new client puzzle outsourcing techniques for dos
play

New Client Puzzle Outsourcing Techniques for DoS Resistance Paper - PowerPoint PPT Presentation

Jan 20, 2023 •154 likes •551 views

New Client Puzzle Outsourcing Techniques for DoS Resistance Paper by Waters, Juels, Halderman, and Felten Presenter: Michael Peck Outline Need for client puzzles Basic idea of client puzzles Related ideas Juels/Brainard

  1. New Client Puzzle Outsourcing Techniques for DoS Resistance  Paper by Waters, Juels, Halderman, and Felten  Presenter: Michael Peck

  2. Outline  Need for client puzzles  Basic idea of client puzzles  Related ideas  Juels/Brainard paper  Waters et al. Client Puzzle Outsourcing paper 2

  3. Need for client puzzles  Fight DoS/DDoS attacks – SYN floods and other connection depletion attacks – Attackers consume all server resources, leaving none for legit clients  Fight spam 3

  4. SYN floods Backlog queue Client Server SYN SYN SYN SYN

  5. Hashcash (Adam Back) Ver # bits Date Resource Ext Rand Counter  Two sample tokens: – 1:20:050323:mpeck@jhu.edu::sa0D5ybM1AMVmoJ6:000 07EOW – 1:20:050323:mpeck@jhu.edu::nyRy2TzXOSGMVRlR:000 00twV  Verification: – echo -n "1:20:050323:mpeck@jhu.edu::sa0D5ybM1AMVmoJ6:00007EOW" | openssl sha1 00000 3ec0cda9b5f640cdd1caaf6081bad65dfa0 – echo -n "1:20:050323:mpeck@jhu.edu::nyRy2TzXOSGMVRlR:00000twV" | openssl sha1 00000 8f39f027ce00891554f2620c7563245c672 5

  6. Basic idea  Force client to commit resources (CPU or memory) before the server commits resources on the client’s behalf – Workstations have more power than they really need, might as well use some of it. – Makes client put in some effort of its own 6

  7. Alternative strategies  “Postage” - client sticks on some kind of proof that it paid a nickel or other small amount - proposed for e-mail.  CAPTCHAs - client proves that there’s a human on its end actively participating – Widely used - especially for registering for free e-mail accounts (Gmail, Yahoo!, Hotmail, etc.) 7

  8. Alternative strategies  SYN cookies – Don’t keep any state on the server until the connection is established. – Minor eavesdropping weaknesses Server Client SYN SYN/ACK with sequence number set as shown below ACK sends back the sequence number SHA1( ) Src Dst Src Dst Time Secret Addr Addr Port Port 8

  9. Attack Model  Attacker can’t modify packets between clients and servers  Attacker can’t significantly delay packets  Attacker can’t saturate server, network, or any port  Attacker can perform IP spoofing  Can attacker eavesdrop? – Juels paper and Waters paper disagree 9

  10. Properties of good client puzzles  Stateless on server until client provides valid solution  Server can verify solution quickly  Client takes time to compute solution – But not too much or too little – Hard to account for varying CPU speeds 10

  11. Juels/Brainard Paper (NDSS ‘99)  Server hands out puzzles to clients when under attack.  Puzzle made up of n independent subpuzzles each of difficulty k to solve Server secret s and other metadata hash x<1...k> bits x<k...L> (revealed) hash y (revealed to client) 11

  12. Juels/Brainard Paper  complexity for client to solve puzzle – m = number of subpuzzles – k = # of bits of x not revealed to client 12

  13. Juels/Brainard Paper  Improvement suggested to make subpuzzles dependent, for quicker verification on server.

  14. Puzzle auctions  Wang, Reiter - 2003 – Client decides puzzle difficulty (bids) – Server allocates resources first to client who solved most difficult puzzles  Somewhat backwards-compatible  More on this tomorrow 14

  15. Shortcomings  Existing schemes themselves can be subject to DoS attack – Puzzle creation/verification requires hash computations in Juels/Brainard scheme  Existing solutions require on-line computation by clients - wastes users’ time – On-line computation doesn’t hurt attackers as much since they’re not interactive users 15

  16. Waters et al.  Outsource puzzle creation and distribution to a bastion – Same puzzles can be used by clients for multiple, unrelated servers • Bastion can be mirrored • Servers don’t have to worry about creating puzzles • Servers & bastion need to stay in sync 16

  17. Approach  Outsource puzzle creation to bastion – Servers can all share the same puzzles  Solution verification only requires a table lookup  Clients can solve puzzles slightly ahead of time  Solving puzzle only gives client access to a small slice of the server’s resources (virtual channels) 17

  18. Virtual channels  Each puzzle solution is only valid for a specific channel - but, the solution can be used for ANY server  Server limits how many connections are accepted per channel  Channels designed to separate attackers & regular users 18

  19. Virtual channels Channels Solution 1 Server Client 1 SYN with Puzzle Solution attached Solution SYN/ACK 2 2 ACK Solution 3 3 Solution 4 4 ... Solution N N 19

  20. Puzzle construction goals  Unique puzzle solutions (needed for lookup)  Per-channel puzzle distribution  Per-channel puzzle solution  Random-beacon property  Identity-based key distribution  Forward secrecy  But, make sure a server can’t compute another server’s solution 20

  21. Hash function inversion won’t work  Doesn’t meet the per-channel puzzle distribution property  So, use Diffie-Hellman based scheme for constructing puzzles – Bastion creates puzzles, distributes to clients & servers – Servers adapt puzzles to themselves (compute puzzle solution using backdoor) 21

  22. DH based construction  Each server has a D-H secret key x 1 and a D-H public key g x 1 – Public keys distributed to clients  Bastion selects a random integer r c,T 22

  23. DH Construction  Bastion uses first random number as a range for seed to generate a second number a  Second D-H secret key set to f’(a). – g f’(a) (f’ is a one-way function)  Bastion publishes g f’(a) and r 23

  24. DH Example r = g f’(a) a = 12121 f’(a) srand (r +/- L) 9112 Bastion publishes range for the seed, and a D-H public key 24

  25. Steps taken by server  Server precomputes each puzzle solution by doing one modular exponentiation. – But, has to do this once for each channel  Stores solutions in a table for quick lookup  Cost: (calculated with BouncyCastle) – Modular exponentation (768 bit): 10ms – SHA-1 hash computation (448 bit): 0.4 ms 25

  26. Steps taken by client  Client brute-forces the seed 1.Guess a candidate a’ 2.Apply one-way function to a’ 3.Compute g f’(a’) 4.If matches published value, save, and combine with server’s public key as needed  Requires an average of L/2 modular exponentiations 26

  27. Server public key distribution  Could use identity-based public keys – Server’s public key derived from a string representing the server & public parameters.  Trusted dealer gives servers their private keys  Not used for prototype implementation due to inefficiencies 27

  28. Time-lock puzzles  Proposed by Rivest, Shamir, Wagner (1996)  Achieves random-beacon property – Puzzles can be based on stock index quote or some other widely distributed value  May not achieve per-channel puzzle solution property – Client has to compute a solution for each individual server that it wants to access 28

  29. System description  Each server has n virtual channels – n is fixed for all servers using bastion  Each solution to a channel is valid for time period t (several minutes). 29

  30. System description  T i denotes the i th time period.  At beginning of T i , bastion publishes puzzles whose solutions will be valid during T i+1 . – Each server computes all puzzle solutions for all channels and stores in table for easy lookup to have ready by T i+1 – Each client solves puzzles for randomly chosen channels to have ready by T i+1 30

  31. How many channels?  More channels are better – Decreases chance that a legitimate client is using same channel as an attacker  Server’s memory & CPU power limit the number of channels  Unlike other client puzzle schemes, this scheme directly benefits from technological advances – Hopefully advances benefit server more than attacker 31

  32. Prototype Implementation  Client puts token into an option field of TCP SYN packet  Server uses token to put client in a channel  Each channel only accepts a new connection every n seconds.  Bastion: – Creates/distributes new puzzles at regular interval via HTTP 32

  33. Prototype Implementation  Server: Two applications – User space: Retrieve new puzzles from bastion & precompute solutions using D-H private key – Kernel space: Filter incoming SYN packets, rate limit virtual channels 33

  34. Experiment  Compared implementation to simulated conventional hash puzzles and Linux syncookies – Simulated conventional hash puzzles: • Server computes a SHA-1 hash in place of puzzle verification, then drops packet – Juels/Brainard use MD4, does this matter?  10,000 virtual channels – Approximately 100 seconds needed for server to precompute solutions 34

  35. Performance 35

  36. Experiment limitations  We’ll cover these tomorrow 36

  37. Extensions  Flexible number of channels per server – Servers have varying needs / processing capabilities – Secondary puzzles • Solutions to secondary puzzles encrypted with solutions of primary puzzles 37

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Client Puzzles Defending Against Denial-of- Service Attacks with Puzzle Auctions Outline

Client Puzzles Defending Against Denial-of- Service Attacks with Puzzle Auctions Outline

Client Puzzles Defending Against Denial-of- Service Attacks with Puzzle Auctions Outline Motivation Auction Protocol TCP Puzzle Auction TCP Client Puzzle Implementation Experiment Results Questions Defending Against

761 views • 30 slides
Secure Outsourcing of Computation Ron Rothblum MIT Outsourcing Computation Motivation: allow a

Secure Outsourcing of Computation Ron Rothblum MIT Outsourcing Computation Motivation: allow a

Secure Outsourcing of Computation Ron Rothblum MIT Outsourcing Computation Motivation: allow a computationally weak client to outsource its computation to an untrusted server. = () Main security concerns: 1. Correctness:

377 views • 4 slides
Doubly Efficient Interactive Proofs Ron Rothblum Outsourcing Computation Weak client outsources

Doubly Efficient Interactive Proofs Ron Rothblum Outsourcing Computation Weak client outsources

Doubly Efficient Interactive Proofs Ron Rothblum Outsourcing Computation Weak client outsources computation to the cloud. = () Outsourcing Computation We do not want to blindly trust the cloud. = () Key

462 views • 21 slides
Outsourcing Overview Value Driven Engineering Value Driven Engineering Outsourcing is one

Outsourcing Overview Value Driven Engineering Value Driven Engineering Outsourcing is one

Outsourcing Overview Value Driven Engineering Value Driven Engineering Outsourcing is one available tool in Mustangs diversified toolkit, but not an all encompassing primary strategy Outsourcing will be used when it makes sense

439 views • 8 slides
Outsourcing Private RAM Computation Craig Gentry Shai Halevi Mariana Raykova Daniel Wichs

Outsourcing Private RAM Computation Craig Gentry Shai Halevi Mariana Raykova Daniel Wichs

Outsourcing Private RAM Computation Craig Gentry Shai Halevi Mariana Raykova Daniel Wichs Private Outsourcing Client wants to leverage resources of a powerful server to compute () without revealing . Efficiency

141 views • 10 slides
Meet the Sudoku puzzle Broken puzzle: 6 cannot appear twice in column 5 Puzzle is NxN

Meet the Sudoku puzzle Broken puzzle: 6 cannot appear twice in column 5 Puzzle is NxN

Meet the Sudoku puzzle Broken puzzle: 6 cannot appear twice in column 5 Puzzle is NxN grid, with 1 2 3 4 5 6 7 8 9 some cells given A 4 3 2 5 1 B 8 1 9 4 5 Permute 1..N in each C 2 1 8 7 3 9

211 views • 8 slides
1 Outsourcing Across the Globe Major cost benefits? Does 50-70% cost savings for developers n

1 Outsourcing Across the Globe Major cost benefits? Does 50-70% cost savings for developers n

Agenda Outsourcing and Globalization n Introduction in Software Development n The Outsourcing Phenomenon n Leading Offshore Projects Jacques Crocker n Managing Customers UW CSE Alumni 2003 n Offshore Development Notes jc@cs.washington.edu n Q

340 views • 5 slides
Outsourcing Pharma OUTSOURCING ON THAT SIDE OF THE PACIFIC. ABHAY DESHPANDE, CEO, JRF-GLOBAL

Outsourcing Pharma OUTSOURCING ON THAT SIDE OF THE PACIFIC. ABHAY DESHPANDE, CEO, JRF-GLOBAL

Outsourcing Pharma OUTSOURCING ON THAT SIDE OF THE PACIFIC. ABHAY DESHPANDE, CEO, JRF-GLOBAL PRESENTED AT OUTSOURCED PHARMA EVENT, SAN FRANCISCO, OCTOBER 29, 2018 JRF Global.Lead your LEAD with us! 1 Working Tariffs and Trade with

330 views • 32 slides
GAME OUTSOURCING SUMMIT AARON PULKKA GAME OUTSOURCING SUMMIT Putting it All Together - Building

GAME OUTSOURCING SUMMIT AARON PULKKA GAME OUTSOURCING SUMMIT Putting it All Together - Building

GAME OUTSOURCING SUMMIT AARON PULKKA GAME OUTSOURCING SUMMIT Putting it All Together - Building the Right Outsourcing Team Aaron Pulkka | Director of Production | Activision GAME OUTSOURCING SUMMIT AARON PULKKA Outsourcing Team Internal

854 views • 43 slides
Multi-Threaded Servers December 6, 2007 1 Client-Server Communication Client Client Client

Multi-Threaded Servers December 6, 2007 1 Client-Server Communication Client Client Client

Multi-Threaded Servers December 6, 2007 1 Client-Server Communication Client Client Client Client Client Client Client Client Client Google Client Client Client Client Client Client Many clients; 1 server Server starts and then

333 views • 6 slides
Responding to Client Therapy- Interfering Behaviors Using Behavioral Principles and Techniques

Responding to Client Therapy- Interfering Behaviors Using Behavioral Principles and Techniques

UNC-CH School of Social Work Clinical Lecture Series presents Responding to Client Therapy- Interfering Behaviors Using Behavioral Principles and Techniques September 14, 2009 Jennifer S. Kirby, Ph.D. UNC-Chapel Hill jennifer.kirby@unc.edu

405 views • 24 slides
introduction hint and puzzle HFLAV16 introduction hint and puzzle HFLAV16 realistic

introduction hint and puzzle HFLAV16 introduction hint and puzzle HFLAV16 realistic

B D ( * ) from lattice QCD with domain-wall quarks Takashi Kaneko (KEK, SOKENDAI) for the JLQCD collaboration KEK-FF 2019, Feb 14-16, 2019 introduction hint and puzzle HFLAV16 introduction hint and puzzle HFLAV16

701 views • 29 slides
A Survey of Oblivious RAMs David Cash IBM Securely Outsourcing Memory Server Goal : Store,

A Survey of Oblivious RAMs David Cash IBM Securely Outsourcing Memory Server Goal : Store,

A Survey of Oblivious RAMs David Cash IBM Securely Outsourcing Memory Server Goal : Store, access, and update data on an untrusted server. Mem[0] a Mem[1] b Mem[2] c Write(i,x) Read(j) Mem[i] d Client Mem[j] e Untrusted

908 views • 70 slides
Consulting Certification End to End Solution Outsourcing Consulting Certification End to End

Consulting Certification End to End Solution Outsourcing Consulting Certification End to End

Consulting Certification End to End Solution Outsourcing Consulting Certification End to End Solution Outsourcing We use creative services and products to deliver inventive solutions Created by experts in the area of IT, Network &amp;

461 views • 43 slides
Outsourcing Technology Services Objectives Vendor Management Outsourcing Technology Services

Outsourcing Technology Services Objectives Vendor Management Outsourcing Technology Services

Vendor Management Outsourcing Technology Services Objectives Vendor Management Outsourcing Technology Services Board and Senior Management Responsibilities Risk Management Program Risk Assessment Service Provider Selection

696 views • 40 slides
The effects of outsourcing on unemployment Jan Mhlmann Joint work with Stefan Groot The

The effects of outsourcing on unemployment Jan Mhlmann Joint work with Stefan Groot The

The effects of outsourcing on unemployment Jan Mhlmann Joint work with Stefan Groot The Hague, 13 March 2013 Motivation Outsourcing leads to further fragmentation of the production process (output : value added went from 3.4 to 4.4 in

473 views • 25 slides
Research, Resistance and Sisterhood The Res-Sisters The Res-Sisters Documenting pains and

Research, Resistance and Sisterhood The Res-Sisters The Res-Sisters Documenting pains and

Research, Resistance and Sisterhood The Res-Sisters The Res-Sisters Documenting pains and pleasures Re search, resist ance, and sister hood Range of positions A collective endeavour Challenge and change The Res-Sister

853 views • 15 slides
Electric Currents B 4 &amp; DC Circuits C 1/2 D 1/4 E 1 Slide 3 / 70 Slide 4 / 70 2 A

Electric Currents B 4 &amp; DC Circuits C 1/2 D 1/4 E 1 Slide 3 / 70 Slide 4 / 70 2 A

Slide 1 / 70 Slide 2 / 70 1 The length of an aluminum wire is quadrupled and the radius is doubled. By which factor does the resistance change? A 2 Electric Currents B 4 &amp; DC Circuits C 1/2 D 1/4 E 1 Slide 3 / 70 Slide 4 / 70

266 views • 12 slides
Enabling Client-Side Crash-Resistance to Overcome Diversification and Information Hiding Robert

Enabling Client-Side Crash-Resistance to Overcome Diversification and Information Hiding Robert

Enabling Client-Side Crash-Resistance to Overcome Diversification and Information Hiding Robert Gawlik , Benjamin Kollenda, Philipp Koppe, Behrad Garmany, Thorsten Holz Ruhr University Bochum Horst Grtz Institute for IT-Security Bochum,

660 views • 63 slides
resistance IN THE MATERIALS You cant have art without resistance in the material. ANYTHING

resistance IN THE MATERIALS You cant have art without resistance in the material. ANYTHING

resistance IN THE MATERIALS You cant have art without resistance in the material. ANYTHING that gets between a mans hand and his work, you more or less see, is bad for him. Theres a pleasant feel in the paper under ones hand

594 views • 25 slides
Kirchhoffs Laws II &amp; Kirchhoffs Laws Examples Current law, KCL Equivalent

Kirchhoffs Laws II &amp; Kirchhoffs Laws Examples Current law, KCL Equivalent

2/3/20 Class Concepts Open &amp; short circuits Series and parallel elements Kirchhoffs Laws II &amp; Kirchhoffs Laws Examples Current law, KCL Equivalent Resistance Voltage law, KVL Equivalent resistance Series

703 views • 10 slides
Herbicide Resistance: Herbicide Resistance: Protecting the PPOs Protecting the PPOs Eric

Herbicide Resistance: Herbicide Resistance: Protecting the PPOs Protecting the PPOs Eric

Herbicide Resistance: Herbicide Resistance: Protecting the PPOs Protecting the PPOs Eric P. Prostko Eric P. Prostko Extension Weed Specialist Extension Weed Specialist Dept. of Crop &amp; Soil Sciences Dept. of Crop &amp; Soil

362 views • 14 slides
Resistance in the Face of Displacement Allison Formanack, Ph.D. University of Colorado,

Resistance in the Face of Displacement Allison Formanack, Ph.D. University of Colorado,

Stories from the Field: Advocacy and Resistance in the Face of Displacement Allison Formanack, Ph.D. University of Colorado, Boulder (moderator) Antonia Alvarez, former resident Lowry Grove Ed Goetz, Ph.D. University of Minnesota

216 views • 3 slides
WhyCivilResistanceWorks EricaChenoweth,Ph.D. WesleyanUniversity

WhyCivilResistanceWorks EricaChenoweth,Ph.D. WesleyanUniversity

WhyCivilResistanceWorks EricaChenoweth,Ph.D. WesleyanUniversity April8,2010 SomeConvenBonalWisdoms? Insurgentsuseviolencebecause ItiseffecBve

500 views • 22 slides

More recommend