loose ends
play

Loose Ends (Finish Anonymity, Fun Side Channels) Fall 2017 - PowerPoint PPT Presentation

Mar 14, 2023 •457 likes •799 views

CSE 484 / CSE M 584: Computer Security and Privacy Loose Ends (Finish Anonymity, Fun Side Channels) Fall 2017 Franziska (Franzi) Roesner franzi@cs.washington.edu Thanks to Dan Boneh, Dieter Gollmann, Dan Halperin, Yoshi Kohno, John

  1. CSE 484 / CSE M 584: Computer Security and Privacy Loose Ends (Finish Anonymity, “Fun” Side Channels) Fall 2017 Franziska (Franzi) Roesner franzi@cs.washington.edu Thanks to Dan Boneh, Dieter Gollmann, Dan Halperin, Yoshi Kohno, John Manferdelli, John Mitchell, Vitaly Shmatikov, Bennet Yee, and many others for sample slides and materials ...

  2. Admin • HW3 due today @ 8pm • Final Projects due Wednesday @ 11:59pm – Check out the rubric on the course website • Extra credit: review up to 2 other presentations – We will make them available by 10am on Thursday • Extra credit readings due today @ 11:59pm • Today: finish anonymity, side channels 12/7/17 CSE 484 / CSE M 584 - Fall 2017 2

  3. [Reed, Syverson, Goldschlag 1997] Onion Routing R R R 4 R R 3 R R 1 R R 2 Alice R Bob • Sender chooses a random sequence of routers • Some routers are honest, some controlled by attacker • Sender controls the length of the path 12/7/17 CSE 484 / CSE M 584 - Fall 2017 3

  4. Route Establishment R 2 R 4 Alice R 3 Bob R 1 {M} pk(B) {B,k 4 } pk(R4) ,{ } k4 {R 4 ,k 3 } pk(R3) ,{ } k3 {R 3 ,k 2 } pk(R2) ,{ } k2 {R 2 ,k 1 } pk(R1) ,{ } k1 • Routing info for each link encrypted with router’s public key • Each router learns only the identity of the next router 12/7/17 CSE 484 / CSE M 584 - Fall 2017 4

  5. Tor • Second-generation onion routing network – http://tor.eff.org – Developed by Roger Dingledine, Nick Mathewson and Paul Syverson – Specifically designed for low-latency anonymous Internet communications • Running since October 2003 • “Easy-to-use” client proxy – Freely available, can use it for anonymous browsing 12/7/17 CSE 484 / CSE M 584 - Fall 2017 5

  6. Tor Circuit Setup (1) • Client proxy establishes a symmetric session key and circuit with Onion Router #1 12/7/17 CSE 484 / CSE M 584 - Fall 2017 6

  7. Tor Circuit Setup (2) • Client proxy extends the circuit by establishing a symmetric session key with Onion Router #2 – Tunnel through Onion Router #1 12/7/17 CSE 484 / CSE M 584 - Fall 2017 7

  8. Tor Circuit Setup (3) • Client proxy extends the circuit by establishing a symmetric session key with Onion Router #3 – Tunnel through Onion Routers #1 and #2 12/7/17 CSE 484 / CSE M 584 - Fall 2017 8

  9. Using a Tor Circuit • Client applications connect and communicate over the established Tor circuit. 12/7/17 CSE 484 / CSE M 584 - Fall 2017 9

  10. Tor Management Issues • Many applications can share one circuit – Multiple TCP streams over one anonymous connection • Tor router doesn’t need root privileges – Encourages people to set up their own routers – More participants = better anonymity for everyone • Directory servers – Maintain lists of active onion routers, their locations, current public keys, etc. – Control how new routers join the network • “Sybil attack”: attacker creates a large number of routers – Directory servers’ keys ship with Tor code 12/7/17 CSE 484 / CSE M 584 - Fall 2017 10

  11. Location Hidden Service • Goal: deploy a server on the Internet that anyone can connect to without knowing where it is or who runs it • Accessible from anywhere • Resistant to censorship • Can survive a full-blown DoS attack • Resistant to physical attack – Can’t find the physical server! 12/7/17 CSE 484 / CSE M 584 - Fall 2017 11

  12. Creating a Location Hidden Server Server creates circuits To “introduction points” Client obtains service descriptor and intro point address from directory Server gives intro points ’ descriptors and addresses to service lookup directory 12/7/17 CSE 484 / CSE M 584 - Fall 2017 12

  13. Using a Location Hidden Server Rendezvous point Client creates a circuit If server chooses to talk to client, splices the circuits to a “rendezvous point” connect to rendezvous point from client & server Client sends address of the rendezvous point and any authorization, if needed, to server through intro point 12/7/17 CSE 484 / CSE M 584 - Fall 2017 13

  14. Attacks on Anonymity • Passive traffic analysis – Infer from network traffic who is talking to whom – To hide your traffic, must carry other people’s traffic! • Active traffic analysis – Inject packets or put a timing signature on packet flow • Compromise of network nodes – Attacker may compromise some routers – It is not obvious which nodes have been compromised • Attacker may be passively logging traffic – Better not to trust any individual router • Assume that some fraction of routers is good, don’t know which 12/7/17 CSE 484 / CSE M 584 - Fall 2017 14

  15. Some Caution • Tor isn’t completely effective by itself – Tracking cookies, fingerprinting, etc. – Exit nodes can see everything! 12/7/17 CSE 484 / CSE M 584 - Fall 2017 15

  16. SIDE CHANNELS 12/7/17 CSE 484 / CSE M 584 - Fall 2017 16

  17. Side Channel Attacks • Attacks based on information that can be gleaned from the physical implementation of a system, rather than breaking its theoretical properties – Most commonly/devastatingly used against cryptosystems – But also prevalent in other contexts, e.g., due to widespread smartphone sensors 12/7/17 CSE 484 / CSE M 584 - Fall 2017 17

  18. Cache-Based Side Channels “By exploiting side channels that arise from shared CPU caches, researchers have demonstrated attacks extracting encryption keys of popular cryptographic algorithms such as AES, DES, and RSA.” Kim et al. “STEALTHMEM: System-Level Protection Against Cache-Based Side Channel Attacks in the Cloud” USENIX Security 2012 12/7/17 CSE 484 / CSE M 584 - Fall 2017 18

  19. Others (on Cryptosystems) • Timing attacks • Power analysis • Etc. If you do something different for secret key bits 1 vs. 0, attacker can learn something… 12/7/17 CSE 484 / CSE M 584 - Fall 2017 19

  20. Key Extraction via Electric Potential Genkin et al. “Get Your Hands Off My Laptop: Physical Side-Channel Key-Extraction Attacks On PCs” CHES 2014 12/7/17 CSE 484 / CSE M 584 - Fall 2017 20

  21. Accelerometer Eavesdropping Aviv et al. “Practicality of Accelerometer Side Channels on Smartphones” ACSAC 2012 12/7/17 CSE 484 / CSE M 584 - Fall 2017 21

  22. Gyroscope Eavesdropping Michalevsky et al. “Gyrophone: Recognizing Speech from Gyroscope Signals” USENIX Security 2014 12/7/17 CSE 484 / CSE M 584 - Fall 2017 22

  23. More Gyroscope Chen et al. “TouchLogger: Inferring Keystrokes On Touch Screen From Smartphone Motion” HotSec 2011 12/7/17 CSE 484 / CSE M 584 - Fall 2017 23

  24. Keyboard Eavesdropping Zhuang et al. “Keyboard Acoustic Emanations Revisited” CCS 2005 Vuagnoux et al. “Compromising Electromagnetic Emanations of Wired and Wireless Keyboards” USENIX Security 2009 12/7/17 CSE 484 / CSE M 584 - Fall 2017 24

  25. [Backes et al.] Compromising Reflections 12/7/17 CSE 484 / CSE M 584 - Fall 2017 25

  26. Audio from Video Davis et al. “The Visual Microphone: Passive Recovery of Sound from Video” SIGGRAPH 2014 12/7/17 CSE 484 / CSE M 584 - Fall 2017 26

  27. Identifying Web Pages: Traffic Analysis Herrmann et al. “Website Fingerprinting: Attacking Popular Privacy Enhancing Technologies with the Multinomial Naïve-Bayes Classifier” CCSW 2009 12/7/17 CSE 484 / CSE M 584 - Fall 2017 27

  28. Identifying Web Pages: Electrical Outlets Clark et al. “Current Events: Identifying Webpages by Tapping the Electrical Outlet” ESORICS 2013 12/7/17 CSE 484 / CSE M 584 - Fall 2017 28

  29. Powerline Eavesdropping Enev et al.: Televisions, Video Privacy, and Powerline Electromagnetic Interference, CCS 2011 12/7/17 CSE 484 / CSE M 584 - Fall 2017 29

  30. WRAP-UP 12/7/17 CSE 484 / CSE M 584 - Fall 2017 30

  31. This Quarter • Overview of: – Security mindset – Software security – Cryptography – Web security – Web privacy – Authentication – Mobile platform security – Usable security – Physical security – Anonymity – Side channels 12/7/17 CSE 484 / CSE M 584 - Fall 2017 31

  32. Lots We Didn’t Cover… • Deep dive into any of the above topics • (Most) network security • (Most) recent attacks/vulnerabilities • (Most) specific protocols (e.g., Kerberos) • Spam • Social engineering • Cryptocurrencies (e.g., Bitcoin) • Emerging technologies (e.g., augmented reality, smart homes, brain-computer interfaces, synthetic biology, …) • … 12/7/17 CSE 484 / CSE M 584 - Fall 2017 32

  33. Thanks for a great quarter! • Feel free to still email / stop by – Worksheets? • Please fill out course evaluation: https://uw.iasystem.org/survey/183478 12/7/17 CSE 484 / CSE M 584 - Fall 2017 33

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Announcements Exam 2: 03/11, PA2______,HW3______. Today: Loose ends Associative Arrays Hash

Announcements Exam 2: 03/11, PA2______,HW3______. Today: Loose ends Associative Arrays Hash

Announcements Exam 2: 03/11, PA2______,HW3______. Today: Loose ends Associative Arrays Hash Tables Intro to Hash Functions Loose ends Classic balanced BST structures: Red-Black trees max ht 2log 2 n. Constant # of rotations

298 views • 8 slides
Loose Ends: Side Channels, Government Surveillance & Targeted

Loose Ends: Side Channels, Government Surveillance & Targeted

CSE 484 / CSE M 584: Computer Security and Privacy Loose Ends: Side Channels, Government Surveillance & Targeted Attacks Spring 2015 Franziska

622 views • 27 slides
DIMENSIONALITY REDUCTION AND VISUALIZATION Loose ends from HW2 Hyperparameters, bin size =

DIMENSIONALITY REDUCTION AND VISUALIZATION Loose ends from HW2 Hyperparameters, bin size =

DIMENSIONALITY REDUCTION AND VISUALIZATION Loose ends from HW2 Hyperparameters, bin size = 1000, 500, ? Tune on test set error rate Variance of a recognizer Accuracy 100%? 98? 90? 80? Whats the mean and variance of the

976 views • 81 slides
Java Loose Ends 27 December 2019 OSU CSE 1 What Else? A few Java issues introduced earlier

Java Loose Ends 27 December 2019 OSU CSE 1 What Else? A few Java issues introduced earlier

Java Loose Ends 27 December 2019 OSU CSE 1 What Else? A few Java issues introduced earlier deserve a more in-depth treatment: Try-Catch and Exceptions Members (static vs. instance) Nested interfaces and classes Access

559 views • 51 slides
29: Limits and the real world A few loose ends Difficulty of problems Limits on computation

29: Limits and the real world A few loose ends Difficulty of problems Limits on computation

29: Limits and the real world A few loose ends Difficulty of problems Limits on computation Recursive Diagrams: Why use them? Modules: Why use them? Clarity: gather together related pieces of code Generosity: avoid name conflicts

731 views • 23 slides
Loose ends, Francis Schaeffer, Hermeneutics, and Acts 8:1 and 9:35 Acts 8:1; 9:35

Loose ends, Francis Schaeffer, Hermeneutics, and Acts 8:1 and 9:35 Acts 8:1; 9:35

Loose ends, Francis Schaeffer, Hermeneutics, and Acts 8:1 and 9:35 Acts 8:1; 9:35 Ultimately, whether hes using hyperbole or not, I think we need to ask ourselves, How is the answer to this going to help me follow Jesus better?

323 views • 20 slides
Implementing the Standard Methods 27 February 2019 OSU CSE 1 Loose Ends In implementing

Implementing the Standard Methods 27 February 2019 OSU CSE 1 Loose Ends In implementing

Implementing the Standard Methods 27 February 2019 OSU CSE 1 Loose Ends In implementing several kernel interfaces so far, you have been given code in the skeletons for the Standard methods The code for these methods is very stylized

349 views • 34 slides
Computational Semantics: Events NL to FOL: Loose ends Misc syn. categories VPs, Verbs Problems

Computational Semantics: Events NL to FOL: Loose ends Misc syn. categories VPs, Verbs Problems

Computational Semantics: Events Scott Farrar CLMA, University of Washington far- rar@u.washington.edu Computational Semantics: Events NL to FOL: Loose ends Misc syn. categories VPs, Verbs Problems with verbs Scott Farrar Event semantics

1.63k views • 131 slides
World War I Outcome: The Fighting Ends The Fighting Ends 1. The German War Machine a. Germany

World War I Outcome: The Fighting Ends The Fighting Ends 1. The German War Machine a. Germany

World War I Outcome: The Fighting Ends The Fighting Ends 1. The German War Machine a. Germany faced troubles in 1918 A home front revolution forced the Kaiser into exile i. Shortage of soldiers ( Iron Youth was gone); mutiny in Navy ii. iii.

583 views • 15 slides
Loose in the Street Yard Material Pile Collection Service Levels Review October 30, 2018 1

Loose in the Street Yard Material Pile Collection Service Levels Review October 30, 2018 1

Loose in the Street Yard Material Pile Collection Service Levels Review October 30, 2018 1 Focus on the Loose in the Street Yard Material Collection o Until July 2016, Davis Waste Removal (DWR) collected loose in the street (LITS) yard

115 views • 8 slides
ENDS 1 PRESENTATION Tuesday, September 2, 2014 SKSD District Office ENDS 1 PRESENTATION The

ENDS 1 PRESENTATION Tuesday, September 2, 2014 SKSD District Office ENDS 1 PRESENTATION The

ENDS 1 PRESENTATION Tuesday, September 2, 2014 SKSD District Office ENDS 1 PRESENTATION The South Kitsap School District will enable all students to achieve academic success by providing a learning environment that nurtures all students.

250 views • 6 slides
In any organization there is always a lot of loose, unused power lying about which can be

In any organization there is always a lot of loose, unused power lying about which can be

In any organization there is always a lot of loose, unused power lying about which can be picked up without alienating anyone, said Demara, who also posed as a prison guard, a professor, a monk, a deputy sheriff. Make your own rules

727 views • 23 slides
MVPN Extranet First, a little background: MVPN Effort that began in 2004 culminated in the

MVPN Extranet First, a little background: MVPN Effort that began in 2004 culminated in the

MVPN Extranet First, a little background: MVPN Effort that began in 2004 culminated in the set of RFCs 6511-6517 in 2012! (Well, really finished in 2010, mostly) Left a few loose ends, including wild cards and extranet

621 views • 17 slides
What is Loose Parts, Nature Play? Children are invited to engage in unstructured

What is Loose Parts, Nature Play? Children are invited to engage in unstructured

Loose Parts, Nature Play August 2013 Ilisa Goldman, RLA San Diego Children and Nature Collaborative What is Loose Parts, Nature Play? Children are invited to engage in unstructured outdoor play with a collection of nature

83 views • 5 slides
A Coq - definition al implementation of the Lax Logical Framework LLF P , for fast and loose

A Coq - definition al implementation of the Lax Logical Framework LLF P , for fast and loose

A Coq - definition al implementation of the Lax Logical Framework LLF P , for fast and loose reasoning F. Alessi, A. Ciaffaglione, P. Di Gianantonio, F. Honsell, M. Lenisa name.surname@uniud.it Department of Mathematics, Computer Science,

650 views • 30 slides
DNA Ends: Just the Beginning Nobel Lecture Dec. 7, 2009 Jack W. Szostak HHMI, MGH, HMS Two

DNA Ends: Just the Beginning Nobel Lecture Dec. 7, 2009 Jack W. Szostak HHMI, MGH, HMS Two

DNA Ends: Just the Beginning Nobel Lecture Dec. 7, 2009 Jack W. Szostak HHMI, MGH, HMS Two Telomere Problems: 1. DNA ends are reactive 2. Incomplete Replication Telomeres have been known to be special since the 1930s McClintock, Genetics

615 views • 39 slides
WatchKit Actions & Outlets Actions & Outlets App Extension (Interface) (Code) Watch

WatchKit Actions & Outlets Actions & Outlets App Extension (Interface) (Code) Watch

WatchKit Actions & Outlets Actions & Outlets App Extension (Interface) (Code) Watch iPhone Actions Interface elements can trigger some code e.g. button tapped, switch or slider value changed Outlets Access interface elements

739 views • 7 slides
A A Househealth Smart Electric Outlet Termite Damage on Wall Black Mold Damage 2018: 5

A A Househealth Smart Electric Outlet Termite Damage on Wall Black Mold Damage 2018: 5

A A Househealth Smart Electric Outlet Termite Damage on Wall Black Mold Damage 2018: 5 billion dollars of termite damage [1] Fires (2.7 billion) Floods (1.4 billion) Earthquakes (4.4 billion) 3 billion dollars for mold-related illness [2]

372 views • 12 slides
Exploring the Impact of Outlet Questions on Data Quality and Respondent Burden Yezzi Angi Lee

Exploring the Impact of Outlet Questions on Data Quality and Respondent Burden Yezzi Angi Lee

Exploring the Impact of Outlet Questions on Data Quality and Respondent Burden Yezzi Angi Lee Safia Abdirizak Economist Division of Consumer Expenditure Surveys DC-AAPOR July 12 th , 2019 1 U.S. B UREAU OF L ABOR S TATISTICS bls.gov

573 views • 21 slides
Contents Acquisition Overview Key Benefits of the Transaction Summary 2

Contents Acquisition Overview Key Benefits of the Transaction Summary 2

P ROPOSED A CQUISITION OF B ADALING O UTLETS, B EIJING 2 December 2019 Contents Acquisition Overview Key Benefits of the Transaction Summary 2 Acquisition Overview One of the

653 views • 30 slides
Introduction Mike Opat, PE Project Manager 17+ years of experience Managed numerous

Introduction Mike Opat, PE Project Manager 17+ years of experience Managed numerous

Lake Shamineau High Water Outlet Lake Shamineau High Water Outlet Informational Meeting Informational Meeting August 6, 2020 August 6, 2020 LAKE SHAMINEAU LAKE IMPROVEMENT DISTRICT LAKE SHAMINEAU LAKE IMPROVEMENT DISTRICT 1 Introduction

581 views • 14 slides
ktest.pl tutorial (Embedded Edition) Steven Rostedt srostedt@redhat.com rostedt@goodmis.org

ktest.pl tutorial (Embedded Edition) Steven Rostedt srostedt@redhat.com rostedt@goodmis.org

ktest.pl tutorial (Embedded Edition) Steven Rostedt srostedt@redhat.com rostedt@goodmis.org 4096R/5A56DE73 5ED9 A48F C54C 0A22 D1D0 804C EBC2 6CDB 5A56 DE73 What is ktest.pl? A script written in perl But you do not need to know

1.26k views • 98 slides
Designing a CPI in a developing country Some experiences Jrgen Daln Acknowledgement: This

Designing a CPI in a developing country Some experiences Jrgen Daln Acknowledgement: This

Designing a CPI in a developing country Some experiences Jrgen Daln Acknowledgement: This work was carried out under a contract for Statistics Swedens International Consulting Organisation (ICO). The work is funded by the Swedish

370 views • 8 slides
Cooling Design of Shielding at MOMENT Cooling Design of Shielding at MOMENT Jianfei Tong,

Cooling Design of Shielding at MOMENT Cooling Design of Shielding at MOMENT Jianfei Tong,

Cooling Design of Shielding at MOMENT Cooling Design of Shielding at MOMENT Jianfei Tong, Qingnian Xu,YuanYe,Binzhou, Tianjiao Liang August 11, 2015 Insititue of High Energy Physics, CAS Outline 1. Introduction 2. Heat Deposition Calculation

300 views • 19 slides

More recommend