lecture 20 21 web security
play

Lecture 20 & 21 - Web Security CMPSC 443 - Spring 2012 - PowerPoint PPT Presentation

Nov 01, 2022 •170 likes •600 views

Lecture 20 & 21 - Web Security CMPSC 443 - Spring 2012 Introduction Computer and Network Security Professor Jaeger www.cse.psu.edu/~tjaeger/cse443-s12/ CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger

  1. Lecture 20 & 21 - Web Security CMPSC 443 - Spring 2012 Introduction Computer and Network Security Professor Jaeger www.cse.psu.edu/~tjaeger/cse443-s12/ CMPSC 443 Introduction to Computer and Network Security - Spring 2012 - Professor Jaeger

  2. Network vs. Web Security CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  3. What is the web? • A collection of application-layer � services used to distribute content – Web content (HTML) – Multimedia – Email – Instant messaging • Many applications – News outlets, entertainment, education, research and technology, … – Commercial, consumer and B2B • The largest distributed system in existence – threats are as diverse as applications and users – But need to be thought out carefully … CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  4. Web Security: The High Bits • The stakeholders include – Consumers (users, businesses, agents, etc) – Providers (web servers, IM servers, etc) • Another way of seeing web security is – Securing the web infrastructure such that the integrity, confidentiality, and availability of content and user information is maintained CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  5. Secure Socket Layer (SSL/TLS) • Used to authenticate servers – Uses certificates, “root” CAs • Can authenticate clients • Inclusive security protocol HTTP • Security at the socket layer – Transport Layer Security (TLS) SSL – Provides • authentication TCP • confidentiality • integrity IP CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  6. SSL Handshake (1) Client Hello (algorithms,…) (2) Server Hello (alg. selection, …) (3) Server Certificate (4) ClientKeyRequest Client Server (5) ChangeCipherSuite (6) ChangeCipherSuite (7) Finished (8) Finished CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  7. Simplified Protocol Detail Participants : Alice/A (client) and Bob/B (server) Crypto Elements : Random R, Certificate C, k + i Public Key (of i ) Crypto Functions : Hash function H ( x ) , Encryption E ( k, d ) , Decryption D ( k, d ) , Keyed MAC HMAC ( k, d ) 1. Alice → Bob R A 2. Bob → Alice R B , C B Alice pick pre-master secret S Alice calculate master secret K = H ( S, R A , R B ) B , S ) , HMAC ( K, 0 CLNT 0 + [#1 , #2]) E ( k + 3. Alice → Bob recover pre-master secret S = D ( k � B , E ( k + Bob B , S )) Bob calculate master secret K = H ( S, R A , R B ) HMAC ( K, 0 SRV R 0 + [#1 , #2]) 4. Bob → Alice Note : Alice and Bob : IV Keys, Encryption Keys, and Integrity Keys 6 keys,where each key k i = g i ( K, R A , R B ) , and g i is key generator function. CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  8. Advantages of SSL • Confidential session • Server authentication* • GUI clues for users • Built into every browser • Easy to configure on the server • Protocol has been heavily analyzed • Seems like you are getting security “for free” CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  9. Disadvantages of SSL • Users don’t check certificates – most don’t know meaning • Too easy to obtain certificates • Too many roots in the browsers • Some settings are terrible – ssl v2 is on – totally insecure cipher suites included • Very little use of client-side certificates • Performance! – early days had sites turning off – getting better (crypto coprocessors, etc) CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  10. Reality of SSL • SSL is here to stay no matter what • credit card over SSL connection is � probably safer than credit card to waiter • biggest hurdles: – performance – user education (check those certificates) – too many trusted sites (edit your browser prefs) – misconfiguration (turn off bad ciphersuites) – can be used for many non-web applications CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  11. Cookies • Cookies were designed to offload server state to browsers – Not initially part of web tools (Netscape) – Allows users to have cohesive experience – E.g., flow from page to page, • Someone made a design choice – Use cookies to authenticate and authorize users – E.g. Amazon.com shopping cart, WSJ.com CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  12. Cookie Issues … • New design choice means – Cookies must be protected • Against forgery (integrity) • Against disclosure (confidentiality) • Cookies not robust against web designer mistakes – Were never intended to be – Need same scrutiny as any other tech. Many security problems arise out of a technology built for one thing incorrectly applied to something else. CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  13. Cookie Design 1: mygorilla.com • Requirement: authenticate users on site mygorilla.com • Design: 1. use digest authentication to login user 2. set cookie containing hashed username 3. check cookie for hashed username User Server • Q: Is there anything wrong with this design? CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  14. Cookie Design 2: mygorilla.com • Requirement: authenticate users on site mygorilla.com • Design: 1. use digest authentication to login user 2. set cookie containing encrypted username 3. check cookie for encrypted username User Server • Q: Is there anything wrong with this design? CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  15. Exercise: Cookie Design Design a secure cookie for mygorilla.com • that meets the following requirements • Requirements 1. Users must be authenticated (assume digest completed) 2. Time limited (24 hours) 3. Unforgeable (only server can create) 4. Privacy-protected (username not exposed) 5. Location safe (cannot be replayed by another host) User Server CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  16. Library Attack … . • I am sitting in the local library using the computer … • … to buy some stuff … • … and walk away … CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  17. Web Server • Entry point for clients – To a variety of services – Customized for clients (e.g., via cookies) – Supported by complex backend applications (e.g., databases) • Target of attackers – Common protocol – Supports a wide range of inputs – Complex software interactions – Running with high privilege • Q: How does this impact? – Vulnerabilities, Threats, Risks CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  18. Web Server Deployments • Note the multiple application layers and connection to legacy code CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  19. Web Server Architecture • Server Components Generic Services (E.g., SMTP, FTP, etc) Legacy Application Network Server Front-End (E.g., IIS) Application Layer (E.g., Active Database Server Layer Pages) (Pick your favorite) CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  20. Dynamic Content Server generates content at runtime • For time-sensitive information (stock ticker) • For user customization (Amazon.com) • Provide HTML interface to complex system (e.g., course management system) CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  21. Dynamic Content: CGI • Common Gateway Interface (CGI) – Generic way to call external applications on the server – Passes URL to external program (e.g., form) – Result is captured and return to requestor • Historically – “shell” scripts used to generate content • Very, very dangerous Shell Client Web Server Script (e.g., PHP, ASP, Perl, Python ) • NOTE: server extensions are no better (e.g., servlets) CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

  22. Server-side Scripting • Program placed directly in content, run during request time and output returned in content – MS active server pages (ASP) – PHP – mod_perl – server-side JavaScript – python, .... • Nice at generating output – Dangerous if tied to user input CMPSC 443 Introduction to Computer (and Network) Security - Spring 2012 - Professor Jaeger Page

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A

Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A

Where are we at - Topic overview Lecture 1A: Security requirements/features Lecture 7A Threatens Privacy Threatens Try to achieve Lecture 2B: Network threats Lecture 3A: Attacks on Lecture 6A: Security Protocols Web servers, malware

381 views • 25 slides
TCP/IP: TCP Network Security Lecture 7 Eike Ritter Network Security - Lecture 7 1 TCP

TCP/IP: TCP Network Security Lecture 7 Eike Ritter Network Security - Lecture 7 1 TCP

TCP/IP: TCP Network Security Lecture 7 Eike Ritter Network Security - Lecture 7 1 TCP spoofing Alice trusts Bob (e.g., logins on Alice are allowed with no password if TCP connection comes from host Bob) Mallory wants to impersonate

923 views • 17 slides
Outline Security Principles and Policies Security terms and concepts CS 239 Security

Outline Security Principles and Policies Security terms and concepts CS 239 Security

Outline Security Principles and Policies Security terms and concepts CS 239 Security policies Computer Security Basic concepts Peter Reiher Security policies for real systems January 13, 2005 Lecture 2 Lecture 2 Page 1

347 views • 9 slides
CSc 337 LECTURE 24: SECURITY Our current view of security until now, we have assumed:

CSc 337 LECTURE 24: SECURITY Our current view of security until now, we have assumed:

CSc 337 LECTURE 24: SECURITY Our current view of security until now, we have assumed: valid user input non-malicious users nothing will ever go wrong this is unrealistic! The real world in order to write secure code, we

211 views • 18 slides
CSE 154 LECTURE 25: WEB SECURITY Our current view of security until now, we have assumed:

CSE 154 LECTURE 25: WEB SECURITY Our current view of security until now, we have assumed:

CSE 154 LECTURE 25: WEB SECURITY Our current view of security until now, we have assumed: valid user input non-malicious users nothing will ever go wrong this is unrealistic! The real world in order to write secure code,

445 views • 18 slides
CSE 154 LECTURE 26: WEB SECURITY Our current view of security until now, we have assumed:

CSE 154 LECTURE 26: WEB SECURITY Our current view of security until now, we have assumed:

CSE 154 LECTURE 26: WEB SECURITY Our current view of security until now, we have assumed: valid user input non-malicious users nothing will ever go wrong this is unrealistic! The real world in order to write secure code,

210 views • 18 slides
CCM4350 Security Architecture and Engineering Lecture 2 Security Design Principles 15.10.2012

CCM4350 Security Architecture and Engineering Lecture 2 Security Design Principles 15.10.2012

CCM4350 Security Architecture and Engineering Lecture 2 Security Design Principles 15.10.2012 1 Content of Todays Lecture Summary and Wrap up on Security Terminology The Fundamental Dilemma of Security Five Design Principles

801 views • 25 slides
Announcements This Thursday: Last lecture! Special Lecture on Smart Transportation Security

Announcements This Thursday: Last lecture! Special Lecture on Smart Transportation Security

Announcements This Thursday: Last lecture! Special Lecture on Smart Transportation Security Recent advance in security issues of self-driving cars and smart traffic light --- one of the most disruptive tech today, impacting the safety

518 views • 29 slides
CSE 543 - Computer Security Lecture 11 - OS Security October 2, 2007 URL:

CSE 543 - Computer Security Lecture 11 - OS Security October 2, 2007 URL:

CSE 543 - Computer Security Lecture 11 - OS Security October 2, 2007 URL: http://www.cse.psu.edu/~tjaeger/cse543-f07/ CSE543 Computer (and Network) Security - Fall 2007 - Professor Jaeger 1 OS Security An secure OS should provide the

873 views • 28 slides
Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture

Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture

Network Security CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Lecture 9 Page 1 CS 236 Online Some Important Network Characteristics for Security Degree of locality Media used Protocols used Lecture 9

156 views • 11 slides
CSE 543 - Computer Security Lecture 12 - MAC Security October 4, 2007 URL:

CSE 543 - Computer Security Lecture 12 - MAC Security October 4, 2007 URL:

CSE 543 - Computer Security Lecture 12 - MAC Security October 4, 2007 URL: http://www.cse.psu.edu/~tjaeger/cse543-f07/ CSE543 Computer (and Network) Security - Fall 2007 - Professor Jaeger 1 Mandatory Access Control Is about administration

462 views • 19 slides
Intro, history, hacking Network Security Lecture 1 Welcome to Network Security Should be able

Intro, history, hacking Network Security Lecture 1 Welcome to Network Security Should be able

Intro, history, hacking Network Security Lecture 1 Welcome to Network Security Should be able to Skills identify design and Ability to analyze the implementation security of networked vulnerabilities in network systems protocols

564 views • 33 slides
TCP/IP: Ethernet, IP, and ARP (and a PGP refresher) Network Security Lecture 2 Any questions

TCP/IP: Ethernet, IP, and ARP (and a PGP refresher) Network Security Lecture 2 Any questions

TCP/IP: Ethernet, IP, and ARP (and a PGP refresher) Network Security Lecture 2 Any questions on Administrativia, organizational matters? Historical/cultural overview? Eike Ritter Network Security - Lecture 2 1 Today PGP in 6

431 views • 42 slides
TCP/IP: ICMP, UDP Network Security Lecture 5 Recap and overview Looking at security of

TCP/IP: ICMP, UDP Network Security Lecture 5 Recap and overview Looking at security of

TCP/IP: ICMP, UDP Network Security Lecture 5 Recap and overview Looking at security of TCP/IP IP, Ethernet, ARP Sniffing the network and forging packets tcpdump, wireshark Today: ICMP and UDP Eike Ritter Network Security -

881 views • 38 slides
Network provider Security Markus Peuhkuri 2005-04-28 Lecture topics Basics of security

Network provider Security Markus Peuhkuri 2005-04-28 Lecture topics Basics of security

Network provider Security Markus Peuhkuri 2005-04-28 Lecture topics Basics of security Security threats Regulators and ISP security Some headlines Davie-Besse nuclear reactor control network

482 views • 17 slides
Lecture 11: Energy and security Lecture 11: Energy and security considerations in wireless PHY +

Lecture 11: Energy and security Lecture 11: Energy and security considerations in wireless PHY +

Lecture 11: Energy and security Lecture 11: Energy and security considerations in wireless PHY + link considerations in wireless PHY + link layers layers Mythili Vutukuru CS 653 Spring 2014 Feb 10, Monday Energy and Security We will

259 views • 8 slides
CS108 Lecture 21: Web Applications Web Application Architecture Generating HTML from Python

CS108 Lecture 21: Web Applications Web Application Architecture Generating HTML from Python

3/18/13 CS108 Lecture 21: Web Applications Web Application Architecture Generating HTML from Python Transferring files to the web server Aaron Stevens (azs@bu.edu) Computer Science What Youll Learn Today Computer Science I got the

497 views • 14 slides
CSE 510 Web Data Engineering Introduction UB CSE 510 Web Data Engineering Staff Instructor:

CSE 510 Web Data Engineering Introduction UB CSE 510 Web Data Engineering Staff Instructor:

CSE 510 Web Data Engineering Introduction UB CSE 510 Web Data Engineering Staff Instructor: Dr. Michalis Petropoulos Office Hours: Mon & Wed @ 1-2pm Location: 210 Bell Hall TA: Demian Lessa Office Hours: Fri @ 1-3pm Location:

201 views • 19 slides
The Web and Content The Web and Content Networks: the Big Picture Networks: the Big Picture

The Web and Content The Web and Content Networks: the Big Picture Networks: the Big Picture

The Web and Content The Web and Content Networks: the Big Picture Networks: the Big Picture Jeff Chase Services Services Do A for me. OK, heres your answer. Now do B. OK, here. Server Client request/response

363 views • 20 slides
Server-side Scripting Slides courtesy of Xenia Mountrouidou URLs and web servers 2

Server-side Scripting Slides courtesy of Xenia Mountrouidou URLs and web servers 2

Server-side Scripting Slides courtesy of Xenia Mountrouidou URLs and web servers 2 http://server/path/file Usually when you type a URL in your browser: Your computer looks up the server's IP address using DNS Your browser connects

645 views • 36 slides
AN INTRODUCTION TO CORBA AN INTRODUCTION TO CORBA Paul Jonusaitis jonusait@ix.netcom.com Topics

AN INTRODUCTION TO CORBA AN INTRODUCTION TO CORBA Paul Jonusaitis jonusait@ix.netcom.com Topics

AN INTRODUCTION TO CORBA AN INTRODUCTION TO CORBA Paul Jonusaitis jonusait@ix.netcom.com Topics for this presentation: Topics for this presentation: The need for and origins of CORBA Basic elements: ! ORBs, stubs, skeletons, IIOP, IDL

850 views • 51 slides
HTML Simple markup language Text is annotated with language commands Internet Databases

HTML Simple markup language Text is annotated with language commands Internet Databases

HTML Simple markup language Text is annotated with language commands Internet Databases called tags, usually consisting of a start tag and an end tag Chapter 22 Database Management Systems, 2 nd Edition. R. Ramakrishnan and Johannes

381 views • 4 slides
Recap: HTTP request/response HTTP request http://red1.cs.panam.edu/~etomai/links/first.html

Recap: HTTP request/response HTTP request http://red1.cs.panam.edu/~etomai/links/first.html

Recap: HTTP request/response HTTP request http://red1.cs.panam.edu/~etomai/links/first.html Hostname is resolved to IP address (e.g. 129.113.132.218) Request type is GET or POST Client Server Request headers give information about

326 views • 5 slides
Overview Recall: Functionality of the middle tier Encodes business logic Connects to

Overview Recall: Functionality of the middle tier Encodes business logic Connects to

CS/INFO 330 Middle Tier Technology Mirek Riedewald mirek@cs.cornell.edu Overview Recall: Functionality of the middle tier Encodes business logic Connects to database system(s) Accepts form input from the presentation tier

595 views • 13 slides

More recommend