 Vijay Devarapalli (vijay.devarapalli@azairenet.com) Assumptions in RFC 3775, 3963 There is only one primary care-of address per mobile node The primary care-of

240 views • 7 slides
This Presentation Key elements of the new HITECH rules Take a deep breath they are

This Presentation Key elements of the new HITECH rules Take a deep breath they are

The New HIPAA Era: What's New, What's Different and What's Actually Important Presented by: Kirk J. Nahra Wiley Rein LLP Washington, D.C. 202.719.7335 KNahra@wileyrein.com @kirkjnahrawork March 13, 2013 This Presentation Key elements of

773 views • 36 slides

More recommend