moving to client side hashing for online authentication
play

Moving to client-side hashing for online authentication Enka - PowerPoint PPT Presentation

May 29, 2023 •825 likes •1.02k views

Moving to client-side hashing for online authentication Enka Blanchard 1 Xavier Coquand 2 Ted Selker 3 Digitrust, Loria, Universit e de Lorraine, www.koliaza.com Bsecure, Paris University of Maryland, Baltimore County 9th International

  1. Moving to client-side hashing for online authentication Enka Blanchard 1 Xavier Coquand 2 Ted Selker 3 Digitrust, Loria, Universit´ e de Lorraine, www.koliaza.com Bsecure, Paris University of Maryland, Baltimore County 9th International Workshop on Socio-Technical Aspects in SecuriTy @ ESORICS September 26th, 2019

  2. Why hash passwords? Password hashing today Client-side hashing Making changes 1/13

  3. Password hashing: best practices How to hash correctly: • Use a salt for each password • Use a secure password hashing algorithm (Argon2 or bcrypt) • Protect against side-channels (e.g. HTTP) • Don’t keep duplicates or logs Password hashing today Client-side hashing Making changes 2/13

  4. Poll: how long have we been saying this? Password hashing today Client-side hashing Making changes 3/13

  5. 1968: Sir Maurice Vincent Wilkes, commenting on Roger Needham’s 1967 password system Password hashing today Client-side hashing Making changes 3/13

  6. 2015-2016 leaks website encryption # accounts leaked leak date 000webhost.com clear 15035687 Mar. 2015 sprashivai.ru clear 3472645 May 2015 36140796 July 2015 ashleymadison.com bcrypt 17.media MD5 3824575 Sep. 2015 mpgh.net MD5+salt 3119180 Oct. 2015 r2games.com MD5+salt 11758232 Oct. 2015 nexusmods.com MD5+salt 5918540 Dec. 2015 mate1.com clear 27402581 Feb. 2016 naughtyamerica.com MD5 989401 Apr. 2016 badoo.com MD5 122730419 June 2016 Table: Partial list of leaks analysed in 2016 by Jaeger et al. Password hashing today Client-side hashing Making changes 4/13

  7. How about client-side hashing? Password hashing today Client-side hashing Making changes 5/13

  8. Detecting client-side hashing How we can find out if a website uses client-side hashing: • Semantic and syntactic analysis: observe ”password” in the packet or follow memory cells • Computing load analysis: good hashing takes resources This can only detect absence of good hashing, no positive guarantee. Password hashing today Client-side hashing Making changes 6/13

  9. Client-side hashing in the Alexa 50 Websites google.com tmall.com blogspot.com mail.ru xvideos.com youtube.com reddit.com netflix.com bing.com tribunnews.com facebook.com instagram.com linkedin.com microsoft.com amazon.co.jp baidu.com live.com bilibili.com whatsapp.com google.co.in wikipedia.org vk.com twitch.tv naver.com github.com qq.com sohu.com pornhub.com aliexpress.com okezone.com yahoo.com jd.com login.tmall.com livejasmin.com imdb.com amazon.com yandex.ru 360.cn microsoftonline.com google.com.hk taobao.com sina.com.cn csdn.net alipay.com pages.tmall.com twitter.com weibo.com yahoo.co.jp ebay.com stackoverflow.com Password hashing today Client-side hashing Making changes 7/13

  10. Client-side hashing in the Alexa 50 Websites google.com tmall.com blogspot.com mail.ru xvideos.com youtube.com reddit.com netflix.com bing.com tribunnews.com facebook.com instagram.com linkedin.com microsoft.com amazon.co.jp live.com bilibili.com whatsapp.com google.co.in baidu.com wikipedia.org vk.com twitch.tv naver.com github.com qq.com sohu.com pornhub.com aliexpress.com okezone.com yahoo.com jd.com login.tmall.com livejasmin.com imdb.com amazon.com yandex.ru 360.cn microsoftonline.com google.com.hk taobao.com sina.com.cn csdn.net alipay.com pages.tmall.com twitter.com weibo.com yahoo.co.jp ebay.com stackoverflow.com Password hashing today Client-side hashing Making changes 7/13

  11. 1-to-1 correspondance between client-side hashing and Chinese websites Password hashing today Client-side hashing Making changes 8/13

  12. Why not use client-side hashing? Password hashing today Client-side hashing Making changes 9/13

  13. Client-side hashing: drawbacks Four potential drawbacks: • Incompatibility with legacy protocols • Same-site authentication attacks after leaks • Computing power limits • Script blocking Password hashing today Client-side hashing Making changes 10/13

  14. Client-side hashing: advantages Six main advantages: • No credential reuse attack • Lower server costs • Stronger hashing • Makes phishing slightly harder • Simpler if standardised • Enforces accountability Password hashing today Client-side hashing Making changes 11/13

  15. Client-side hashing: advantages Six main advantages: • No credential reuse attack • Lower server costs • Stronger hashing • Makes phishing slightly harder • Simpler if standardised • Enforces accountability Password hashing today Client-side hashing Making changes 11/13

  16. Making changes: globally To change the ecosystem: • Update the belief that client-side is detrimental, for both researchers and developers • Change the incentive structure, as with the padlock Ideally: convince large browser developers or standards organisation Password hashing today Client-side hashing Making changes 12/13

  17. Making changes: for the user It should not affect their experience in general. Two main immediate options: • Create an extension to warn them in case of unsecure systems • Detecting and hashing passwords on the client Password hashing today Client-side hashing Making changes 13/13

  18. Thank you for your attention Password hashing today Client-side hashing Making changes 13/13

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Troubleshooting Grid authentication from the client side By Adriaan van der Zee RP1 presentation

Troubleshooting Grid authentication from the client side By Adriaan van der Zee RP1 presentation

Troubleshooting Grid authentication from the client side By Adriaan van der Zee RP1 presentation 2009-02-04 Contents The Grid @NIKHEF The project Grid components and interactions X.509 certificates, proxies and delegations

257 views • 13 slides
TLS 1.3 Client Authentication Andrei Popov, Microsoft Corp. Issue 1: TLS Client Authentication

TLS 1.3 Client Authentication Andrei Popov, Microsoft Corp. Issue 1: TLS Client Authentication

TLS 1.3 Client Authentication Andrei Popov, Microsoft Corp. Issue 1: TLS Client Authentication After the Handshake The user navigates to the sites landing page, no client authentication required. Eventually, the user requests a

69 views • 6 slides
Hashing Hashing What is it? A form of narcotic intake? A side order for your eggs? A

Hashing Hashing What is it? A form of narcotic intake? A side order for your eggs? A

Hashing Hashing What is it? A form of narcotic intake? A side order for your eggs? A combination of the two? Hashing 1 Problem RT&T is a large phone company, and they want to provide caller ID capability: - given a phone number,

267 views • 14 slides
Authentication Dr. Steven Bitner Hashing Hashing is ONE WAY encryption You cannot

Authentication Dr. Steven Bitner Hashing Hashing is ONE WAY encryption You cannot

Authentication Dr. Steven Bitner Hashing Hashing is ONE WAY encryption You cannot retrieve the plain text Common hashes: md5 sha1 sha256 $password = hash (md5,$password); Better (though less common hash) Bcrypt

355 views • 18 slides
EAP Client-side Transport draft-boursetty-eap-cst-00.txt IETF 57 EAP WG July 2003 A typical EAP

EAP Client-side Transport draft-boursetty-eap-cst-00.txt IETF 57 EAP WG July 2003 A typical EAP

EAP Client-side Transport draft-boursetty-eap-cst-00.txt IETF 57 EAP WG July 2003 A typical EAP setup Access Target Client NAS Network Network AAA server S 2 A new EAP setup Authentication AuthToken AuthServer Integrity Client

628 views • 7 slides
Hash Tables LAST TODAY NEXT Client vs library interface Hashing Making Implementing

Hash Tables LAST TODAY NEXT Client vs library interface Hashing Making Implementing

Hash Tables LAST TODAY NEXT Client vs library interface Hashing Making Implementing hash table dictionaries Genericity code generic Hashing fruit You are the client entries key hash value operations apple

667 views • 18 slides
Overview Intro to Hashing Intro to Hashing Hashing with Chaining Whats hashing?

Overview Intro to Hashing Intro to Hashing Hashing with Chaining Whats hashing?

Overview Intro to Hashing Intro to Hashing Hashing with Chaining Whats hashing? Distribute key/value pairs across bins with a hash function , Hashing Performance Hashing (Application of Probability) which maps elements from

497 views • 3 slides
Modern client-side defenses Deian Stefan Today How can we build flexible and secure client-side

Modern client-side defenses Deian Stefan Today How can we build flexible and secure client-side

CSE 127: Computer Security Modern client-side defenses Deian Stefan Today How can we build flexible and secure client-side web applications (from vulnerable/untrusted components) Modern web sites are complicated Many acting parties on a site

867 views • 62 slides
CSCC09 Programming on the Web Thierry Sans Architecture of a Web Application Client Side

CSCC09 Programming on the Web Thierry Sans Architecture of a Web Application Client Side

CSCC09 Programming on the Web Thierry Sans Architecture of a Web Application Client Side Server Side Web Server Web Browser Web Technologies Content Resources Presentation management Client Side Processing Multimedia The evolution of

1.24k views • 23 slides
LibreOffjce Online client side development by Mihai Varga Consultant Software Engineer

LibreOffjce Online client side development by Mihai Varga Consultant Software Engineer

LibreOffjce Online client side development by Mihai Varga Consultant Software Engineer Intern +MihaiVarga13 mihai.varga@collabora.com @CollaboraOffjce www.CollaboraOffjce.com A brief introduction 2/37 LibreOffjce Conference 2015 |

542 views • 37 slides
CSE 154 LECTURE 6: JAVASCRIPT Client-side scripting client-side script : code runs in browser

CSE 154 LECTURE 6: JAVASCRIPT Client-side scripting client-side script : code runs in browser

CSE 154 LECTURE 6: JAVASCRIPT Client-side scripting client-side script : code runs in browser after page is sent back from server often this code manipulates the page or responds to user actions What is JavaScript? a lightweight

643 views • 29 slides
Cookies and Sessions Thierry Security assumptions You have absolutely no control on the client

Cookies and Sessions Thierry Security assumptions You have absolutely no control on the client

Cookies and Sessions Thierry Security assumptions You have absolutely no control on the client Client Side Server Side Web Server Database Web Browser Cookies The big picture key/value pairs data Client Side Server Side HTTP request

783 views • 13 slides
14. Hashing Hash Tables, Pre-Hashing, Hashing, Resolving Collisions using Chaining, Simple

14. Hashing Hash Tables, Pre-Hashing, Hashing, Resolving Collisions using Chaining, Simple

14. Hashing Hash Tables, Pre-Hashing, Hashing, Resolving Collisions using Chaining, Simple Uniform Hashing, Popular Hash Functions, Table-Doubling, Open Addressing: Probing, Uniform Hashing, Universal Hashing, Perfect Hashing [Ottman/Widmayer,

1.25k views • 98 slides
14. Hashing Hash Tables, Pre-Hashing, Hashing, Resolving Collisions using Chaining, Simple

14. Hashing Hash Tables, Pre-Hashing, Hashing, Resolving Collisions using Chaining, Simple

14. Hashing Hash Tables, Pre-Hashing, Hashing, Resolving Collisions using Chaining, Simple Uniform Hashing, Popular Hash Functions, Table-Doubling, Open Addressing: Probing, Uniform Hashing, Universal Hashing, Perfect Hashing [Ottman/Widmayer,

1.5k views • 58 slides
Beyond Trust PostgreSQL Client Authentication Christoph Mnch-Tegeder 2ndQuadrant

Beyond Trust PostgreSQL Client Authentication Christoph Mnch-Tegeder 2ndQuadrant

Beyond Trust PostgreSQL Client Authentication Christoph Mnch-Tegeder 2ndQuadrant http://www.2ndquadrant.com/ 2017-02-05 Part I Authentication Why Authentication? Too complicated Nobody knows my database Nobody will attack us

813 views • 39 slides
Message authentication and cryptographic hashing 2MMC10 Cryptology Andreas H ulsing

Message authentication and cryptographic hashing 2MMC10 Cryptology Andreas H ulsing

Message authentication and cryptographic hashing 2MMC10 Cryptology Andreas H ulsing September 20, 2018 A. H ulsing 2MMC10 Cryptology 1 / 12 Message authentication Sometimes we want more than secrecy! Acknowledgement of receipt,

262 views • 22 slides
DEXCALIBUR AUTOMATE YOUR ANDROID APP REVERSE Or hooking for dummies

DEXCALIBUR AUTOMATE YOUR ANDROID APP REVERSE Or hooking for dummies

DEXCALIBUR AUTOMATE YOUR ANDROID APP REVERSE Or hooking for dummies https://github.com/FrenchYeti/dexcalibur.git WHO AM I ? GEORGES-B. MICHEL @FrenchYeti yeti@0xff.ninja Aka @FrenchYeti Software Security Evaluator at Thales Day

925 views • 77 slides
Heaven Applauds You 5 Now when Jesus saw the crowds, he went up on a mountainside and sat down.

Heaven Applauds You 5 Now when Jesus saw the crowds, he went up on a mountainside and sat down.

Heaven Applauds You 5 Now when Jesus saw the crowds, he went up on a mountainside and sat down. His disciples came to him, 2 and he began to teach them. He said: 3 Blessed are the poor in spirit, for theirs is the kingdom of heaven. 4

842 views • 12 slides
Introduction Ch 1 Object Oriented Main focus is on objects/variables and how they interact

Introduction Ch 1 Object Oriented Main focus is on objects/variables and how they interact

Introduction Ch 1 Object Oriented Main focus is on objects/variables and how they interact (represented by me as boxes) Reusable groups of actions (verbs) between objects are called functions (squiggly boxes) These actions can take additional

611 views • 34 slides
Modelling with Differential Equations Modelling with Differential Equations Modelling with

Modelling with Differential Equations Modelling with Differential Equations Modelling with

Modelling with Differential Equations Modelling with Differential Equations Modelling with Differential Equations Problems with inflow/outflow Modelling with Differential Equations Problems with inflow/outflow Equation for

647 views • 33 slides
trans: Name Redaction & RFC6962-bis Eran Messeri, Google, eranm@google.com Definition: Name

trans: Name Redaction & RFC6962-bis Eran Messeri, Google, eranm@google.com Definition: Name

trans: Name Redaction & RFC6962-bis Eran Messeri, Google, eranm@google.com Definition: Name Redaction The ability to avoid publishing domain names, in whole or partially, in Certificate Transparency logs. Name redaction: Missing goals

248 views • 7 slides
CS6 Practical System Skills Fall 2019 edition Leonhard Spiegelberg lspiegel@cs.brown.edu

CS6 Practical System Skills Fall 2019 edition Leonhard Spiegelberg lspiegel@cs.brown.edu

CS6 Practical System Skills Fall 2019 edition Leonhard Spiegelberg lspiegel@cs.brown.edu Midterm results & Logistics Midterm I average: 78.8% Midterm II average: 83% Final project presentations on 15th Dec @ CIT 3pm - 5pm

640 views • 33 slides
An Introduction to by Erik Johnson What is Salt? Remote Execution Run commands or

An Introduction to by Erik Johnson What is Salt? Remote Execution Run commands or

An Introduction to by Erik Johnson What is Salt? Remote Execution Run commands or functions on many hosts at once Receive results asynchronously as each host returns data to the master Uses the ZeroMQ messaging library

929 views • 34 slides
Making Password Checking Systems Be7er Tom Ristenpart Covering

Making Password Checking Systems Be7er Tom Ristenpart Covering

Making Password Checking Systems Be7er Tom Ristenpart Covering joint work with: Anish Athayle, Devda<a Akawhe, Joseph Bonneau, Rahul Cha<erjee, Adam

414 views • 30 slides

More recommend