Nearby Threats: Reversing, Analyzing, and Attacking Googles Nearby - - PowerPoint PPT Presentation
NDSS 2019 @ San Diego, US Nearby Threats: Reversing, Analyzing, and Attacking Googles Nearby Connections on Android Daniele Antonioli 1 , Nils Ole Tippenhauer 2 , Kasper Rasmussen 3 1 Singapore University of Technology and Design (SUTD) 2
1Singapore University of Technology and Design (SUTD) 2CISPA Helmholtz Center for Information Security 3University of Oxford
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android 1
◮ In-app proximity-based services ◮ E.g. peer-to-peer file editing
◮ Available across different Android versions ◮ Applications use it as a shared library Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Motivation 2
◮ Android (version ≥ 4.0) and Android Things ◮ Uses Bluetooth and Wi-Fi (at the same time)
◮ No public specifications ◮ Implementation is closed-source and obfuscated Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Motivation 3
◮ Uncovers its proprietary mechanisms and protocols ◮ Based on reversing its Android implementation
◮ Exposes parameters not accessible with the official API ◮ Impersonates nearby devices from any application
◮ Connection manipulation and range extension attacks ◮ Responsible disclosure with Google Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Motivation 4
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Background 5
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Background 6
◮ Profiling of processes, e.g. NC-App, NC-GPS ◮ Hook function and methods calls ◮ Override parameters and return values ◮ Read and write processes’ memory Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Setup 7
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android RE 8
1 Discovery: Bluetooth BR/EDR name and BLE reports
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android RE 8
1 Discovery: Bluetooth BR/EDR name and BLE reports 2 Connection Request: Bluetooth BR/EDR, not authenticated
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android RE 8
1 Discovery: Bluetooth BR/EDR name and BLE reports 2 Connection Request: Bluetooth BR/EDR, not authenticated 3 Key Exchange Protocol: establishment of a shared secret
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android RE 8
1 Discovery: Bluetooth BR/EDR name and BLE reports 2 Connection Request: Bluetooth BR/EDR, not authenticated 3 Key Exchange Protocol: establishment of a shared secret 4 Optional Authentication: based on the shared secret
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android RE 8
1 Discovery: Bluetooth BR/EDR name and BLE reports 2 Connection Request: Bluetooth BR/EDR, not authenticated 3 Key Exchange Protocol: establishment of a shared secret 4 Optional Authentication: based on the shared secret 5 Application Layer Connection Establishment: interactive
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android RE 8
1 Discovery: Bluetooth BR/EDR name and BLE reports 2 Connection Request: Bluetooth BR/EDR, not authenticated 3 Key Exchange Protocol: establishment of a shared secret 4 Optional Authentication: based on the shared secret 5 Application Layer Connection Establishment: interactive 6 Key Derivation Functions: session, AES and HMAC keys
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android RE 8
1 Discovery: Bluetooth BR/EDR name and BLE reports 2 Connection Request: Bluetooth BR/EDR, not authenticated 3 Key Exchange Protocol: establishment of a shared secret 4 Optional Authentication: based on the shared secret 5 Application Layer Connection Establishment: interactive 6 Key Derivation Functions: session, AES and HMAC keys 7 Optional Physical Layer Switch: Bluetooth BR/EDR to Wi-Fi
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android RE 8
1 Discovery: Bluetooth BR/EDR name and BLE reports 2 Connection Request: Bluetooth BR/EDR, not authenticated 3 Key Exchange Protocol: establishment of a shared secret 4 Optional Authentication: based on the shared secret 5 Application Layer Connection Establishment: interactive 6 Key Derivation Functions: session, AES and HMAC keys 7 Optional Physical Layer Switch: Bluetooth BR/EDR to Wi-Fi 8 Exchange Encrypted Payloads: 30 seconds timeout
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android RE 8
1 Discovery: Bluetooth BR/EDR name and BLE reports 2 Connection Request: Bluetooth BR/EDR, not authenticated 3 Key Exchange Protocol: establishment of a shared secret 4 Optional Authentication: based on the shared secret 5 Application Layer Connection Establishment: interactive 6 Key Derivation Functions: session, AES and HMAC keys 7 Optional Physical Layer Switch: Bluetooth BR/EDR to Wi-Fi 8 Exchange Encrypted Payloads: 30 seconds timeout 9 Disconnection
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android RE 8
Client C Server S Generate skC, pkC Pick NC cC = Hash(pkC) Generate skS, pkS Pick NS Kep1: 1, endpointId, ncname, version Kep2: 2, NC, cC, algo Kep3: 3, NS, pkS Kep4: 4, pkC Verify cC (Sx, Sy) = skS · pkC (Sx, Sy) = skC · pkS
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android RE 9
◮ Server instructs the client over Bluetooth ◮ Client contacts the server over Wi-Fi Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android RE 10
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Attacks 11
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Attacks 12
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Attacks 13
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Attacks 14
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Attacks 15
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Attacks 16
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Attacks 17
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Attacks 18
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Conclusions 19
Daniele Antonioli Nearby Threats: Reversing, Analyzing and Attacking Google’s ’Nearby Connections’ on Android Conclusions 19