secure cryptographic protocol execution based on runtime
play

Secure Cryptographic Protocol Execution based on Runtime - PowerPoint PPT Presentation

Sep 04, 2022 •254 likes •467 views

Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in the Quantum Era (SPS G5448) February 5th, 2020 Christian Colombo Mark Vella Cryptographic Protocols Design Proofs to validate design against

  1. Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in the Quantum Era (SPS G5448) February 5th, 2020 Christian Colombo Mark Vella

  2. Cryptographic Protocols Design Proofs to validate design against threat models Implementation Difficult to make it fully secure… So many things can go wrong!

  3. Levels of abstraction of security threats The protocol implementation might deviate from (High level) Wrong protocol implementation the verified (theoretical) design Medium level threats Malware, Data leaks, etc Arithmetic overflows, undefined downcasts, Low level threats and invalid pointer references Can hardware be trusted? Hardware Side Channel attacks?

  4. It is difficult to make implementation fully secure… but we can raise the bar as much as possible.

  5. Our strategy Isolate!

  6. Design of architecture

  7. Our strategy Isolate! Monitor!

  8. Monitor code while executing (High level) Monitor for data leaks (medium level)

  9. Preliminary case study Web server Elliptic Curve Diffie-Hellman Exchange (ECDHE) Firefox implementation (C code)

  10. Preliminary implementation Setup using Binary-level instrumentation Web server Binary instrumentation Firefox implementation (C code)

  11. Preliminary implementation Setup using Binary-level instrumentation Through which monitors can gain visibility Web server Runtime Binary instrumentation Verification Firefox implementation (C code)

  12. Properties verified (High level) on ECDHE Digital certificate verification is done (in order to authenticate public keys sent by peers)

  13. Properties verified (High level) on ECDHE Validation of remote peer's public key on each exchange is done (unless the session is aborted)

  14. Properties verified (High level) on ECDHE Once master secret is established, private keys should be scrubbed from memory (to limit the impact of memory leak attacks such as Heartbleed, irrespective of whether the session is aborted)

  15. Feasibility study of approach Is the approach possible for a realistic code base? Is the approach feasible in terms of overheads? Used the Firefox case study on top 100 Alexa sites

  16. Web server Feasibility study Runtime Binary instrumentation Verification Firefox implementation (C code)

  17. Overheads measurement

  18. Overheads measurement 0.05 ms per page

  19. Lessons learnt Good start with promising results - approach seems feasible Beware: Program comprehension is required , both for setting up function hooks as well as to enable individual TLS session monitoring Real-world code tends to be written in a manner to favor efficient execution rather than monitorability (eg, was difficult to keep track of particular sessions on the server)

  20. Secure Communication in the Quantum Era NATO Science for Peace and Security Programme, Project no. G5448 Partners: Slovakia - Slovak University of Technology Malta - University of Malta Spain - Universidad Rey Juan Carlos US - Florida Atlantic University http://re-search.info/

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Extracting and Verifying Cryptographic Models from C Protocol Code by Symbolic Execution Mihhail

Extracting and Verifying Cryptographic Models from C Protocol Code by Symbolic Execution Mihhail

Extracting and Verifying Cryptographic Models from C Protocol Code by Symbolic Execution Mihhail Aizatulin 1 supervised by Andrew Gordon 23 , Jan J urjens 4 , Bashar Nuseibeh 1 1 The Open University 2 Microsoft Research Cambridge 3 University of

543 views • 29 slides
Symbolic Execution of Security Protocol Impl.: Handling Cryptographic Primitives Mathy Vanhoef

Symbolic Execution of Security Protocol Impl.: Handling Cryptographic Primitives Mathy Vanhoef

Symbolic Execution of Security Protocol Impl.: Handling Cryptographic Primitives Mathy Vanhoef @vanhoefm USENIX WOOT, Baltimore, US, 14 August 2018 Overview Symbolic Execution 4-way handshake Handling Crypto Results 2 Overview Symbolic

446 views • 41 slides
What is i i KP KP? ? i KP i KP: : i i - -Key Key- -Protocol Protocol What is i

What is i i KP KP? ? i KP i KP: : i i - -Key Key- -Protocol Protocol What is i

What is i i KP KP? ? i KP i KP: : i i - -Key Key- -Protocol Protocol What is i -Key-Protocol, i = 1, 2, 3, Family of protocols Secure electronic payment Based on credit card payments Christopher Hsu Can be extended

407 views • 4 slides
Formal Security Analysis of Cryptographic Protocol Code

Formal Security Analysis of Cryptographic Protocol Code

Formal Security Analysis of Cryptographic Protocol Code Karthikeyan Bhargavan INRIA IIT Delhi, Fall 2010 Lecture 1: WriCng Secure Web ApplicaCons

472 views • 25 slides
Cryptographic protocols Cryptographic protocols small programs designed to secure Introduction

Cryptographic protocols Cryptographic protocols small programs designed to secure Introduction

Cryptographic protocols Cryptographic protocols small programs designed to secure Introduction to cryptographic protocols communication (various security goals) Bruno Blanchet use cryptographic primitives (e.g. encryption, hash function,

451 views • 14 slides
Fast Cryptographic Primitives & Circular-Secure Encryption Based on Hard Learning Problems

Fast Cryptographic Primitives & Circular-Secure Encryption Based on Hard Learning Problems

Fast Cryptographic Primitives & Circular-Secure Encryption Based on Hard Learning Problems Benny Applebaum, David Cash, Chris Peikert, Amit Sahai Princeton University, Georgia Tech, SRI international, UCLA CRYPTO 2009 Learning Noisy Linear

352 views • 33 slides
CS 356 Lecture 2 Cryptographic Tools Spring 2013 Chapter 2 Cryptographic Tools

CS 356 Lecture 2 Cryptographic Tools Spring 2013 Chapter 2 Cryptographic Tools

CS 356 Lecture 2 Cryptographic Tools Spring 2013 Chapter 2 Cryptographic Tools Cryptographic Tools Cryptographic algorithms important element in security services Review various types of elements symmetric encryption secure

1.27k views • 23 slides
Rewriting in Protocol Verification Stphanie Delaune Univ Rennes, CNRS, IRISA, France Monday,

Rewriting in Protocol Verification Stphanie Delaune Univ Rennes, CNRS, IRISA, France Monday,

Rewriting in Protocol Verification Stphanie Delaune Univ Rennes, CNRS, IRISA, France Monday, June 29th, 2020 1/23 Cryptographic protocols everywhere ! Cryptographic protocols small programs designed to secure communication ( e.g.

900 views • 58 slides
Clemmys Towards Secure Remote Execution in FaaS Bohdan Trach , Oleksii Oleksenko, Franz Gregor,

Clemmys Towards Secure Remote Execution in FaaS Bohdan Trach , Oleksii Oleksenko, Franz Gregor,

Clemmys Towards Secure Remote Execution in FaaS Bohdan Trach , Oleksii Oleksenko, Franz Gregor, Pramod Bhatotia, Christof Fetzer ACM SYSTOR 2019 FaaS Paradigm of Cloud Computing Function Runtime Guest OS Function Hypervisor Host OS FaaS

1.34k views • 98 slides
TLS Security EPL682 Neophytos Christou What is TLS? - Cryptographic protocols that provide

TLS Security EPL682 Neophytos Christou What is TLS? - Cryptographic protocols that provide

TLS Security EPL682 Neophytos Christou What is TLS? - Cryptographic protocols that provide secure communication on the internet - Consists of two phases: - TLS Handshake protocol: agree on the cipher suite that will be used to encrypt

320 views • 31 slides
MPRI 2-30: Automated Verification of Cryptographic Protocol Implementations K Bhargavan

MPRI 2-30: Automated Verification of Cryptographic Protocol Implementations K Bhargavan

MPRI 2-30: Automated Verification of Cryptographic Protocol Implementations K Bhargavan (Slides from A.D. Gordon and C. Fournet) Spring, 2014 Outline of Lectures Lecture 1 (Jan 22, Today) Intro to Verified Protocol Implementations

1.32k views • 112 slides
CSE484/CSE584 SECURE DESIGN PRINCIPLES, OS, AND RUNTIME SECURITY Dr. Benjamin Livshits Some of

CSE484/CSE584 SECURE DESIGN PRINCIPLES, OS, AND RUNTIME SECURITY Dr. Benjamin Livshits Some of

CSE484/CSE584 SECURE DESIGN PRINCIPLES, OS, AND RUNTIME SECURITY Dr. Benjamin Livshits Some of f the Common Principles Minimize attack Secure by surface area Default Principle of Fail-Safe Least Stance Privilege Secure the

975 views • 56 slides
Verifpal Cryptographic protocol analysis for students and engineers Nadim Kobeissi FOSDEM

Verifpal Cryptographic protocol analysis for students and engineers Nadim Kobeissi FOSDEM

Verifpal Cryptographic protocol analysis for students and engineers Nadim Kobeissi FOSDEM Brussels, February 2020 What is Formal Verification? Using software tools in order to obtain guarantees on the security of cryptographic components.

319 views • 21 slides
CoSMIX: A Compiler-based System for Secure Memory Instrumentation and Execution in Enclaves Meni

CoSMIX: A Compiler-based System for Secure Memory Instrumentation and Execution in Enclaves Meni

CoSMIX: A Compiler-based System for Secure Memory Instrumentation and Execution in Enclaves Meni Orenbach (Technion), Yan Michalevsky (Anjuna), Christof Fetzer (TU Dresden, Scone), Mark Silberstein (Technion) Published in USENIX ATC19

744 views • 24 slides
Secure Multiparty Computation Li Xiong Outline Cryptographic primitives Symmetric

Secure Multiparty Computation Li Xiong Outline Cryptographic primitives Symmetric

CS573 Data Privacy and Security Cryptographic Primitives and Secure Multiparty Computation Li Xiong Outline Cryptographic primitives Symmetric Encryption Public Key Encryption Secure Multiparty Computation Problem and

779 views • 47 slides
The Common Language Runtime (CLR) Based on Mark Sapossnek Computer Science Department

The Common Language Runtime (CLR) Based on Mark Sapossnek Computer Science Department

The Common Language Runtime (CLR) Based on Mark Sapossnek Computer Science Department Metropolitan College Boston University Agenda What Is the CLR? Assemblies Execution Model What is the CLR? The .NET Platform Clients

1.06k views • 56 slides
What Is the Future of Computers? 1 Introduction Moore's Law states, that the number of

What Is the Future of Computers? 1 Introduction Moore's Law states, that the number of

What Is the Future of Computers? 1 Introduction Moore's Law states, that the number of transistors on a microprocessor double every 18 months. 2 Introduction The year 2020 or 2030 will find the circuits on a microprocessor measured on

336 views • 18 slides
On the Security of Supersingular Isogeny Cryptosystems Yan Bo Ti Department of Mathematics,

On the Security of Supersingular Isogeny Cryptosystems Yan Bo Ti Department of Mathematics,

On the Security of Supersingular Isogeny Cryptosystems Yan Bo Ti Department of Mathematics, University of Auckland AsiaCrypt 2016, 5th of December 1/17 Outline Joint work with Steven Galbraith , Christophe Petit and Barak Shani . 1

242 views • 23 slides
Group Key Agreement Ph.D. Dissertation Proposal June 20, 2001 Yongdae Kim 1 Outline

Group Key Agreement Ph.D. Dissertation Proposal June 20, 2001 Yongdae Kim 1 Outline

Group Key Agreement Ph.D. Dissertation Proposal June 20, 2001 Yongdae Kim 1 Outline Definitions and concepts Motivations and goals Related work Work done Protocols Implementation and Integration Research plan

940 views • 67 slides
for the Internet of Things David J. Wu Ankur Taly Asim Shankar Dan Boneh Stanford University

for the Internet of Things David J. Wu Ankur Taly Asim Shankar Dan Boneh Stanford University

Privacy, Discovery, and Authentication for the Internet of Things David J. Wu Ankur Taly Asim Shankar Dan Boneh Stanford University Google Google Stanford University The Internet of Things (IoT) Lots of smart devices, but only useful if

352 views • 31 slides
Finite field multiplication combining AMNS and DFT approach for Pairing Based Cryptography Nadia

Finite field multiplication combining AMNS and DFT approach for Pairing Based Cryptography Nadia

Finite field multiplication combining AMNS and DFT approach for Pairing Based Cryptography Nadia El Mrabet (1) and Christophe Negre (2) (1) Team Arith/LIRMM, Universit e Montpellier 2 (2) Team DALI/ELIAUS, Universit e de Perpignan

753 views • 49 slides
Public Key Infrastructure Taofeeq Olatinwo Harmony Worldwide Inc. www.harmonycanada.com

Public Key Infrastructure Taofeeq Olatinwo Harmony Worldwide Inc. www.harmonycanada.com

Nigeria Computer Society 11 th International Conference Theme: e-Government & National Security 24 th 26 th July, 2013 Public Key Infrastructure Taofeeq Olatinwo Harmony Worldwide Inc. www.harmonycanada.com www.hwwgs.com 25 th July

502 views • 19 slides
The Journey towards a Reference Implementation of IPSec Automatic Security Analysis with

The Journey towards a Reference Implementation of IPSec Automatic Security Analysis with

1/25 The Journey towards a Reference Implementation of IPSec Automatic Security Analysis with Tamarin-Prover Eike Stadtlnder July 12, 2018 2/25 Outline Motivation Tamarin-Prover Overview Multiset Rewriting Tamarin-Prover in Practice

1.32k views • 117 slides
iOS Security Data protection January 17, Tokyo iOS Meetup What is? It is a feature to protect

iOS Security Data protection January 17, Tokyo iOS Meetup What is? It is a feature to protect

iOS Security Data protection January 17, Tokyo iOS Meetup What is? It is a feature to protect data at rest and to make offline attacks difficult. iOS 4 DATA PROTECTION 101

713 views • 60 slides

More recommend