openssl is not an oxymoron
play

OpenSSL is not an oxymoron Rich Salz Akamai Technologies OpenSSL - PowerPoint PPT Presentation

Apr 19, 2023 •102 likes •346 views

Software Engineering and OpenSSL is not an oxymoron Rich Salz Akamai Technologies OpenSSL Dev Team rsalz@{akamai.com,openssl.org} Main lesson Its not the crypto that kills you (or your open source project) Rich Salz Real World Crypto

  1. Software Engineering and OpenSSL is not an oxymoron Rich Salz Akamai Technologies OpenSSL Dev Team rsalz@{akamai.com,openssl.org}

  2. Main lesson It’s not the crypto that kills you (or your open source project) Rich Salz Real World Crypto 2017 2

  3. Historical Era’s • SSLeay • OpenSSL • The CVE that Must Not Be Named • Recovery • Today and tomorrow Rich Salz Real World Crypto 2017 3

  4. SSLeay • Various creation legends: – Let’s put on a show (Eric: “I’ve got DES and a BIGNUM package” Tim: “Let’s do SSL”) – Two guys in a garage • Small set of folks sending patches • Handful of tests; minimal functionality Rich Salz Real World Crypto 2017 4

  5. The Rise of OpenSSL • Started off big; as many as a dozen members • Export control: stay away from the US • Active mailing lists, still took patches • “Interop with OpenSSL more important than what the RFC says” Rich Salz Real World Crypto 2017 5

  6. The Fall of OpenSSL • Project had become moribund • Releases were not pre-announced, no documented policies • Source code was complex and arcane • Hard to maintain; harder to contribute • Main developers were overworked and overcommitted • Project donations minimal (sub USD$2000 per annum) Rich Salz Real World Crypto 2017 6

  7. The Picture of Stasis Rich Salz Real World Crypto 2017 7

  8. Why the fall? • Long learning cycle to understand code • Need to get consulting dollars (FIPS) to keep project alive • Very little time spent on building community • No ability to make, announce, and keep to plans • … all added up to “stay dark” attitude Rich Salz Real World Crypto 2017 8

  9. The CVE That Must Not Be Named • CVE-2014-0160, April 3 Rich Salz Real World Crypto 2017 9

  10. Recovery • New blood (enthusiasm) on the team – CII created, funds two – Donations jump, funds two • We met in Oct 2014: – Wrote release, security policies – Coding Style (!!!) – Socialized; POODLE helped Rich Salz Real World Crypto 2017 10

  11. Going to Meetings is part of Recovery • We also met in Oct 2016: – CVE notification process – CII/LF discussions (about and with) – How to grow the team – How to get more testing – Update roadmap and platform doc – Regular release cadence Rich Salz Real World Crypto 2017 11

  12. Recovery: Transparency • Building community is job 1 – Documented what we want to do, and how. – Website overhauled (still too wordy) – Mailing lists moved – RT sped up (multiple moderators), and then removed • Virtuous cycle: when a project isn’t a black hole, people contribute Rich Salz Real World Crypto 2017 12

  13. Recovery: Code Quality • Appearances count – Almost-repeatable code reformatting • Mandatory review by a second team member – We’re still improving this • More tests: Coveralls reports 57% of lines • Modern practices: fuzzing, CI, etc. – Remember, OpenSSL is old Rich Salz Real World Crypto 2017 13

  14. No longer a dumping ground • Removed dozens of old platforms we could not test (Duo-culture is useful) • Removed old and/or weak cipher suites • GOST moved to external ENGINE • Related: most structures are opaque, for future-proof (API/ABI compatibility; did hamper us before) Rich Salz Real World Crypto 2017 14

  15. Recovery: Test Coverage Rich Salz Real World Crypto 2017 15

  16. Recovery: RT tickets, full history Rich Salz Real World Crypto 2017 16

  17. Zooming in Rich Salz Real World Crypto 2017 17

  18. 2016 Project Activity • 3889 commits • 431 GitHub users; thousands of forks • 250 new issues • 107 new pull requests; 1052 PR’s closed • Releases: – 1.1.0 a-c – 1.0.2 a-j – 1.0.1 h-u EOL Rich Salz Real World Crypto 2017 18

  19. 2016 CVE’s • 9 high (force a release) • 20 medium (might force a release) • 28 low (just fix) • Mostly met the disclosure/fix deadlines • Thankfully no critical yet Rich Salz Real World Crypto 2017 19

  20. GitHub: Current activity Rich Salz Real World Crypto 2017 20

  21. Today and Tomorrow: Excelsior • Everything* is done on GitHub now • Everyone has a CLA • Major infrastructure components (technical debt) being addressed: – Threads, state machine, TLS packet formats – CLI flags, help improved – All docs are improved Rich Salz Real World Crypto 2017 21

  22. What’s coming? • FIPS work funded, but on-hold for TLS 1.3. Likely to mean ENGINE extensions. – might mean putting “old crypto” into an ENGINE – Tension between “safe” crypto and “everyone’s crypto” • TLS 1.3 – Contract in place with fixed delivery date and known interoperability • Licensing – Moving to APLv2 • Testing – More and more and more and more – Can already run boringSSL test suite, e.g. Rich Salz Real World Crypto 2017 22

  23. What Might/Should come • All SSL public functions documented (101 missing out of 402) • Need to fix the RNG, portably • A generic STORE facility, for PKI objects. Rich Salz Real World Crypto 2017 23

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

SSL/TLS OpenSSL OpenSSL is a very common SSL/TLS library Written in C Wrappers exist

SSL/TLS OpenSSL OpenSSL is a very common SSL/TLS library Written in C Wrappers exist

SSL/TLS OpenSSL OpenSSL is a very common SSL/TLS library Written in C Wrappers exist for many languages Can be used for many encryption needs Generating keys Signing certs Validating certs We'll use OpenSSL in the

287 views • 6 slides
OpenSSL after HeartBleed Tim Hudson Cryptsoft, OpenSSL Team Rich Salz Akamai Technologies,

OpenSSL after HeartBleed Tim Hudson Cryptsoft, OpenSSL Team Rich Salz Akamai Technologies,

OpenSSL after HeartBleed Tim Hudson Cryptsoft, OpenSSL Team Rich Salz Akamai Technologies, OpenSSL Team The most important date April 3, 2014 LinuxCon/Europe 2016 2 The most important date April 3, 2014 HeartBleed Re-key the

755 views • 34 slides
Birth of LibreSSL and its current status Frank Timmers Consutant, Snow B.V. Background What is

Birth of LibreSSL and its current status Frank Timmers Consutant, Snow B.V. Background What is

Birth of LibreSSL and its current status Frank Timmers Consutant, Snow B.V. Background What is LibreSSL A fork of OpenSSL 1.0.1g Being worked on extensively by a number of OpenBSD developers What is OpenSSL OpenSSL is an open

830 views • 24 slides
US/win10/tools/IoTAPIPortingT ool.htm https://www.openssl.org/ GetMemoryStatus

US/win10/tools/IoTAPIPortingT ool.htm https://www.openssl.org/ GetMemoryStatus

Any questions please contact winhectpe@microsoft.com http://ms-iot.github.io/content/en- US/win10/tools/IoTAPIPortingT ool.htm https://www.openssl.org/ GetMemoryStatus GetMemoryStatusEx trusted random number generator - readscreen()

734 views • 42 slides
RSA Implementations of RSA RSA in OpenSSL RSA in Python Cryptography School of Engineering

RSA Implementations of RSA RSA in OpenSSL RSA in Python Cryptography School of Engineering

Cryptography RSA RSA Algorithm Analysis of RSA RSA Implementations of RSA RSA in OpenSSL RSA in Python Cryptography School of Engineering and Technology CQUniversity Australia Prepared by Steven Gordon on 20 Feb 2020, rsa.tex, r1799 1

522 views • 29 slides
RSA RSA RSA in OpenSSL RSA in Python Cryptography School of Engineering and Technology

RSA RSA RSA in OpenSSL RSA in Python Cryptography School of Engineering and Technology

Cryptography RSA RSA Algorithm Analysis of RSA Implementations of RSA RSA RSA in OpenSSL RSA in Python Cryptography School of Engineering and Technology CQUniversity Australia Prepared by Steven Gordon on 20 Feb 2020, rsa.tex, r1799

869 views • 29 slides
Heartbleed Presented by Duc Tran Agenda Background TLS OpenSSL TLS

Heartbleed Presented by Duc Tran Agenda Background TLS OpenSSL TLS

Heartbleed Presented by Duc Tran Agenda Background TLS OpenSSL TLS Heartbeat Extension The Hearbleed Bug Whos Vulnerable Demo Why its bad Protections Background What is Transport

562 views • 17 slides
Trans-Planckian non-relativistic motion is not an oxymoron Lajos Di osi Wigner Center,

Trans-Planckian non-relativistic motion is not an oxymoron Lajos Di osi Wigner Center,

Trans-Planckian non-relativistic motion is not an oxymoron Lajos Di osi Wigner Center, Budapest 11 June 2019, Vaxj Supported by Foundational Questions Institute & Fetzer Franklin Fund, National Research Development and Innovation

234 views • 7 slides
OpenSSLNTRU: experiences integrating a post-quantum KEM into TLS 1.3 via an OpenSSL ENGINE

OpenSSLNTRU: experiences integrating a post-quantum KEM into TLS 1.3 via an OpenSSL ENGINE

OpenSSLNTRU: experiences integrating a post-quantum KEM into TLS 1.3 via an OpenSSL ENGINE Speaker: Daniel J. Bernstein Joint work with: Billy Bob Brumley, Ming-Shing Chen ( libsntrup761 leader), Nicola Tuveri ( engntru leader)

509 views • 9 slides
Anonymous tracing, a dangerous oxymoron A risk analysis for non-specialists The Risque Traage

Anonymous tracing, a dangerous oxymoron A risk analysis for non-specialists The Risque Traage

contact@tracing-risks.com Anonymous tracing, a dangerous oxymoron A risk analysis for non-specialists The Risque Traage team Xavier Bonnetain, Anne Canteaut, Vronique Cortier, Pierrick Gaudry, Lucca Hirschi, Steve Kremer, Stphanie Lacour,

66 views • 6 slides
We SSL Emilia Ksper OpenSSL / Google Lets start with a guessing game... What is this

We SSL Emilia Ksper OpenSSL / Google Lets start with a guessing game... What is this

We SSL Emilia Ksper OpenSSL / Google Lets start with a guessing game... What is this graph about? Myth: Heartbleed broke the Internet Fact: Internet-breaking bugs are common CVE-2011-0014 - infoleak, true impact unknown

301 views • 18 slides
The Sustainable Development Oxymoron: Quantifying and Modelling the Incompatibility of

The Sustainable Development Oxymoron: Quantifying and Modelling the Incompatibility of

The Sustainable Development Oxymoron: Quantifying and Modelling the Incompatibility of Sustainable Development Goals Viktoria Spaiser Shyam Ranganathan Ranjula Bali Swain David J.T. Sumpter Sustainable Development Goals (SDG) Data

267 views • 13 slides
Why the Social Dimension of Europe 2020 is an Oxymoron Bart Vanhercke Co-Director,

Why the Social Dimension of Europe 2020 is an Oxymoron Bart Vanhercke Co-Director,

SEK Trade Union School 2011 The EU2020 strategy and Economic Governance Nicosia, 19 20 September 2011 Why the Social Dimension of Europe 2020 is an Oxymoron Bart Vanhercke Co-Director, European Social Observatory (OSE) Associate

525 views • 49 slides
Computational Account of Emotion - An Oxymoron? R. von Haugwitz G. Dodig-Crnkovic A. Almr

Computational Account of Emotion - An Oxymoron? R. von Haugwitz G. Dodig-Crnkovic A. Almr

Computational Account of Emotion - An Oxymoron? R. von Haugwitz G. Dodig-Crnkovic A. Almr Department of Applied Information Technology University of Gothenburg and Chalmers University of Technology IS4IS Summit 2015 R. von Haugwitz, G.

508 views • 13 slides
ISLAM & SOCIETY The Society of Dependence IS BEING MUSLIM IN AMERICA AN OXYMORON? Last time

ISLAM & SOCIETY The Society of Dependence IS BEING MUSLIM IN AMERICA AN OXYMORON? Last time

ISLAM & SOCIETY The Society of Dependence IS BEING MUSLIM IN AMERICA AN OXYMORON? Last time we asked the question. How do we feel about it now? REALITY & BEING REAL Generally, by the time you are Real, most of your hair has

354 views • 16 slides
Is Software Malfunction an Oxymoron? Jesse Hughes July 25, 2007 Hughes Is Software Malfunction

Is Software Malfunction an Oxymoron? Jesse Hughes July 25, 2007 Hughes Is Software Malfunction

An introduction to malfunction Token and type malfunction Misfunction Is Software Malfunction an Oxymoron? Jesse Hughes July 25, 2007 Hughes Is Software Malfunction an Oxymoron? An introduction to malfunction Token and type malfunction

1.03k views • 81 slides
Stanford CS193p Developing Applications for iOS Fall 2017-18 CS193p Fall 2017-18 Today

Stanford CS193p Developing Applications for iOS Fall 2017-18 CS193p Fall 2017-18 Today

Stanford CS193p Developing Applications for iOS Fall 2017-18 CS193p Fall 2017-18 Today Animation UIViewPropertyAnimator Transitions Dynamic Animator CS193p Fall 2017-18 UIView Animation Changes to certain UIView properties can be animated

492 views • 28 slides
Enabling System Transactions via Lightweight Kernel Extensions R.P. Spillane, S. Gaikwad. M.

Enabling System Transactions via Lightweight Kernel Extensions R.P. Spillane, S. Gaikwad. M.

Enabling System Transactions via Lightweight Kernel Extensions R.P. Spillane, S. Gaikwad. M. Chinni, C.P. Wright, E. Zadok Stony Brook University http://www.fsl.cs.sunysb.edu/ Summary What is the design complexity of system transactions

288 views • 26 slides
Human robot interaction www.biorobotics.ttu.ee Social robots Traditional robots Tools

Human robot interaction www.biorobotics.ttu.ee Social robots Traditional robots Tools

Human robot interaction www.biorobotics.ttu.ee Social robots Traditional robots Tools to perform difficult, hazardous, tedious tasks Social robots Companions and partners www.biorobotics.ttu.ee Social robots Are

1.45k views • 20 slides
Unix Commands on processes Xiaolan Zhang Spring 2013 1 Outlines Last class: commands

Unix Commands on processes Xiaolan Zhang Spring 2013 1 Outlines Last class: commands

Unix Commands on processes Xiaolan Zhang Spring 2013 1 Outlines Last class: commands working with files tree, ls and echo od (octal dump), stat (show meta data of file) touch, temporary file, file with random bytes locate,

548 views • 51 slides
ancient Greece The Fourth Century Crisis MEETING 11 The Wars of Hegemony Socrates and

ancient Greece The Fourth Century Crisis MEETING 11 The Wars of Hegemony Socrates and

11/14/19 H I S T O R Y O F ancient Greece The Fourth Century Crisis MEETING 11 The Wars of Hegemony Socrates and Plato Fourth-Century Hellas 1 THE FOURTH CENTURY CRISIS 2 Athens after the war 3 1 11/14/19 Reading Plato /

261 views • 12 slides
Political Science 17 . 20 Introduction to American Politics Professor Devin Caughey MIT

Political Science 17 . 20 Introduction to American Politics Professor Devin Caughey MIT

Political Science 17 . 20 Introduction to American Politics Professor Devin Caughey MIT Department of Political Science Internal Congress: Organization Lecture 7 (February 28, 2013) 1 / 18 Outline Institutional Solutions to Collective

345 views • 19 slides
Stanford CS193p Developing Applications for iOS Winter 2017 CS193p Winter 2017 Today Timer

Stanford CS193p Developing Applications for iOS Winter 2017 CS193p Winter 2017 Today Timer

Stanford CS193p Developing Applications for iOS Winter 2017 CS193p Winter 2017 Today Timer Periodically execute a block of code Blinking FaceIt Demo Animation Animating changes to UIView s Smoother Blinking FaceIt Head-shaking FaceIt

444 views • 29 slides
Degenerations of cohomology rings Joint work with Bill Graham Reference: E-Graham (w/appendix

Degenerations of cohomology rings Joint work with Bill Graham Reference: E-Graham (w/appendix

Degenerations of cohomology rings Joint work with Bill Graham Reference: E-Graham (w/appendix with Richmond): IMRN 2013, or arXiv 1104:1415 plus work in progress (stasis?) Motivation [BK] Belkale-Kumar Eigenvalue problem and a new cup

517 views • 22 slides

More recommend