run time firmware integrity verification what if you can
play

Run-time firmware integrity verification: what if you cant trust - PowerPoint PPT Presentation

Oct 05, 2023 •243 likes •627 views

Run-time firmware integrity verification: what if you cant trust your network card? International Symposium on Recent Advances in Intrusion Detection Menlo Park, September 2011 Loc Duflot, Yves-Alexis Perez, Benjamin Morin ANSSI French

  1. Run-time firmware integrity verification: what if you can’t trust your network card? International Symposium on Recent Advances in Intrusion Detection Menlo Park, September 2011 Loïc Duflot, Yves-Alexis Perez, Benjamin Morin ANSSI French Network and Information Security Agency firstname.lastname@ssi.gouv.fr

  2. Introduction Embedded devices ◮ Embedded systems are increasingly prevalent in computers ◮ Network cards, hard drive controllers, chipsets, basebands, etc. ◮ Some have high processing capabilities (“smart” devices) ◮ They act as black-box execution environments ◮ They constitute a potential threat for the platforms’ security ◮ They have access to sensitive information ◮ They generally lack the protections available on standard proces- sors (e.g., an MMU) ◮ They potentially run with high privileges w.r.t the main operating system ANSSI – French Network and Information Security Agency 2/26

  3. Introduction Attacks against embedded devices ◮ Vulnerabilities were found in several embedded software and firmware in the past few years : Basebands Weinmann [13] Network controllers Duflot and Perez [4], Triulzi [12], Delugré [3] Keyboard controllers Chen [2], Gazet [6] Chipsets Ortega and Sacco [9] ◮ Defending a system against such attacks is difficult because firmware are running out of the scope of the operating system. ◮ Existing IDSes have probably overlooked these attacks ◮ they mainly monitor the operating system and applications ◮ those attacks are still quite new ANSSI – French Network and Information Security Agency 3/26

  4. Introduction Example from our own proof-of-concept attack ◮ In [4], we demonstrated how it is possible for an attacker to take full control of a computer ◮ by exploiting a vulnerability in the network adapter, and ◮ adding a back-door in the OS kernel using DMA accesses ; ◮ the back-door opens a reverse shell when the kernel processes an ICMP message with a particular type. ◮ Our proof-of-concept attack was based on a real world vulnera- bility ◮ the vulnerability lied in the ASF remote administration function of the network adapter of the target machine. ◮ it was unconditionally exploitable when the ASF function was acti- vated to any attacker that would be able to send UDP packets to the machine. ANSSI – French Network and Information Security Agency 4/26

  5. Problem statement Problems & existing solutions Compromised device? Consequences ◮ full OS compromise system ◮ rootkit re-injection at startup Counter-measures ◮ I/O MMU (Intel Vt-d and AMD IOMMU ) system ANSSI – French Network and Information Security Agency 5/26

  6. Problem statement Problems & existing solutions Compromised device? Consequences ◮ full OS compromise system ◮ rootkit re-injection at startup ◮ attacks against other devices on the same buses [11] platform Counter-measures ◮ I/O MMU (Intel Vt-d and AMD IOMMU ) system ◮ PCI Express Access Control Services platform ANSSI – French Network and Information Security Agency 5/26

  7. Problem statement Problems & existing solutions Compromised device? Consequences ◮ full OS compromise system ◮ rootkit re-injection at startup ◮ attacks against other devices on the same buses [11] platform ◮ silent data leak network ◮ stepping stone to attack the whole network silently ◮ won’t be blocked by firewalls on vulnerable machines Counter-measures ◮ I/O MMU (Intel Vt-d and AMD IOMMU ) system ◮ PCI Express Access Control Services platform ◮ ? network ANSSI – French Network and Information Security Agency 5/26

  8. Problem statement Firmware integrity checks We need to check the firmware’s integrity ◮ At load time ◮ Peripherals’ firmware should be measured during a trusted boot ◮ This can be achieved by means of a TPM ◮ At runtime ◮ Our objective is to check that the firmware is running untampered ◮ The operating system acts as the verifier of the network card’s ex- ecution ◮ We assume that the operating system is trusted ANSSI – French Network and Information Security Agency 6/26

  9. . Problem statement Existing solutions Remote firmware attestation [7, 8] ? ◮ Based on a challenge-response protocol ◮ The target computes a checksum over its entire memory ◮ The verifier checks the correctness of the returned checksum ANSSI – French Network and Information Security Agency 7/26

  10. Problem statement Existing solutions Remote firmware attestation [7, 8] ? ◮ Based on a challenge-response protocol ◮ The target computes a checksum over its entire memory ◮ The verifier checks the correctness of the returned checksum . ANSSI – French Network and Information Security Agency 7/26

  11. . Problem statement Existing solutions Remote firmware attestation [7, 8] ? ◮ Based on a challenge-response protocol ◮ The target computes a checksum over its entire memory ◮ The verifier checks the correctness of the returned checksum ◮ Remote firmware attestation is difficult [1, 10, 5] ◮ Severe constraints imposed by the checksum function execution ◮ Is it really suitable for a network card? ANSSI – French Network and Information Security Agency 7/26

  12. . . Problem statement Existing solutions Remote firmware attestation [7, 8] ? ◮ Based on a challenge-response protocol ◮ The target computes a checksum over its entire memory ◮ The verifier checks the correctness of the returned checksum ◮ Remote firmware attestation is difficult [1, 10, 5] ◮ Severe constraints imposed by the checksum function execution ◮ Is it really suitable for a network card? Software symbiotes ? ◮ might be an interesting solution, requires further investigations ◮ seems quite intrusive ANSSI – French Network and Information Security Agency 7/26

  13. Embedded device intrusion detection approach What is a network card? Quite simple in theory ◮ transfer ethernet frames from the host to the wire ◮ and vice versa Increasingly complex in practice... ◮ advanced capabilities (PXE, TSO...) ◮ platform administration functions ◮ active even when OS is down or absent ◮ runs a firmware on embedded CPU ANSSI – French Network and Information Security Agency 8/26

  14. Embedded device intrusion detection approach What is (graphically) a network card? ANSSI – French Network and Information Security Agency 9/26

  15. Embedded device intrusion detection approach Intrusion detection model ◮ Our detection method is anomaly-based ◮ The model of normal behavior is based on the NIC’s memory layout ◮ The memory profile is built empirically, by means of the observed NIC’s memory accesses during “normal” network sessions ◮ Memory areas used to execute code, read and/or write data are distinguished in the model ◮ The card in run in step-by-step (debug) mode during detection ◮ Any memory access that is outside the NIC’s memory profile is interpreted as an attempt to divert the firmware’s control flow ◮ Heuristics used to detect anomalous memory accesses ◮ Step-by-step instruction comparison ◮ Step-by-step instruction address checking ◮ Shadow return stack ANSSI – French Network and Information Security Agency 10/26

  16. Embedded device intrusion detection approach Detection heuristics (1/2) Step-by-step instruction comparison ◮ Basically consists in checking that the instruction that is to be run is the same as the reference model’s one ◮ This technique only works if the code is not self modifying (which is the case for the firmware we are considering) Step-by-step address checking ◮ Basically consists in checking that the instruction pointer value is consistent ◮ The network card running code in the heap, in the stack or in the memory scratchpad is indicative of an anomaly ANSSI – French Network and Information Security Agency 11/26

  17. Embedded device intrusion detection approach Detection heuristics (2/2) Shadow call stack ◮ Basically consists in maintaining a copy of the call stack of the firmware on the host side ◮ On an identified CALL -like instruction, the return address is pushed on the shadow stack ◮ On an identified RET -like instruction, the return address is checked against the saved one Other heuristics (not implemented) ◮ Another heuristic could consist in searching for anything that meets the statistical profile of executable code in data area ◮ This detection technique is prone to false positives ANSSI – French Network and Information Security Agency 12/26

  18. Prototype implementation : NAVIS Network Adapter Verification and Integrity checking Solution We designed our verification framework, NAVIS ◮ based on card instrumentation ◮ implements detection heuristics ◮ prevents control flow modifications We used: ◮ Broadcom BCM5754 and BCM5755M network cards ◮ ASF firmware Preventing confusion: From now on: CPU is the main CPU on the motherboard, running the OS MIPS is the management processor on the network controller ANSSI – French Network and Information Security Agency 13/26

  19. . Prototype implementation : NAVIS Instrumenting the card ◮ Accessing NIC’s memory ◮ The NIC’s internal memory is mapped in the main memory ◮ This mechanism provides access to the firmware running on the NIC ANSSI – French Network and Information Security Agency 14/26

  20. Prototype implementation : NAVIS Instrumenting the card ◮ Accessing NIC’s memory ◮ The NIC’s internal memory is mapped in the main memory ◮ This mechanism provides access to the firmware running on the NIC . ANSSI – French Network and Information Security Agency 14/26

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Run-time firmware integrity verification: what if you cant trust your network card? Loc

Run-time firmware integrity verification: what if you cant trust your network card? Loc

Run-time firmware integrity verification: what if you cant trust your network card? Loc Duflot , Yves-Alexis Perez , Benjamin Morin Agence Nationale de la Scurit des Systmes dInformation Introduction & reminder Last year...

467 views • 44 slides
Is End-to-End Integrity Verification Really End- to-End? Ahmed Alhussen, Batyr Charyyev, and Engin

Is End-to-End Integrity Verification Really End- to-End? Ahmed Alhussen, Batyr Charyyev, and Engin

Is End-to-End Integrity Verification Really End- to-End? Ahmed Alhussen, Batyr Charyyev, and Engin Arslan Whats End-to-End Integrity Verification Data corruption may occur during transfers Faulty equipment, transient errors etc.

523 views • 13 slides
Enabling Efficient Batch Verification Enabling Efficient Batch Verification on Data Integrity for

Enabling Efficient Batch Verification Enabling Efficient Batch Verification on Data Integrity for

Enabling Efficient Batch Verification Enabling Efficient Batch Verification on Data Integrity for Cloud on Data Integrity for Cloud ChinLaung Lei Department of Electrical Engineering National Taiwan University 1 Outline Introduction

641 views • 41 slides
Toward Automated Info-Flow Integrity Verification (or, Fixing your security policy) Umesh

Toward Automated Info-Flow Integrity Verification (or, Fixing your security policy) Umesh

Toward Automated Info-Flow Integrity Verification (or, Fixing your security policy) Umesh Shankar (UC Berkeley) Trent Jaeger (Penn State / IBM) Reiner Sailer (IBM) The goal, with an example Integrity property: Trusted processes dont

317 views • 20 slides
Effective Validation of Firmware Enabling firmware development and validation to keep pace with

Effective Validation of Firmware Enabling firmware development and validation to keep pace with

Effective Validation of Firmware Enabling firmware development and validation to keep pace with hardware innovations. Tom Melham University of Oxford Problem Firmware today facing greater complexity and shorter schedules coded at low

478 views • 14 slides
Data Integrity Verification IIA Orange County Chapter November 13, 2015

Data Integrity Verification IIA Orange County Chapter November 13, 2015

Data Integrity Verification IIA Orange County Chapter November 13, 2015 1 Data Integrity Verification Excel Transformed My Data! BEFORE AFTER

483 views • 44 slides
Front-end Firmware Transition and Documentation Status/Plans/Proposals Kurtis Nishimura

Front-end Firmware Transition and Documentation Status/Plans/Proposals Kurtis Nishimura

Front-end Firmware Transition and Documentation Status/Plans/Proposals Kurtis Nishimura University of Hawaii December 14, 2012 US Firmware Meeting 1 v2 Firmware Version 2 firmware is largely done: New interface to the DAQ

273 views • 5 slides
Integrity Verification of Outsourced Frequent Itemset Mining with Deterministic Guarantee

Integrity Verification of Outsourced Frequent Itemset Mining with Deterministic Guarantee

Integrity Verification of Outsourced Frequent Itemset Mining with Deterministic Guarantee Boxiang Dong Ruilin Liu Wendy Hui Wang Department of Computer Science Stevens Institute of Technology Hoboken, NJ December 10, 2013

347 views • 24 slides
Efficient Memory Integrity Verification and Encryption for Secure Processors G. Edward Suh,

Efficient Memory Integrity Verification and Encryption for Secure Processors G. Edward Suh,

Efficient Memory Integrity Verification and Encryption for Secure Processors G. Edward Suh, Dwaine Clarke, Blaise Gassend, Marten van Dijk, Srinivas Devadas Massachusetts Institute of Technology New Security Challenges Current computer

411 views • 26 slides
Towards Optimizing Large-Scale Data Transfers with End-to-End Integrity Verification Raj

Towards Optimizing Large-Scale Data Transfers with End-to-End Integrity Verification Raj

Towards Optimizing Large-Scale Data Transfers with End-to-End Integrity Verification Raj Ke'muthu Argonne Na2onal Laboratory & University of Chicago Si Liu, Xian-He Sun, Illinois Ins2tute of Technology Eun-Sung Jung, Jongik University

215 views • 8 slides
KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR

KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR

KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR KILOBAR KILOBAR KILOBAR INTEGRITY KILOBAR INTEGRITY INTEGRITY INTEGRITY INTEGRITY INTEGRITY INTEGRITY Blockchain & Security Ruth Crowell, Chief Executive Asia Pacific Precious Metals

460 views • 10 slides
Component Firmware http://outflux.net/slides/2014/lss/firmware.pdf Linux Security Summit, Chicago

Component Firmware http://outflux.net/slides/2014/lss/firmware.pdf Linux Security Summit, Chicago

Component Firmware http://outflux.net/slides/2014/lss/firmware.pdf Linux Security Summit, Chicago 2014 Kees Cook <keescook@chromium.org> (pronounced Case) Overview Wait, which firmware? Threats Update methods

311 views • 20 slides
DUNE DAQ Firmware David Cussans Firmware Meeting 16/Jan/20 You Inst Logo You Inst Logo Goal

DUNE DAQ Firmware David Cussans Firmware Meeting 16/Jan/20 You Inst Logo You Inst Logo Goal

DUNE DAQ Firmware David Cussans Firmware Meeting 16/Jan/20 You Inst Logo You Inst Logo Goal Demonstrate upstream DAQ functions in firmware before design review - Have implementation ready before May 2020 10-second buffer Hit

466 views • 13 slides
A Survey of Classical, Real-Time, and Time-Bounded Verification Jol Ouaknine Department of

A Survey of Classical, Real-Time, and Time-Bounded Verification Jol Ouaknine Department of

A Survey of Classical, Real-Time, and Time-Bounded Verification Jol Ouaknine Department of Computer Science Oxford University Quantitative Model Checking Winter School, February 2012 The Classical Theory of Verification Automata e T t a

1.6k views • 137 slides
Securing Industrial Control Systems An E2E Integrity Verification Approach Sye-Loong Keoh , Ken

Securing Industrial Control Systems An E2E Integrity Verification Approach Sye-Loong Keoh , Ken

Securing Industrial Control Systems An E2E Integrity Verification Approach Sye-Loong Keoh , Ken Wai-Kin Au School of Computing Science University of Glasgow Zhaohui Tang School of Infocomm Republic Polytechnic, Singapore 1 Introduction

576 views • 21 slides
WIB Firmware and Software Requirements Josh Klein CE Review March 10, 2020 Background

WIB Firmware and Software Requirements Josh Klein CE Review March 10, 2020 Background

WIB Firmware and Software Requirements Josh Klein CE Review March 10, 2020 Background ProtoDUNE WIB operated (and continuing) successfully FPGA was an Altera Aria V All-firmware design, included different firmware sets for

843 views • 47 slides
Internet integration: the DNS security mess D. J. Bernstein University of Illinois at Chicago

Internet integration: the DNS security mess D. J. Bernstein University of Illinois at Chicago

1 Internet integration: the DNS security mess D. J. Bernstein University of Illinois at Chicago 2 The Domain Name System uic.edu wants to see http://www.matcom.uh.cu . Browser at uic.edu The web server

1.45k views • 124 slides
A Flexible Architecture for Customizing Web Streams for Wireless Clients Jesse Steinberg and

A Flexible Architecture for Customizing Web Streams for Wireless Clients Jesse Steinberg and

A Flexible Architecture for Customizing Web Streams for Wireless Clients Jesse Steinberg and Joseph Pasquale University of California, San Diego Department of Computer Science and Engineering Motivation: Web + Wireless World Wide Web WWW

401 views • 17 slides
for Java based web applications using Jenkins-Gradle-Artifactory Sunil Dalal (@sunieldalal) Full

for Java based web applications using Jenkins-Gradle-Artifactory Sunil Dalal (@sunieldalal) Full

Continuous Integration and delivery for Java based web applications using Jenkins-Gradle-Artifactory Sunil Dalal (@sunieldalal) Full Stack Developer / Architect What is Continuous Integration? Continuous Integration is a software development

413 views • 39 slides
Just a T.A.D. (Traffic Analysis Drone) Senior Design Project 2017: Cumulative Design Review 1

Just a T.A.D. (Traffic Analysis Drone) Senior Design Project 2017: Cumulative Design Review 1

Just a T.A.D. (Traffic Analysis Drone) Senior Design Project 2017: Cumulative Design Review 1 Department of Electrical and Computer Engineering Department of Electrical and Computer Engineering SDP17 - TAD Meet the Team Cyril Caparanga (CSE)

443 views • 33 slides
Dealing with Academic Integrity Violations - TA Training Please form a group of 4 people Dr.

Dealing with Academic Integrity Violations - TA Training Please form a group of 4 people Dr.

Dealing with Academic Integrity Violations - TA Training Please form a group of 4 people Dr. Emad Jassim Assistant Dean - College of Engineering - 206 Engineering Hall jassim@Illinois.edu TA Training

740 views • 36 slides
Integrity checking for combined databases Davide Martinenghi Computer Science, building 42.1

Integrity checking for combined databases Davide Martinenghi Computer Science, building 42.1

CoLogNET Workshop on Logic-Based Methods for Information Integration - 23 August 2003 Integrity checking for combined databases Davide Martinenghi Computer Science, building 42.1 Roskilde University Universitetsvej 1 P.O. Box 260 DK-4000

496 views • 15 slides
Cepheus: A New Encrypted File System with Group Sharing and Integrity Protection Kevin Fu

Cepheus: A New Encrypted File System with Group Sharing and Integrity Protection Kevin Fu

Cepheus: A New Encrypted File System with Group Sharing and Integrity Protection Kevin Fu Course VI-3A April 26, 1999 On-Campus Thesis Advisor: Ron Rivest Bellcore Company Supervisor: S. Rajagopalan 4/26/99 Cepheus: The Cryptographic

596 views • 12 slides
L o g g ing Syste m fo r L o ng - life time Da ta Va lida tio n Ying di Yu UCL A 1 L

L o g g ing Syste m fo r L o ng - life time Da ta Va lida tio n Ying di Yu UCL A 1 L

L o g g ing Syste m fo r L o ng - life time Da ta Va lida tio n Ying di Yu UCL A 1 L ife time o f da ta vs. sig ning ke y L ife time o f a da ta pa c ke t de pe nds o n da ta usa g e ma y e xist fo r a lo ng time

498 views • 46 slides

More recommend