mobile device and platform security
play

Mobile Device and Platform Security John Mitchell Two lectures on - PowerPoint PPT Presentation

Aug 07, 2023 •628 likes •1.28k views

Spring 2018 CS 155 Mobile Device and Platform Security John Mitchell Two lectures on mobile security Introduction: platforms and trends Threat categories n Physical, platform malware, malicious apps Defense against physical theft Thurs

  1. Spring 2018 CS 155 Mobile Device and Platform Security John Mitchell

  2. Two lectures on mobile security Introduction: platforms and trends Threat categories n Physical, platform malware, malicious apps Defense against physical theft Thurs Malware threats System architecture and defenses n Apple iOS security features and app security model n Android security features and app security model Security app development Tues n WebView – secure app and web interface dev n Device fragmentation 2

  3. MOBILE COMPUTING 3

  4. Current devices have long history iPhone, 2007 Apple Newton, 1987 Palm Pilot, 1997 4

  5. Mobile devices Mainframe -> desktop/server -> mobile/cloud Trends n Increasing reliance on personal device w Communication, personal data, banking, work w Data security, authentication increasingly important n From enterprise perspective: BYOD w Mobile device management (MDM) to protect enterprise n Reliance on cloud: iCloud attack risks, etc n Progress from web use to mobile device UI w Apps provide custom interface, but limited screen size… System designs draw on best ideas of past 5

  6. Before 2014 Global smartphone market share 6

  7. Since 2014 Global smartphone market share 7

  8. US Mobile App Traffic http://www.ironpaper.com/webintel/articles/web-design-statistics-2015/ 8

  9. Digital media usage time http://www.ironpaper.com/webintel/articles/web-design-statistics-2017/ 9

  10. Zillions of apps 10

  11. App Marketplace Better protection, isolation than laptop install App review before distribution n iOS: Apple manual and automated vetting n Android w Easier to get app placed on market w Transparent automated scanning, removal via Bouncer App isolation and protection n Sandboxing and restricted permission n Android w Permission model w Defense against circumvention 11

  12. MOBILE THREATS 12

  13. What’s on your phone? Contact list? Email, messaging, social networking? Banking, financial apps? Pictures, video, …? Music, movies, shows? Location information and history Access to cloud data and services? What would happen if someone picked up your unlocked phone? 13

  14. Mobile platform threat models Attacker with physical access n Try to unlock phone n Exploit vulnerabilities to circumvent locking System attacks n Exploit vulnerabilities in mobile platform via drive- by web downloads, malformed data, etc. App attacks n Use malicious app to steal data, misuse system, hijack other apps 14

  15. PROTECTION AGAINST PHYSICAL ATTACKER 16

  16. PROTECTION AGAINST PHYSICAL ATTACKER Device locking and unlocking 17

  17. Today: PINs or Patterns Need PIN or pattern to unlock device n Once unlocked all apps are accessible Twist: set a PIN or pattern per app (per photo, video) n Protect settings, market, Gmail even if phone unlocked. n Examples: App Protector Pro, Seal, Smart lock, … Another twist: n Front camera takes picture when wrong PIN entered n Example: GotYa 18

  18. Background: brute force pwd attack Offline attack n Traditionally: steal pwd file, try all pwd n Unix pwd file has hashed passwords n Cannot reverse hash, but can try dictionary hash(pwd, salt) = pwd_file_entry dictionary Online attack n Can you try all passwords at a web site? n What does this mean for phone pin attacks? 19

  19. Attacks Smudge attacks [Aviv et al., 2010] n Entering pattern leaves smudge that can be detected with proper lighting n Smudge survives incidental contact with clothing Potential defense [Moxie 2011] 1 2 n After entering pattern, require user to swipe across 3 4 Another problem: entropy 5 n People choose simple patterns – few strokes n At most 1600 patterns with <5 strokes 20

  20. [Bedrune, Sigwald, 2011] iOS 4.0: PIN brute force attack After device is jail broken, can PIN be extracted? n [Needed to read encrypted data partition (later topic)] iOS key management (abstract): | 4 digit PIN | decrypt class key stored (decrypts keychain) HW UID key key (AES key unique to device, cannot extract) Testing 10,000 PINs n for each, derive and test class key ≈ 20 mins on iPhone 4 (code.google.com/p/iphone-dataprotection) 22

  21. Better Device Unlocking A more secure approach to unlocking: n Unlock phone using a security token on body wrist watch, glasses, clothing Requirements n Cheap token, should not require charging 23

  22. Summary: locking and unlocking Protect from thief via user authentication n Commonly: pin, swipe, etc. n Future: Biometric? Token on body? n Can phone destroy itself if too many tries? Physical access can allow n Thief to jailbreak and crack password/pin n Subject phone to other attacks Next defense: erase phone when stolen 24

  23. PROTECTION AGAINST PHYSICAL ATTACKER Mobile device management (MDM) 25

  24. MDM:Mobile Device Management Manage mobile devices across organization n Consists of central server and client-side software Functions: n Diagnostics, repair, and update n Backup/restore n Policy enforcement (e.g. only allowed apps) n Remote lock and wipe n GPS tracking 26

  25. MDM Sample Deployment User consent user’s phone enrollment server cert push notification to request check in HTTPS connection to MDM report status and enterprise receive instructions server policy file configure, query, lock, wipe, … 27

  26. Summary: mobile device mgmt Protect stolen phone from thief n GPS: where’s my phone? n Device wipe Preventing brute force attacks n Phone can “lock” if too many bad pin tries n Use MDM to reset to allow user pin Backup, backup, backup! n Frequent backup makes auto-wipe possible 28

  27. MALWARE ATTACKS 29

  28. Mobile malware examples DroidDream (Android) n Over 58 apps uploaded to Google app market n Conducts data theft; send credentials to attackers Ikee (iOS) n Worm capabilities (targeted default ssh pwd) n Worked only on jailbroken phones with ssh installed Zitmo (Symbian,BlackBerry,Windows,Android) n Propagates via SMS; claims to install a “security certificate” n Captures info from SMS; aimed at defeating 2-factor auth n Works with Zeus botnet; timed with user PC infection 30

  29. Android malware 2015 31

  30. Increasing Android app malware https://blog.gdatasoftware.com/2017/04/29712-8-400-new-android-malware-samples-every-day 32

  31. Recent Android Malware Description AccuTrack This application turns an Android smartphone into a GPS tracker. Ackposts This Trojan steals contact information from the compromised device and uploads them to a remote server. Acnetdoor This Trojan opens a backdoor on the infected device and sends the IP address to a remote server. Adsms This is a Trojan which is allowed to send SMS messages. The distribution channel ... is through a SMS message containing the download link. Airpush/StopSMS Airpush is a very aggresive Ad-Network. … BankBot This malware tries to steal users’ confidential information and money from bank and mobile accounts associated with infected devices. http://forensics.spreitzenbarth.de/android-malware / 33

  32. Brief history of iOS attacks Find and call (2012) Accesses user’s contacts and spams friends n Jekyll-and-Hyde (2013): Benign app that turns malicious after it passes Apple’s review n App can post tweets, take photos, send email and SMS, etc. n Xsser mRat (2014) Steal information from jailbroken iOS devices n WireLurker (2014) Infects iOS through USB to OSX machines n Xagent (2015) Spyware. Steals texts, contacts, pictures, … n AceDeceiver (2016) Infects by exploiting vulnerability in Fairplay (DRM) n 34

  33. W 35

  34. 36

  35. Based on FairPlay vulnerability Requires malware on user PC, install of malicious app in App Store Continues to work after app removed from store Silently installs app on phone 37

  36. IOS PLATFORM 38

  37. Apple iOS From: iOS App Programming Guide 39

  38. Reference https://www.apple.com/business/docs/iOS_Security_Guide.pdf 40

  39. Topics System Security Protecting mobile platform 2 Encryption and Data Protection App Security 3 App isolation and protection Network Security Apple Pay Internet Services Device Controls 1 User-level security features Privacy Controls Apple Security Bounty 41

  40. IOS DEVICE AND PRIVACY CONTROLS 42

  41. Device unlock Can attacker try all Passcode key: 6-digit passcodes? derived by hashing passcode and device ID Hashing uses secret UID on secure enclave ⇒ deriving passcode key requires the secure enclave Secure enclave enforces 80ms delay per evaluation: 5.5 years to try all 6 digits pins n 5 failed attempts ⇒ 1min delay, 9 failed attempts ⇒ 1 hour delay n >10 failed attempts ⇒ erase phone. Counter on secure enclave. n 43

  42. Unlocking with Touch ID Passcode can always be used instead n Passcode required after: Reboot, or five unsuccessful Touch ID attempts, … Other uses (beyond unlock): n Enable access to keychain items n Apple Pay n Can be used by applications 44

  43. How does it work? Touch ID: sends fingerprint image to secure enclave (encrypted) Enclave stores skeleton encrypted with secure enclave key n With Touch ID off, upon lock, class-key Complete is deleted ⇒ no data access when device is locked With Touch ID on: class-key is stored encrypted by secure enclave Decrypted when authorized fingerprint is recognized Deleted upon reboot, 48 hours of inactivity, or five failed attempts 45

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Mobile Device and Platform Security Part II John Mitchell Two lectures on mobile security

Mobile Device and Platform Security Part II John Mitchell Two lectures on mobile security

CS 155 Spring 2018 Mobile Device and Platform Security Part II John Mitchell Two lectures on mobile security Introduction: platforms and trends Threat categories Physical, platform malware, malicious apps Defense

1.17k views • 93 slides
Towards a Unified Framework for Mobile Device Security Wayne A. Jansen, NIST Mobile Device

Towards a Unified Framework for Mobile Device Security Wayne A. Jansen, NIST Mobile Device

Towards a Unified Framework for Mobile Device Security Wayne A. Jansen, NIST Mobile Device Background* Mobile Device Background* Mobile Device Background* Mobile Device Background* Inexpensive, ubiquitous, wireless, networked,

478 views • 19 slides
CS 563 Mobile OS &amp; Device Security Advanced Computer Security CS 563 University of Illinois

CS 563 Mobile OS &amp; Device Security Advanced Computer Security CS 563 University of Illinois

CS 563 Mobile OS &amp; Device Security Advanced Computer Security CS 563 University of Illinois at Urbana-Champaign Presentation by: Gliz Seray Tuncay Administrative Announcements : Reaction paper was due today (and all classes)

807 views • 52 slides
Mobile Application Security Testing and Code Review 19 Nov 2013 Mobile and Smart Device

Mobile Application Security Testing and Code Review 19 Nov 2013 Mobile and Smart Device

Mobile Application Security Testing and Code Review 19 Nov 2013 Mobile and Smart Device Security 2013 Boston, MA Presen sented ted by: Francis Brown &amp; Joe DeMesy Bishop Fox www.bishopfox.com Introductions VERY QUICKLY

3.77k views • 83 slides
Admin Today/Friday: mobile platform security Wednesday: Guest lecture: Christoph Kern,

Admin Today/Friday: mobile platform security Wednesday: Guest lecture: Christoph Kern,

CSE 484 / CSE M 584: Computer Security and Privacy Mobile Platform Security [start] Fall 2017 Franziska (Franzi) Roesner franzi@cs.washington.edu Thanks to Dan Boneh, Dieter Gollmann, Dan Halperin, Yoshi Kohno, Ada Lerner, John Manferdelli, John

638 views • 26 slides
CO 445H MOBILE PLATFORM SECURITY AND MOBILE PRIVACY Dr. Benjamin Livshits Privacy International

CO 445H MOBILE PLATFORM SECURITY AND MOBILE PRIVACY Dr. Benjamin Livshits Privacy International

CO 445H MOBILE PLATFORM SECURITY AND MOBILE PRIVACY Dr. Benjamin Livshits Privacy International Data Tracking 2 http://privacyinternational.org/feature/2433/i-asked-online-tracking-company-all-my-data-and-heres-what-i-found Two Main Attack

986 views • 63 slides
Support for File system Kyungsik Lee SW Platform Lab., Corporate R&amp;D LG Electronics, Inc.

Support for File system Kyungsik Lee SW Platform Lab., Corporate R&amp;D LG Electronics, Inc.

Linux Kernel Encryption Support for File system Kyungsik Lee SW Platform Lab., Corporate R&amp;D LG Electronics, Inc. 2016/10/20 Mobile Security Mobile Security is an important issue More data could be more danger with mobile devices

242 views • 23 slides
Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda

Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda

Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda Protecting mobile devices and your privacy Protecting Mobile Devices and Your Privacy Before We Start The City of Phoenix does not

971 views • 52 slides
Edgefield SS Mobile Device Management Briefing Date: 17 th April 19 Mobile device management

Edgefield SS Mobile Device Management Briefing Date: 17 th April 19 Mobile device management

Edgefield SS Mobile Device Management Briefing Date: 17 th April 19 Mobile device management (MDM) An MDM solution control to deploy, monitor, and manage devices Basic F c Fea eatures in ScreenGuide de [Parent] Configure daily Screen Time

144 views • 12 slides
CSE 543 - Computer Security Lecture 26 - Mobile phone security December 11, 2007 URL:

CSE 543 - Computer Security Lecture 26 - Mobile phone security December 11, 2007 URL:

CSE 543 - Computer Security Lecture 26 - Mobile phone security December 11, 2007 URL: http://www.cse.psu.edu/~tjaeger/cse543-f07/ CSE543 Computer (and Network) Security - Fall 2007 - Professor Jaeger 1 Mobile Phones Networked device

302 views • 11 slides
Mobile Platform Security (finish) Fall 2016 Ada (Adam) Lerner lerner@cs.washington.edu Thanks

Mobile Platform Security (finish) Fall 2016 Ada (Adam) Lerner lerner@cs.washington.edu Thanks

CSE 484 / CSE M 584: Computer Security and Privacy Mobile Platform Security (finish) Fall 2016 Ada (Adam) Lerner lerner@cs.washington.edu Thanks to Franzi Roesner, Dan Boneh, Dieter Gollmann, Dan Halperin, Yoshi Kohno, John Manferdelli, John

807 views • 78 slides
Mobile Platform Security Spring 2016 Franziska (Franzi) Roesner franzi@cs.washington.edu Thanks

Mobile Platform Security Spring 2016 Franziska (Franzi) Roesner franzi@cs.washington.edu Thanks

CSE 484 / CSE M 584: Computer Security and Privacy Mobile Platform Security Spring 2016 Franziska (Franzi) Roesner franzi@cs.washington.edu Thanks to Dan Boneh, Dieter Gollmann, Dan Halperin, Yoshi Kohno, John Manferdelli, John Mitchell,

791 views • 35 slides
CS 528 Mobile and Ubiquitous Computing Lecture 11: Mobile Security and Mobile Software

CS 528 Mobile and Ubiquitous Computing Lecture 11: Mobile Security and Mobile Software

CS 528 Mobile and Ubiquitous Computing Lecture 11: Mobile Security and Mobile Software Vulnerabilities Emmanuel Agu Mobile Security Issues Introduction So many cool mobile apps Access to web, personal information, social media, etc

1.05k views • 55 slides
Securing Next- generation Mobile Platf orms: The User- to- Device Authentication I ssue MPSoC

Securing Next- generation Mobile Platf orms: The User- to- Device Authentication I ssue MPSoC

Securing Next- generation Mobile Platf orms: The User- to- Device Authentication I ssue MPSoC (August 2006) Srivaths Ravi (Email: sravi@nec- labs. com) NEC Laboratories America Princeton, NJ Security Requirements of Mobile Appliances

159 views • 12 slides
CSE484/CSE584 MOBILE PLATFORM SECURITY Dr. Benjamin Livshits Two Main Attack Vectors Web

CSE484/CSE584 MOBILE PLATFORM SECURITY Dr. Benjamin Livshits Two Main Attack Vectors Web

CSE484/CSE584 MOBILE PLATFORM SECURITY Dr. Benjamin Livshits Two Main Attack Vectors Web browser Installed apps Both types of threats increasing in prevalence and sophistication source:

861 views • 31 slides
Admin Today: finish web privacy, start mobile security Friday: Lab #2 due (8pm)

Admin Today: finish web privacy, start mobile security Friday: Lab #2 due (8pm)

CSE 484 / CSE M 584: Computer Security and Privacy Web Privacy [finish] Mobile Platform Security [start] Spring 2017 Franziska (Franzi) Roesner franzi@cs.washington.edu Thanks to Dan Boneh, Dieter Gollmann, Dan Halperin, Yoshi Kohno, Ada Lerner,

535 views • 29 slides
An Update on Regional Profile Assimilation and Near-Real-Time Modeling Plans Brad Zavodsky

An Update on Regional Profile Assimilation and Near-Real-Time Modeling Plans Brad Zavodsky

Science Mission Directorate UAH UAH UAH National Aeronautics and Space Administration An Update on Regional Profile Assimilation and Near-Real-Time Modeling Plans Brad Zavodsky University of Alabama in Huntsville Huntsville, Alabama

379 views • 13 slides
Speaker honorarium - Lumara Health No conflicts with respect to this lecture William M.

Speaker honorarium - Lumara Health No conflicts with respect to this lecture William M.

Speaker honorarium - Lumara Health No conflicts with respect to this lecture William M. Gilbert, MD Regional Medical Director, Sutter Health &amp; Clinical Professor Department of OB/GYN University of California, Davis One SD A. 47%

278 views • 11 slides
PH105 General Physics I Patrick LeClair Contact

PH105 General Physics I Patrick LeClair Contact

PH105 General Physics I Patrick LeClair Contact pleclair@ua.edu cc lab TA; PH105 in subject offices 323 Gallalee 1047 Bevill

605 views • 24 slides
Local Search for CSPs Alan Mackworth UBC CS 322 CSP 5 February 4, 2013 Textbook 4.8 Local

Local Search for CSPs Alan Mackworth UBC CS 322 CSP 5 February 4, 2013 Textbook 4.8 Local

Local Search for CSPs Alan Mackworth UBC CS 322 CSP 5 February 4, 2013 Textbook 4.8 Local Search: Motivation Solving CSPs is NP-hard - Search space for many CSPs is huge - Exponential in the number of variables - Even arc consistency

1.24k views • 55 slides
Utility Allowance Basics 2

Utility Allowance Basics 2

What Well Cover Utility Allowance Basics 2

264 views • 5 slides
On the Structure and Characteristics of User Agent Strings IMC 2017 November 2 London United

On the Structure and Characteristics of User Agent Strings IMC 2017 November 2 London United

On the Structure and Characteristics of User Agent Strings IMC 2017 November 2 London United Kingdom Je ff Kline &amp; Aaron Cahn ( comScore ) Paul Barford ( comScore, University of Wisconsin - Madison ) Joel Sommers ( Colgate University ) For

408 views • 15 slides
Incentive Engineering for Outsourced Computation in the Face of Collusion Arman Khouzani, Viet

Incentive Engineering for Outsourced Computation in the Face of Collusion Arman Khouzani, Viet

Incentive Engineering for Outsourced Computation in the Face of Collusion Arman Khouzani, Viet Pham , and Carlos Cid Information Security Group Royal Holloway University of London { arman.khouzani, viet.pham.2010, carlos.cid } @rhul.ac.uk

319 views • 17 slides
Optimal Continuous DR-Submodular Maximization and Applications to Provable Mean Field Inference

Optimal Continuous DR-Submodular Maximization and Applications to Provable Mean Field Inference

Optimal Continuous DR-Submodular Maximization and Applications to Provable Mean Field Inference Yatao (An) Bian, Joachim M. Buhmann, Andreas Krause ETH Zurich Motivation and Background Product recommendation Given a parameterized submodular

420 views • 5 slides

More recommend