mind your language s a discussion about languages and
play

Mind your Language(s)! A discussion about languages and security - PowerPoint PPT Presentation

Oct 14, 2023 •226 likes •697 views

Mind your Language(s)! A discussion about languages and security Eric Jaeger & Olivier Levillain LangSec Workshop @ IEEE SSP, 2014-05-18 ANSSI ANSSI (French Network and Information Security Agency) has InfoSec (and no Intelligence)

  1. Mind your Language(s)! A discussion about languages and security ´ Eric Jaeger & Olivier Levillain LangSec Workshop @ IEEE SSP, 2014-05-18

  2. ANSSI ANSSI (French Network and Information Security Agency) has InfoSec (and no Intelligence) missions: ◮ detect and early react to cyber attacks ◮ prevent threats by supporting the development of trusted products and services ◮ provide reliable advice and support ◮ communicate on information security threats and the related means of protection These missions concern: ◮ governmental entities ◮ companies ◮ the general public Jaeger & Levillain, 2014/05 Mind your Language(s)! 2/30

  3. Foreword What this presentation is about ◮ the impact of the language on security properties is understudied ◮ it covers a broad spectrum of subjects ◮ since 2005, two studies: JavaSec and LaFoSec ◮ each time, our partners that did not at first share (or even understand) our concerns ◮ the followig examples do not aim at criticising particular languages ◮ no language was harmed during our work 1 1 They were already like that when we began. Jaeger & Levillain, 2014/05 Mind your Language(s)! 3/30

  4. Outline 1 Illustrations 2 About assurance 3 Lessons learned Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations 4/30

  5. Outline 1 Illustrations Encpasulation Types, casts and overloading Side effects No comments From source code to execution Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Encpasulation) 5/30

  6. [ Java ] Objection Object encapsulation: a security mechanism? Source (java/Introspect.java) import java.lang.reflect .*; class Secret { private int x = 42; } public class Introspect { public static void main (String [] args) { try { Secret o = new Secret (); Class c = o.getClass (); Field f = c. getDeclaredField ("x"); f. setAccessible (true); System.out.println ("x="+f.getInt(o)); } catch (Exception e) { System.out.println(e); } } } ◮ Some keyword may be confusing ◮ Even if possible, introspection can not easily be banned in practice Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Encpasulation) 6/30

  7. [ OCaml ] The danger of < 1/2 OCaml also has encapsulation mechanisms: modules Source (ocaml/hsm.ml) module type Crypto = sig val id:int end ;; module C : Crypto = struct let id=Random.self_init (); Random.int 8192 let key=Random.self_init (); Random.int 8192 end ;; It is a sealed box, where id is visible, but not key C.id returns - : int = 2570 C.key returns Error: Unbound value C.key Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Encpasulation) 7/30

  8. [ OCaml ] The danger of < 2/2 Yet this encapsulation is not robust, since the box can be compared on a weighing scale Source (ocaml/hsmoracle.ml) let rec oracle o1 o2 = let o = (o1 + o2)/2 in let module O = struct let id=C.id let key=o end in if (module O:Crypto) >(module C:Crypto) then oracle o1 o else (if (module O:Crypto) <(module C:Crypto) then oracle o o2 else o);; oracle 0 8192;; Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Encpasulation) 8/30

  9. Outline 1 Illustrations Encpasulation Types, casts and overloading Side effects No comments From source code to execution Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Types, casts and overloading) 9/30

  10. [Shell] True, False, FILE NOT FOUND 1/2 How many value a boolean condition (e.g. x=y ) can take? Source (shell/login.sh) #!/ bin/bash PIN =1234 echo -n "Please type your PIN code (4 digits): " read -s PIN_TYPED; echo if [ "$PIN" -ne " $PIN_TYPED" ]; then echo "Invalid PIN code ."; exit 1 else echo " Authentication OK"; exit 0 fi Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Types, casts and overloading) 10/30

  11. [Shell] True, False, FILE NOT FOUND 1/2 How many value a boolean condition (e.g. x=y ) can take? Source (shell/login.sh) #!/ bin/bash PIN =1234 echo -n "Please type your PIN code (4 digits): " read -s PIN_TYPED; echo if [ "$PIN" -ne " $PIN_TYPED" ]; then echo "Invalid PIN code ."; exit 1 else echo " Authentication OK"; exit 0 fi In shell, the following excerpt shows a third option should be treated. A bad PIN will be rejected, but ”foo” will be accepted Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Types, casts and overloading) 10/30

  12. [ C ] True, False, FILE NOT FOUND 2/2 A recent vulnerability on GnuTLS may now sound familiar (March 2014, lwn.net ) But this bug is arguably much worse than Apple ’s, as it has allowed crafted certificates to evade validation check for all versions of GnuTLS ever released since that project got started in late 2000.[...] The check_if_ca function is supposed to return true (any non-zero value in C) or false (zero) depending on whether the issuer of the certificate is a certificate authority (CA). A true return should mean that the certificate passed muster and can be used further, but the bug meant that error returns were misinterpreted as certificate validations. Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Types, casts and overloading) 11/30

  13. [ C ] True, False, FILE NOT FOUND 2/2 A recent vulnerability on GnuTLS may now sound familiar (March 2014, lwn.net ) But this bug is arguably much worse than Apple ’s, as it has allowed crafted certificates to evade validation check for all versions of GnuTLS ever released since that project got started in late 2000.[...] The check_if_ca function is supposed to return true (any non-zero value in C) or false (zero) depending on whether the issuer of the certificate is a certificate authority (CA). A true return should mean that the certificate passed muster and can be used further, but the bug meant that error returns were misinterpreted as certificate validations. The same flaw was pre-existant in OpenSSL... in 2008 Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Types, casts and overloading) 11/30

  14. [ JavaScript ] Cast astroph Source (js/cast2.js) if ( ’0 ’==0) print (" ’0 ’==0"); else print ("’0’<>0"); if (0== ’0.0 ’) print ("0== ’0.0 ’"); else print ("0 < > ’0.0 ’"); if ( ’0 ’== ’0.0 ’) print (" ’0 ’== ’0.0 ’"); else print ("’0’<>’0.0’"); Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Types, casts and overloading) 12/30

  15. [ JavaScript ] Cast astroph Source (js/cast2.js) if ( ’0 ’==0) print (" ’0 ’==0"); else print ("’0’<>0"); if (0== ’0.0 ’) print ("0== ’0.0 ’"); else print ("0 < > ’0.0 ’"); if ( ’0 ’== ’0.0 ’) print (" ’0 ’== ’0.0 ’"); else print ("’0’<>’0.0’"); ’0’==0 , 0==’0.0’ et ’0’<>’0.0’ Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Types, casts and overloading) 12/30

  16. [ JavaScript ] Cast astroph Source (js/cast2.js) if ( ’0 ’==0) print (" ’0 ’==0"); else print ("’0’<>0"); if (0== ’0.0 ’) print ("0== ’0.0 ’"); else print ("0 < > ’0.0 ’"); if ( ’0 ’== ’0.0 ’) print (" ’0 ’== ’0.0 ’"); else print ("’0’<>’0.0’"); ’0’==0 , 0==’0.0’ et ’0’<>’0.0’ Source (js/cast3.js) a=1; b=2; c=’Foo ’; print(a+b+c); print(c+a+b); print(c+(a+b)); Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Types, casts and overloading) 12/30

  17. [ JavaScript ] Cast astroph Source (js/cast2.js) if ( ’0 ’==0) print (" ’0 ’==0"); else print ("’0’<>0"); if (0== ’0.0 ’) print ("0== ’0.0 ’"); else print ("0 < > ’0.0 ’"); if ( ’0 ’== ’0.0 ’) print (" ’0 ’== ’0.0 ’"); else print ("’0’<>’0.0’"); ’0’==0 , 0==’0.0’ et ’0’<>’0.0’ Source (js/cast3.js) a=1; b=2; c=’Foo ’; print(a+b+c); print(c+a+b); print(c+(a+b)); 3Foo , Foo12 and Foo3 Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Types, casts and overloading) 12/30

  18. [ Php ] Icono cast 1/2 Source (php/castincr.php) $x ="2 d8"; print($x +1); print ("\n"); $x ="2 d8"; print (++ $x ."\n"); print (++ $x ."\n"); print (++ $x ."\n"); if ("0 xF9 "=="249") { print (" Equal\n"); } else { print (" Different\n"); } Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Types, casts and overloading) 13/30

  19. [ Php ] Icono cast 1/2 Source (php/castincr.php) $x ="2 d8"; print($x +1); print ("\n"); $x ="2 d8"; print (++ $x ."\n"); print (++ $x ."\n"); print (++ $x ."\n"); if ("0 xF9 "=="249") { print (" Equal\n"); } else { print (" Different\n"); } The first line produces 3 (an int) Jaeger & Levillain, 2014/05 Mind your Language(s)! : Illustrations (Types, casts and overloading) 13/30

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Mind your Language(s)! A discussion about languages and security Olivier Levillain &amp; Pierre

Mind your Language(s)! A discussion about languages and security Olivier Levillain &amp; Pierre

Mind your Language(s)! A discussion about languages and security Olivier Levillain &amp; Pierre Chifflier ANSSI Hackito Ergo Sum, 2015-10-29 Levillain &amp; Chifflier Mind your Language(s)! HES 2015 1 / 59 Who are we? Olivier Levillain (

1.07k views • 81 slides
Languages General Discussion of Properties The Pumping Lemma Membership, Emptiness, Etc.

Languages General Discussion of Properties The Pumping Lemma Membership, Emptiness, Etc.

Decision Properties of Regular Languages General Discussion of Properties The Pumping Lemma Membership, Emptiness, Etc. 1 Properties of Language Classes A language class is a set of languages. Example: the regular languages. Language

920 views • 77 slides
Language and the Mind Sciences John A. Goldsmith March 31, 2016 Language and the Mind Sciences :

Language and the Mind Sciences John A. Goldsmith March 31, 2016 Language and the Mind Sciences :

Language and the Mind Sciences John A. Goldsmith March 31, 2016 Language and the Mind Sciences : A book in two volumes, with Bernard Laks, exploring the connections, ruptures, and continuities among linguistics, philosophy, psychology, and logic.

251 views • 5 slides
Decision Properties of Regular Languages General Discussion of Properties The Pumping

Decision Properties of Regular Languages General Discussion of Properties The Pumping

Decision Properties of Regular Languages General Discussion of Properties The Pumping Lemma Membership, Emptiness, Etc. 1 Properties of Language Classes A language class is a set of languages. We have one example: the regular

883 views • 56 slides
MASTER DISSERTATION Letters and Foreign Languages English Language Sciences of the language

MASTER DISSERTATION Letters and Foreign Languages English Language Sciences of the language

Mohamed Khider University of Biskra Faculty of Letters and Languages Department of Foreign Languages MASTER DISSERTATION Letters and Foreign Languages English Language Sciences of the language Submitted and Defended by: Mr.Kherbachi Abdellatif

1.32k views • 99 slides
11-830 Computational Ethics for NLP Language Technologies for Endangered Languages Government

11-830 Computational Ethics for NLP Language Technologies for Endangered Languages Government

11-830 Computational Ethics for NLP Language Technologies for Endangered Languages Government Investment in Languages Language Technologies mostly developed for High Resource Languages English, Spanish, German, Arabic, Mandarin What

465 views • 24 slides
Languages This will be on the exam Computability What is a language? What is a class

Languages This will be on the exam Computability What is a language? What is a class

Languages This will be on the exam Computability What is a language? What is a class of languages? Before We Start The Turing Machine Any questions? Motivating idea Build a theoretical a human computer Likened to

320 views • 10 slides
Languages and dialects ! What's a dialect of a language? ! Dialects of English: Languages,

Languages and dialects ! What's a dialect of a language? ! Dialects of English: Languages,

Languages and dialects ! What's a dialect of a language? ! Dialects of English: Languages, dialects, and power Scots / Scottish English Linguistics 201 African American Vernacular English Guest lecturer: Andrew Weir Cockney April 19,

64 views • 5 slides
Natural Language Processing Lecture 27: NLP for Languages Other Than English The multilingual

Natural Language Processing Lecture 27: NLP for Languages Other Than English The multilingual

Natural Language Processing Lecture 27: NLP for Languages Other Than English The multilingual world An Introduction How many languages are there? Ethnologue: over 7400 Lexico-statistical definition of languages: percentage

564 views • 52 slides
Languages at Downlands One language sets you in a corridor for life. Two languages open

Languages at Downlands One language sets you in a corridor for life. Two languages open

Modern Foreign Languages at Downlands One language sets you in a corridor for life. Two languages open every door along the way FRANK SMITH Transferable Skills : Giving students the edge social skills ability to work in a team

228 views • 6 slides
Language Contact Linguistics 203 Languages of the World Major Language Families Source: Comrie

Language Contact Linguistics 203 Languages of the World Major Language Families Source: Comrie

Language Contact Linguistics 203 Languages of the World Major Language Families Source: Comrie et al. (2003) Lack of Language Contact leads to greater differences in related languages/dialects Reasons for lack of contact migration

435 views • 40 slides
High-Level Languages Languages Assembly vs Machine Code Assembly vs high-level language

High-Level Languages Languages Assembly vs Machine Code Assembly vs high-level language

High-Level Languages Languages Assembly vs Machine Code Assembly vs high-level language Why Learn New Language availability special features porting maintenance more tools required for job cost Why Design a

1.36k views • 54 slides
Outline Languages and Formal Systems BNF Grammars Describing Languages Learning

Outline Languages and Formal Systems BNF Grammars Describing Languages Learning

Outline Languages and Formal Systems BNF Grammars Describing Languages Learning New Languages Languages Evaluation Rules #1 #2 What is a language? What is a language? Webster: Webster: A systematic means of A

521 views • 10 slides
1 Introduction Why Study Programming Languages? Choosing the right language for the job

1 Introduction Why Study Programming Languages? Choosing the right language for the job

1 Introduction Why Study Programming Languages? Choosing the right language for the job Designing a better language Languages we know determine how we think about programming A language that doesnt affect the way you think

622 views • 48 slides
Language engineering and Domain Specific Languages Perdita Stevens School of Informatics

Language engineering and Domain Specific Languages Perdita Stevens School of Informatics

Language engineering and Domain Specific Languages Perdita Stevens School of Informatics University of Edinburgh Plan 1. Defining languages 2. General purpose languages vs domain specific languages 3. Internal and external DSLs 4. What

677 views • 45 slides
understanding the mind Naomi Feldman University of Maryland December 4, 2014 Language in the

understanding the mind Naomi Feldman University of Maryland December 4, 2014 Language in the

Toward a goal of understanding the mind Naomi Feldman University of Maryland December 4, 2014 Language in the mind How to learners acquire speech sound categories? How do listeners perceive speech in noisy situations? How do

366 views • 22 slides
Landscape fragmentation fragmentation Landscape due to to transportation transportation

Landscape fragmentation fragmentation Landscape due to to transportation transportation

Landscape fragmentation fragmentation Landscape due to to transportation transportation infrastructure infrastructure due and urban development development and urban Dr. Jochen Jaeger Dr. Jochen Jaeger ETH Zurich Zurich, , Switzerland

511 views • 23 slides
Vector Flows and integer flows Yi Wang School of mathematical sciences, Anhui University Joint

Vector Flows and integer flows Yi Wang School of mathematical sciences, Anhui University Joint

Introduction to integer flow 5-flow Conjecture and 3-flow Conjecture Vector flow Vector Flows and integer flows Yi Wang School of mathematical sciences, Anhui University Joint with Jian Cheng, Rong Luo and Cun-Quan Zhang Dec. 20, 2016,

639 views • 25 slides
Service Mess to Service Mesh Observe. Control. Secure. Rob Richardson Technical Evangelist,

Service Mess to Service Mesh Observe. Control. Secure. Rob Richardson Technical Evangelist,

Service Mess to Service Mesh Observe. Control. Secure. Rob Richardson Technical Evangelist, MemSQL Kavya Pearlman Cybersecurity Strategist, Wallarm https://www.shutterstock.com/image-photo/ca r-technology-autonomous-self-driving-concep

306 views • 26 slides
The politics of helping the poor Lane Kenworthy June 2010 Economic growth has been good for the

The politics of helping the poor Lane Kenworthy June 2010 Economic growth has been good for the

The politics of helping the poor Lane Kenworthy June 2010 Economic growth has been good for the poor Denmark Sweden 13,000 13,000 P10 income (2000 US$ P10

794 views • 37 slides
(Integrity Justified) Experimental Provenance Patrick McDaniel, Pennsylvania State University

(Integrity Justified) Experimental Provenance Patrick McDaniel, Pennsylvania State University

484 views • 5 slides
1 National Faculty Trends Composition of Instructional Faculty Among Nonprofit Institutions* *

1 National Faculty Trends Composition of Instructional Faculty Among Nonprofit Institutions* *

Developing HR Policies and Practices to Support a Changing Faculty Model Sponsored by February 28, 2018 Presenter Adrianna Kezar , Professor for Higher Education, codirector of the Pullias Center for Higher Education, University of

454 views • 11 slides
From the Foundational Crisis of Mathematics to Explicit Mathematics PhDs in Logic XI Gerhard J

From the Foundational Crisis of Mathematics to Explicit Mathematics PhDs in Logic XI Gerhard J

From the Foundational Crisis of Mathematics to Explicit Mathematics PhDs in Logic XI Gerhard J ager University of Bern Bern, April 2019 G. J ager (Bern University) Fondational Crisis Explicit Mathematics April 2019 1 / 44 How it

657 views • 44 slides
AN INTRODUCTION TO TRANSITION POLYNOMIALS Jo Ellis-Monaghan The story There are

AN INTRODUCTION TO TRANSITION POLYNOMIALS Jo Ellis-Monaghan The story There are

AN INTRODUCTION TO TRANSITION POLYNOMIALS Jo Ellis-Monaghan The story There are deletion-contraction polynomials. The Tutte polynomial assimilates them all. There are many generalizations of the Tutte polynomial to adapt it to

471 views • 23 slides

More recommend