physical attack protection with human secure
play

Physical Attack Protection with Human-Secure Virtualization in Data - PowerPoint PPT Presentation

Sep 25, 2023 •319 likes •686 views

Physical Attack Protection with Human-Secure Virtualization in Data Centers Jakub Szefer , Pramod Jamkhedkar, Yu-Yuan Chen and Ruby B. Lee Princeton University WORCS 2012 July 25, 2012 contact: szefer@princeton.edu Data Centers as

  1. Physical Attack Protection with Human-Secure Virtualization in Data Centers Jakub Szefer § , Pramod Jamkhedkar, Yu-Yuan Chen and Ruby B. Lee Princeton University WORCS 2012 – July 25, 2012 § contact: szefer@princeton.edu

  2. Data Centers as Cyber-Physical Systems ● Cyber-physical systems are tight integrations of computation, networking, and physical objects ● Data Centers are are one example of cyber-physical system: – Physical components: utilities, physical constraints, etc. – Cyber components: management software, servers, networking, etc. 2

  3. Physical Aspects of Data Centers ● Utilities : cooling, power supply, backup power, etc. ● Physical constraints : barriers, checkpoints, floor plan, etc. ● Sensors : cameras, climate control Cooling Sensors Floor plan Power Supply Checkpoint Fences Power Generators 3 Background image source: http://www.datacentermapping.com

  4. Cyber Aspects of Data Centers ● Management software : software framework for management of the resources ● Servers : run and store customers' software and data; they provide the “utility” of the data center ● Networking : connection to the outside world and interconnection between servers 4

  5. Data Centers as Cyber-Physical Systems ● Data enters tie in many cyber and physical aspects: Management Utilities Servers Physical constraints Networking Sensors ● Data centers are becoming utilities ● Like any utilities, there face security concerns 5

  6. What is coming up... ● Data Center Security ● Human-Secure Design ● Cyber-Physical Defenses ● Human-Secure Virtualization ● Conclusion 6

  7. Data Center Security ● Data center security needs to combine all three aspects of security: Integrity C y o t n i l f i i b d a e l n i a t v i a A l i t y 7

  8. Data Centers Security Concerns ● Availability : – Support infrastructure (water, cooling, electricity, etc.) – Customer's access to their software or data ● Integrity : – Modification of software or data running in data center – Software or data change in transit (e.g. over network) ● Confidentiality : – Customer's code or data leaking 8

  9. Data Centers Security Concerns ● Availability : – Support infrastructure (water, cooling, electricity, etc.) – Customer's access to their software or data ● Integrity : – Modification of software or data running in data center – Software or data change in transit (e.g. over network) ● Confidentiality : – Customer's code or data leaking 9

  10. Data Centers Security Concerns ● Cyber : – Software attacks on servers – Network attacks, denial-of-service – Exploits in management software ● Physical : – Physical intrusion – Probing of hardware – Equipment theft – Infrastructure alterations 10

  11. Data Centers Security Concerns ● Cyber : – Software attacks on servers – Network attacks, denial-of-service – Exploits in management software ● Physical : – Physical intrusion – Probing of hardware – Equipment theft – Infrastructure alterations 11

  12. Why focus on physical attacks? 2012-02-29 12

  13. What's coming up... ● Data Center Security ● Human-Secure Design ● Cyber-Physical Defenses ● Human-Secure Virtualization ● Conclusion 13

  14. Human-Secure Design ● Human-aware design: – Use existing infrastructures to track humans in data centers – Use information to predict potential risks ● Self-adapting design: – Adjust security measures to keep track with infrastructure changes – Apply security measures suitable for given estimated defense time 14

  15. Activating Defenses Ahead of Attack ● Existing sensors can give warning time before potential threat Event detection 15

  16. Activating Defenses Ahead of Attack ● Existing sensors can give warning time before potential threat ● Physical constraints give time delay to take protective actions Event detection Estimated time of attack 16

  17. Past Physical Defenses ● Physical threats have motivated physical defenses in the past – Locks, barriers, monitoring, etc. ● Good measures but have shortcomings: – Reactive – Ineffective after attack ● Still, can leverage the physical defenses... 17

  18. What's coming up... ● Data Center Security ● Human-Secure Design ● Cyber-Physical Defenses ● Human-Secure Virtualization ● Conclusion 18

  19. Leveraging Physical Defenses ● Physical defenses can provide: – Warning time – Attack delay 19

  20. Leveraging Physical Defenses ● Physical defenses can provide: – Warning time – Attack delay 20

  21. A Cyber-Physical Defense ● Cyber defenses are activated when a threat is discovered ● Estimated attack time guides choice of defense mechanisms 21

  22. Cyber Defenses and Virtualization ● Software and data are conveniently contained inside virtual machine – A virtual server, same properties as physical server – But not bound to a specific physical machine ● Virtualization software supports or can be modified to support: – Moving virtual machine → migration – On-demand encryption of code and data – Deletion of code and data 22

  23. Defense: Move ● Relocate software and data to avoid threats ● Virtual machine migration can be used to move the software and data anywhere 23

  24. Defense: Encrypt ● Lock down applications and data with encryption (and hashing) to protect confidentiality (and integrity) Server 1 Software & Data Send out encryption key to a secure location Guest ... VM Hypervisor Hardware 24

  25. Defense: Delete ● A last resort is to delete all the sensitive software and data Server 1 ... Hypervisor Hardware 25

  26. Defense Strategy Comparison ● No one strategy is best – Each offers different protections – Each has different cost (time, compute power, network bandwidth) ● An algorithm is needed to match the estimated time for defense and expected protections to the strategy 26

  27. What's coming up... ● Data Center Security ● Human-Secure Design ● Cyber-Physical Defenses ● Human-Secure Virtualization ● Conclusion 27

  28. Human-Secure Virtualization ● Human-secure virtualization combines the three techniques of move, encrypt and delete to protect virtual machines from human attackers Sensor 0 Sensor 1 Sensor i ... Interpreter Interpreter Interpreter Actionable commands to Management Infrastructure compute infrastructure Defense Strategy 28

  29. Human-Secure Virtualization ● First, focus on APIs for management and compute infrastructures Sensor 0 Sensor 1 Sensor i ... Interpreter Interpreter Interpreter API API Actionable commands to Management Infrastructure compute infrastructure Defense Strategy 29

  30. Human-Secure Virtualization ● Next key part is the algorithm for managing defenses: ... Algorithm Physical Infrastructure Database Defense Strategy Cyber Infrastructure Status Scheduled Events 30

  31. Next Steps ● Our work is on implementing the full system – APIs for management and compute infrastructures – Next steps to develop the algorithms ● Focus on OpenStack open-source management software ● Looking for collaborators in areas: – data center design – algorithms ● Many interesting research issues still to solve! 31

  32. Continuation of Virtualization Security Work ● Hypervisor-Free Virtualization – Jakub Szefer and Ruby B. Lee, "Architectural Support for Hypervisor-Secure Virtualization," in Proceedings of the International Conference on Architectural Support for Programming Languages and Operating Systems (ASPLOS), March 2012. ● Hypervisor-Secure Virtualizaiton – Jakub Szefer, Eric Keller, Ruby B. Lee and Jennifer Rexford, "Eliminating the Hypervisor Attack Surface for a More Secure Cloud," in Proceedings of the Conference on Computer and Communications Security (CCS), October 2011. 32

  33. What's coming up... ● Data Center Security ● Human-Secure Design ● Cyber-Physical Defenses ● Human-Secure Virtualization ● Conclusion 33

  34. In Conclusion... ● Data centers are interesting and important example of cyber-physical systems ● Defined human-secure virtualization ● Design of a system needed for physical attack protection in data centers: – Focus on human attackers – Leverage physical sensors for detection – Leverage virtualization for cyber defenses 34

  35. Thank you. 35

  36. Physical Attack Protection with Human-Secure Virtualization in Data Centers Jakub Szefer § , Pramod Jamkhedkar, Yu-Yuan Chen and Ruby B. Lee Princeton University WORCS 2012 – July 25, 2012 § contact: szefer@princeton.edu

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Attack on Traffic Systems These attack examples have happened in the past. We will take an

Attack on Traffic Systems These attack examples have happened in the past. We will take an

From start to finish how a cyber attack would be performed on traffic system, we will go over first day >> exploitation of the device >> the real-world aftermath. Mission Secure, Inc. Attack on Traffic Systems These attack examples

556 views • 18 slides
Secure and Efficient Metering Discussion Outline Clarifications Attack on Secure

Secure and Efficient Metering Discussion Outline Clarifications Attack on Secure

Secure and Efficient Metering Discussion Outline Clarifications Attack on Secure Metering Issues and Extensions Real World Other Directions Metering for General Access Structures Understanding the model Audit Agency

480 views • 35 slides
Long Distance Relay Attack Luigi Sportiello Joint Research Centre Institute for the Protection

Long Distance Relay Attack Luigi Sportiello Joint Research Centre Institute for the Protection

Long Distance Relay Attack Luigi Sportiello Joint Research Centre Institute for the Protection and the Security of the Citizen European Commission Smart Cards Something you have Secure data storage Qualify the holder for

482 views • 16 slides
Physical Attack Presented by: Bryan Perrie (presented by Mark Alexander) The Concrete Institute

Physical Attack Presented by: Bryan Perrie (presented by Mark Alexander) The Concrete Institute

Main Durability Issues in SA Physical Attack Presented by: Bryan Perrie (presented by Mark Alexander) The Concrete Institute Physical Attack Abrasion Traffic Erosion Freezing and freeze-thaw Cavitation Cracking

330 views • 15 slides
Physical Protection Measures for NM and NF Hosik YOO Korea Institute of Nuclear

Physical Protection Measures for NM and NF Hosik YOO Korea Institute of Nuclear

ROKs Efforts to Strengthen Physical Protection Measures for NM and NF Hosik YOO Korea Institute of Nuclear non-proliferation and Control Legal Framework APPRE (Act on Physical Protection & Radiological Emergency) Act for physical

684 views • 13 slides
Sanctions as a Legal Deterrence Mean in the National Physical Protection Regime (CN-254-76)

Sanctions as a Legal Deterrence Mean in the National Physical Protection Regime (CN-254-76)

International Conference on Physical Protection of Nuclear Material and Nuclear Facilities 13 17 November 2017 Sanctions as a Legal Deterrence Mean in the National Physical Protection Regime (CN-254-76) Session: Physical Protection Regime

321 views • 17 slides
Important Examples of Cyber-Physical Systems Cyber-Physical Systems under Attack Models,

Important Examples of Cyber-Physical Systems Cyber-Physical Systems under Attack Models,

Important Examples of Cyber-Physical Systems Cyber-Physical Systems under Attack Models, Fundamental Limitations, and Monitor Design Fabio Pasqualetti Florian D orfler Francesco Bullo Center for Control, Dynamical systems and Computation

994 views • 11 slides
Complementarity between Nuclear Security and Physical Protection System Pr, ABDELOUAHED CHETAINE

Complementarity between Nuclear Security and Physical Protection System Pr, ABDELOUAHED CHETAINE

International Conference on Physical Protection of Nuclear Material and Nuclear Facilities IAEA Headquarters, Vienna, Austria 13 17 November 2017 Complementarity between Nuclear Security and Physical Protection System Pr, ABDELOUAHED

506 views • 31 slides
Benchmarking Security Standards and Knowledge Innovations of Physical Protection of Nuclear

Benchmarking Security Standards and Knowledge Innovations of Physical Protection of Nuclear

International Conference on Physical Protection of Nuclear Material and Nuclear Facilities, IAEA Headquarters Vienna, Austria, 13 17 November, 2017 Benchmarking Security Standards and Knowledge Innovations of Physical Protection of

420 views • 21 slides
Diffie-Hellman not secure against Man-in-the-Middle-attack: Want to guarantee authenticity. Alice

Diffie-Hellman not secure against Man-in-the-Middle-attack: Want to guarantee authenticity. Alice

Diffie-Hellman not secure against Man-in-the-Middle-attack: Want to guarantee authenticity. Alice Mallory Bob Can achieve this with publc-key cryptography as well. g a a First example: Schnorr Signature g m m a 1024 bit

283 views • 3 slides
Attack and Improvement of a Secure S-box Calculation Based on the Fourier Transform ebastien Coron

Attack and Improvement of a Secure S-box Calculation Based on the Fourier Transform ebastien Coron

8 + Attack and Improvement of a Secure S-box Calculation Based on the Fourier Transform ebastien Coron 1 , Christophe Giraud 2 , Emmanuel Prouff 2 , and Jean-S Matthieu Rivain 1 , 2 1 University of Luxembourg 2 Oberthur Technologies August 11,

718 views • 55 slides
International Conference On Physical Protection of Nuclear Material and Nuclear Facilities

International Conference On Physical Protection of Nuclear Material and Nuclear Facilities

International Conference On Physical Protection of Nuclear Material and Nuclear Facilities November 2017 IAEA-CN-254-268 Legal element for Physical protection Legal element for Physical protection regime Sudanese as case study regime Sudanese

847 views • 19 slides
Secure Coprocessor What is Secure coprocessor: Robust. (A system that is not easily or is

Secure Coprocessor What is Secure coprocessor: Robust. (A system that is not easily or is

Secure Coprocessor What is Secure coprocessor: Robust. (A system that is not easily or is not wholly affected by a bug in one aspect of it. ) General-purpose computational environments. Secure temper responsive physical package.

366 views • 14 slides
Diffie-Hellman not secure against Man-in-the-Middle-attack: Alice Mallory Bob g a a g

Diffie-Hellman not secure against Man-in-the-Middle-attack: Alice Mallory Bob g a a g

Diffie-Hellman not secure against Man-in-the-Middle-attack: Alice Mallory Bob g a a g m m g ma g ma g n n g b b g nb g nb g ma g ma , g nb g nb Eike Ritter Cryptography 2014/15 106

417 views • 9 slides
Secure Programming Laboratory 4: Web Attack SP Demonstrators: Arthur Chan / David Aspinall 15th

Secure Programming Laboratory 4: Web Attack SP Demonstrators: Arthur Chan / David Aspinall 15th

Secure Programming Laboratory 4: Web Attack SP Demonstrators: Arthur Chan / David Aspinall 15th November 2019 Orientation This is the fourth Laboratory Session for Secure Programming It is convened by Arthur, Henry and David. The handout and

556 views • 8 slides
Physical Protection of Byproduct Material: Proposed Rule 10 CFR Part 37 October 20, 2010

Physical Protection of Byproduct Material: Proposed Rule 10 CFR Part 37 October 20, 2010

Physical Protection of Byproduct Material: Proposed Rule 10 CFR Part 37 October 20, 2010 Debbie Bray Gilley Advisory Committee on the Medical Uses of Isotopes (ACMUI) Concerns w ith the Physical Protection Proposed Rules Impact on

374 views • 10 slides
Security (and finale) Dan Ports, CSEP 552 Today Security: what if parts of your

Security (and finale) Dan Ports, CSEP 552 Today Security: what if parts of your

Security (and finale) Dan Ports, CSEP 552 Today Security: what if parts of your distributed system are malicious? BFT: state machine replication Bitcoin: peer-to-peer currency Course wrap-up Security Too broad a

730 views • 62 slides
Lessons Learned from Implementing Privacy- Preserving Protocols for Smart Meters Benessa Defend

Lessons Learned from Implementing Privacy- Preserving Protocols for Smart Meters Benessa Defend

Lessons Learned from Implementing Privacy- Preserving Protocols for Smart Meters Benessa Defend Real World Crypto, London January 9, 2015 - Confidential - 1 In Collaboration with Klaus Kursawe George Danezis Markulf

570 views • 23 slides
David Parter Background: Threats and Security Policies Tools and Defenses: University of

David Parter Background: Threats and Security Policies Tools and Defenses: University of

Network Security Topics David Parter Background: Threats and Security Policies Tools and Defenses: University of Wisconsin Firewalls Computer Sciences Department Virtual Private Networks Computer Systems Lab Network

659 views • 30 slides
An asymmetric security mechanism for navigation signals Markus G. Kuhn Computer Laboratory

An asymmetric security mechanism for navigation signals Markus G. Kuhn Computer Laboratory

An asymmetric security mechanism for navigation signals Markus G. Kuhn Computer Laboratory http://www.cl.cam.ac.uk/~mgk25/ Remote attestation of position X 2 X 3 X 1 X 4 d 2 d 3 d 1 d 4 N R { N, r } K 1 V R 2 Application examples

369 views • 22 slides
1 Design guidelines Moving data from disk to cache Protect file system data Tokens cannot

1 Design guidelines Moving data from disk to cache Protect file system data Tokens cannot

University of Michigan Medical Center Major tertiary care center for Michigan FY 1999: 1.2M visits, $1B billable services Zero-Interaction Authentication Results in large data volume and costs 5-8 pieces of paper/patient visit all records in

649 views • 6 slides
COURSE INTRODUCTION http://wireless.web.unc.edu Jasleen Kaur Fall 2017 1 Introductions q

COURSE INTRODUCTION http://wireless.web.unc.edu Jasleen Kaur Fall 2017 1 Introductions q

8/22/17 COMP 635: WIRELESS & MOBILE COMMUNICATIONS COURSE INTRODUCTION http://wireless.web.unc.edu Jasleen Kaur Fall 2017 1 Introductions q Names q BS/MS, First-year Grad, Senior Grad? q If youre new, where have you come from? q Your

394 views • 13 slides
Visible Assets, Inc. High Security Government and Healthcare IEEE P1902.1 (RuBee) Applications

Visible Assets, Inc. High Security Government and Healthcare IEEE P1902.1 (RuBee) Applications

Visible Assets, Inc. High Security Government and Healthcare IEEE P1902.1 (RuBee) Applications The Elimination of Eavesdropping, Tempest and Target Risk in Wireless Networks. March 2008 John K. Stevens Ph.D. CEO, Chairman Visible Assets,

963 views • 71 slides
Mobile Computing Mobile Computing A StarGazing Discussion Colin Higgs colin.higgs@ed.ac.uk

Mobile Computing Mobile Computing A StarGazing Discussion Colin Higgs colin.higgs@ed.ac.uk

Mobile Computing Mobile Computing A StarGazing Discussion Colin Higgs colin.higgs@ed.ac.uk Mobile Computing Colin Higgs Slide 1 Outline Outline Stargazing. Technologies and tasks. A technology led discussion. What the

499 views • 13 slides

More recommend