self encrypting deception
play

Self-Encrypting Deception: Weaknesses in the Encryption of Solid - PowerPoint PPT Presentation

Jun 05, 2023 •25 likes •1.44k views

Self-Encrypting Deception: Weaknesses in the Encryption of Solid State Drives (SSDs) Carlo Meijer Bernard van Gastel Radboud University Nijmegen Radboud University Nijmegen Midnight Blue Labs Open University of the Netherlands whoami Carlo

  1. Many have debugging interfaces exposed on PCB Adversary has physical access: can hot-plug the device Overall: Attack opportunities are more or less equivalent PC on Software encryption: secret key kept in RAM, which has weaknesses. (i) Cold boot attack Reboot, load custom OS, extract key from RAM (ii) DMA attack Extract key through DMA interface (PCI-e, Firewire, Thunderbolt, etc.) Hardware encryption: immune in theory , however Key is kept in RAM for virtually all implementations • To support Suspend-to-RAM (S3) Key is kept in storage controller (Not secure hardware by any standard) •

  2. Adversary has physical access: can hot-plug the device Overall: Attack opportunities are more or less equivalent PC on Software encryption: secret key kept in RAM, which has weaknesses. (i) Cold boot attack Reboot, load custom OS, extract key from RAM (ii) DMA attack Extract key through DMA interface (PCI-e, Firewire, Thunderbolt, etc.) Hardware encryption: immune in theory , however Key is kept in RAM for virtually all implementations • To support Suspend-to-RAM (S3) Key is kept in storage controller (Not secure hardware by any standard) • Many have debugging interfaces exposed on PCB

  3. Overall: Attack opportunities are more or less equivalent PC on Software encryption: secret key kept in RAM, which has weaknesses. (i) Cold boot attack Reboot, load custom OS, extract key from RAM (ii) DMA attack Extract key through DMA interface (PCI-e, Firewire, Thunderbolt, etc.) Hardware encryption: immune in theory , however Key is kept in RAM for virtually all implementations • To support Suspend-to-RAM (S3) Key is kept in storage controller (Not secure hardware by any standard) • Many have debugging interfaces exposed on PCB Adversary has physical access: can hot-plug the device •

  4. PC on Software encryption: secret key kept in RAM, which has weaknesses. (i) Cold boot attack Reboot, load custom OS, extract key from RAM (ii) DMA attack Extract key through DMA interface (PCI-e, Firewire, Thunderbolt, etc.) Hardware encryption: immune in theory , however Key is kept in RAM for virtually all implementations • To support Suspend-to-RAM (S3) Key is kept in storage controller (Not secure hardware by any standard) • Many have debugging interfaces exposed on PCB Adversary has physical access: can hot-plug the device • Overall: Attack opportunities are more or less equivalent

  5. Security guarantees of Self-Encrypting Drives Typical three attacker models for Full-Disk Encryption. All involve physical access. (i) PC on (ii) PC off, victim unaware: Physical encounter is not noticed by the victim (iii) PC off, victim aware: Drive is lost or stolen, machine considered “tainted”.

  6. (1) Install backdoor functionality (2) Wait for victim to enter secret key in the machine (3) Exfjltrate data Examples: Hardware keylogger Backdoor in boot loader Overall: SEDs don’t offer added protection equivalent PC off, victim unaware Evil maid attack

  7. (2) Wait for victim to enter secret key in the machine (3) Exfjltrate data Examples: Hardware keylogger Backdoor in boot loader Overall: SEDs don’t offer added protection equivalent PC off, victim unaware Evil maid attack (1) Install backdoor functionality

  8. (3) Exfjltrate data Examples: Hardware keylogger Backdoor in boot loader Overall: SEDs don’t offer added protection equivalent PC off, victim unaware Evil maid attack (1) Install backdoor functionality (2) Wait for victim to enter secret key in the machine

  9. Examples: Hardware keylogger Backdoor in boot loader Overall: SEDs don’t offer added protection equivalent PC off, victim unaware Evil maid attack (1) Install backdoor functionality (2) Wait for victim to enter secret key in the machine (3) Exfjltrate data

  10. Backdoor in boot loader Overall: SEDs don’t offer added protection equivalent PC off, victim unaware Evil maid attack (1) Install backdoor functionality (2) Wait for victim to enter secret key in the machine (3) Exfjltrate data Examples: Hardware keylogger •

  11. Overall: SEDs don’t offer added protection equivalent PC off, victim unaware Evil maid attack (1) Install backdoor functionality (2) Wait for victim to enter secret key in the machine (3) Exfjltrate data Examples: Hardware keylogger • Backdoor in boot loader •

  12. PC off, victim unaware Evil maid attack (1) Install backdoor functionality (2) Wait for victim to enter secret key in the machine (3) Exfjltrate data Examples: Hardware keylogger • Backdoor in boot loader • Overall: SEDs don’t offer added protection → equivalent

  13. Security guarantees of Self-Encrypting Drives Typical three attacker models for Full-Disk Encryption. All involve physical access. (i) PC on (ii) PC off, victim unaware: Physical encounter is not noticed by the victim (iii) PC off, victim aware: Drive is lost or stolen, machine considered “tainted”.

  14. Options: Open source (audited) software Proprietary software with public implementation details Proprietary (black-box) implementation With hardware encryption, no other option than the black-box Extremely hard to audit Additional pitfalls that apply particularly to hardware (later) PC off, victim aware Software encryption provides full confjdentiality of the data (given that the implementation is sound)

  15. Proprietary software with public implementation details Proprietary (black-box) implementation With hardware encryption, no other option than the black-box Extremely hard to audit Additional pitfalls that apply particularly to hardware (later) PC off, victim aware Software encryption provides full confjdentiality of the data (given that the implementation is sound) Options: Open source (audited) software •

  16. Proprietary (black-box) implementation With hardware encryption, no other option than the black-box Extremely hard to audit Additional pitfalls that apply particularly to hardware (later) PC off, victim aware Software encryption provides full confjdentiality of the data (given that the implementation is sound) Options: Open source (audited) software • Proprietary software with public implementation details •

  17. With hardware encryption, no other option than the black-box Extremely hard to audit Additional pitfalls that apply particularly to hardware (later) PC off, victim aware Software encryption provides full confjdentiality of the data (given that the implementation is sound) Options: Open source (audited) software • Proprietary software with public implementation details • Proprietary (black-box) implementation •

  18. Extremely hard to audit Additional pitfalls that apply particularly to hardware (later) PC off, victim aware Software encryption provides full confjdentiality of the data (given that the implementation is sound) Options: Open source (audited) software • Proprietary software with public implementation details • Proprietary (black-box) implementation • With hardware encryption, no other option than the black-box

  19. Additional pitfalls that apply particularly to hardware (later) PC off, victim aware Software encryption provides full confjdentiality of the data (given that the implementation is sound) Options: Open source (audited) software • Proprietary software with public implementation details • Proprietary (black-box) implementation • With hardware encryption, no other option than the black-box Extremely hard to audit •

  20. PC off, victim aware Software encryption provides full confjdentiality of the data (given that the implementation is sound) Options: Open source (audited) software • Proprietary software with public implementation details • Proprietary (black-box) implementation • With hardware encryption, no other option than the black-box Extremely hard to audit • Additional pitfalls that apply particularly to hardware (later) •

  21. Thus, security guarantees are equivalent. At best . Security guarantees of Self-Encrypting Drives Typical three attacker models for Full-Disk Encryption. All involve physical access. (i) PC on (ii) PC off, victim unaware: Physical encounter is not noticed by the victim (iii) PC off, victim aware: Drive is lost or stolen, machine considered “tainted”.

  22. Security guarantees of Self-Encrypting Drives Typical three attacker models for Full-Disk Encryption. All involve physical access. (i) PC on (ii) PC off, victim unaware: Physical encounter is not noticed by the victim (iii) PC off, victim aware: Drive is lost or stolen, machine considered “tainted”. Thus, security guarantees are equivalent. At best .

  23. Standards for Self-Encrypting Drives

  24. (ii) TCG Opal Modern standard designed specifjcally for SEDs Standards for Self-Encrypting Drives Two widely used standards exist (i) ATA Security Feature Set Originally designed for access control only https://medium.com/@andrewpgsweeny/ beyond-the-red-pill-and-the-blue-pill-9ef953d6e133

  25. Standards for Self-Encrypting Drives Two widely used standards exist (i) ATA Security Feature Set Originally designed for access control only (ii) TCG Opal Modern standard designed specifjcally for SEDs https://medium.com/@andrewpgsweeny/ beyond-the-red-pill-and-the-blue-pill-9ef953d6e133

  26. Keyed hash DEK So far, easy Suppose you would implement this yourself It would probably look something like this Stored data User-supplied password Salt # 1 Salt # 2 Hash output Keyed hash Compare Match/no match Hash result

  27. So far, easy Suppose you would implement this yourself It would probably look something like this Stored data User-supplied password Salt # 1 Salt # 2 Hash output Keyed hash Compare Match/no match Hash result Keyed hash DEK

  28. Suppose you would implement this yourself It would probably look something like this Stored data User-supplied password Salt # 1 Salt # 2 Hash output Keyed hash Compare Match/no match Hash result Keyed hash DEK So far, easy

  29. Standards for Self-Encrypting Drives Two widely used standards exist (i) ATA Security Feature Set Originally designed for access control only (ii) TCG Opal Modern standard designed specifjcally for SEDs https://medium.com/@andrewpgsweeny/ beyond-the-red-pill-and-the-blue-pill-9ef953d6e133

  30. Two password types: User , Master Both are user-settable, initial master password factory set MASTER PASSWORD CAPABILITY : High (0), Maximum (1) High : both User and Master password unlock drive Maximum : Only User unlocks drive, Master may erase Bottom line: Always change the Master password or set to Maximum In practice, even this is almost always insuffjcient (later) ATA Security feature set Originated in the pre-SED era • Thus, “encryption” is not even mentioned in the spec

  31. Both are user-settable, initial master password factory set MASTER PASSWORD CAPABILITY : High (0), Maximum (1) High : both User and Master password unlock drive Maximum : Only User unlocks drive, Master may erase Bottom line: Always change the Master password or set to Maximum In practice, even this is almost always insuffjcient (later) ATA Security feature set Originated in the pre-SED era • Thus, “encryption” is not even mentioned in the spec Two password types: User , Master •

  32. MASTER PASSWORD CAPABILITY : High (0), Maximum (1) High : both User and Master password unlock drive Maximum : Only User unlocks drive, Master may erase Bottom line: Always change the Master password or set to Maximum In practice, even this is almost always insuffjcient (later) ATA Security feature set Originated in the pre-SED era • Thus, “encryption” is not even mentioned in the spec Two password types: User , Master • Both are user-settable, initial master password factory set •

  33. High : both User and Master password unlock drive Maximum : Only User unlocks drive, Master may erase Bottom line: Always change the Master password or set to Maximum In practice, even this is almost always insuffjcient (later) ATA Security feature set Originated in the pre-SED era • Thus, “encryption” is not even mentioned in the spec Two password types: User , Master • Both are user-settable, initial master password factory set • MASTER PASSWORD CAPABILITY : High (0), Maximum (1) •

  34. Maximum : Only User unlocks drive, Master may erase Bottom line: Always change the Master password or set to Maximum In practice, even this is almost always insuffjcient (later) ATA Security feature set Originated in the pre-SED era • Thus, “encryption” is not even mentioned in the spec Two password types: User , Master • Both are user-settable, initial master password factory set • MASTER PASSWORD CAPABILITY : High (0), Maximum (1) • · High : both User and Master password unlock drive

  35. Bottom line: Always change the Master password or set to Maximum In practice, even this is almost always insuffjcient (later) ATA Security feature set Originated in the pre-SED era • Thus, “encryption” is not even mentioned in the spec Two password types: User , Master • Both are user-settable, initial master password factory set • MASTER PASSWORD CAPABILITY : High (0), Maximum (1) • · High : both User and Master password unlock drive · Maximum : Only User unlocks drive, Master may erase

  36. In practice, even this is almost always insuffjcient (later) ATA Security feature set Originated in the pre-SED era • Thus, “encryption” is not even mentioned in the spec Two password types: User , Master • Both are user-settable, initial master password factory set • MASTER PASSWORD CAPABILITY : High (0), Maximum (1) • · High : both User and Master password unlock drive · Maximum : Only User unlocks drive, Master may erase Bottom line: Always change the Master password or set to Maximum •

  37. ATA Security feature set Originated in the pre-SED era • Thus, “encryption” is not even mentioned in the spec Two password types: User , Master • Both are user-settable, initial master password factory set • MASTER PASSWORD CAPABILITY : High (0), Maximum (1) • · High : both User and Master password unlock drive · Maximum : Only User unlocks drive, Master may erase Bottom line: Always change the Master password or set to Maximum • In practice, even this is almost always insuffjcient (later)

  38. Keyed hash Key Decrypt Shared key Decrypt DEK ATA security feature set Stored data Master password: Salt # 1 Salt # 2 Hash output KEK User password: Salt # 1 Salt # 2 Hash output KEK KEK User-supplied User password Keyed hash Compare Hash result Match/no match

  39. ATA security feature set Stored data Master password: Salt # 1 Salt # 2 Hash output KEK User password: Salt # 1 Salt # 2 Hash output KEK KEK User-supplied User password Keyed hash Compare Hash result Match/no match Key Decrypt Decrypt Keyed hash Shared key DEK

  40. Standards for Self-Encrypting Drives Two widely used standards exist (i) ATA Security Feature Set Originally designed for access control only (ii) TCG Opal Modern standard designed specifjcally for SEDs https://medium.com/@andrewpgsweeny/ beyond-the-red-pill-and-the-blue-pill-9ef953d6e133

  41. Multiple partitions ( locking ranges ) Multiple passwords ( credentials ) Single credential can unlock multiple ranges Single range can be unlocked by multiple credentials i.e. many-to-many “Scramble” (i.e. re-generate key) range independently of others Fully trusted by BitLocker Drive space Range 1 Range 2 Range 3 Range 4 Passwords Password 1 Password 2 Password 3 TCG Opal De facto standard for hardware full-disk encryption •

  42. Multiple passwords ( credentials ) Single credential can unlock multiple ranges Single range can be unlocked by multiple credentials i.e. many-to-many “Scramble” (i.e. re-generate key) range independently of others Fully trusted by BitLocker Drive space Range 1 Range 2 Range 3 Range 4 Passwords Password 1 Password 2 Password 3 TCG Opal De facto standard for hardware full-disk encryption • Multiple partitions ( locking ranges ) •

  43. Single credential can unlock multiple ranges Single range can be unlocked by multiple credentials i.e. many-to-many “Scramble” (i.e. re-generate key) range independently of others Fully trusted by BitLocker Drive space Range 1 Range 2 Range 3 Range 4 Passwords Password 1 Password 2 Password 3 TCG Opal De facto standard for hardware full-disk encryption • Multiple partitions ( locking ranges ) • Multiple passwords ( credentials ) •

  44. Single range can be unlocked by multiple credentials i.e. many-to-many “Scramble” (i.e. re-generate key) range independently of others Fully trusted by BitLocker Drive space Range 1 Range 2 Range 3 Range 4 Passwords Password 1 Password 2 Password 3 TCG Opal De facto standard for hardware full-disk encryption • Multiple partitions ( locking ranges ) • Multiple passwords ( credentials ) • Single credential can unlock multiple ranges •

  45. i.e. many-to-many “Scramble” (i.e. re-generate key) range independently of others Fully trusted by BitLocker Drive space Range 1 Range 2 Range 3 Range 4 Passwords Password 1 Password 2 Password 3 TCG Opal De facto standard for hardware full-disk encryption • Multiple partitions ( locking ranges ) • Multiple passwords ( credentials ) • Single credential can unlock multiple ranges • Single range can be unlocked by multiple credentials •

  46. “Scramble” (i.e. re-generate key) range independently of others Fully trusted by BitLocker TCG Opal De facto standard for hardware full-disk encryption • Multiple partitions ( locking ranges ) • Multiple passwords ( credentials ) • Single credential can unlock multiple ranges • Single range can be unlocked by multiple credentials • i.e. many-to-many • Drive space Range 1 Range 2 Range 3 Range 4 � ✗ � ✗ ✗ � ✗ � � ✗ � � Passwords Password 1 Password 2 Password 3

  47. Fully trusted by BitLocker TCG Opal De facto standard for hardware full-disk encryption • Multiple partitions ( locking ranges ) • Multiple passwords ( credentials ) • Single credential can unlock multiple ranges • Single range can be unlocked by multiple credentials • i.e. many-to-many • “Scramble” (i.e. re-generate key) range independently of others • Drive space Range 1 Range 2 Range 3 Range 4 � ✗ � ✗ ✗ � ✗ � � ✗ � � Passwords Password 1 Password 2 Password 3

  48. TCG Opal De facto standard for hardware full-disk encryption • Multiple partitions ( locking ranges ) • Multiple passwords ( credentials ) • Single credential can unlock multiple ranges • Single range can be unlocked by multiple credentials • i.e. many-to-many • “Scramble” (i.e. re-generate key) range independently of others • Fully trusted by BitLocker • Drive space Range 1 Range 2 Range 3 Range 4 � ✗ � ✗ ✗ � ✗ � � ✗ � � Passwords Password 1 Password 2 Password 3

  49. Pitfalls

  50. Password unlocks drive and DEK is used to encrypt data How they are related is unknown They might not be related at all Pitfall 1: DEK not derived from password { data } DEK Password NAND Flash Host PC Black box

  51. How they are related is unknown They might not be related at all Pitfall 1: DEK not derived from password { data } DEK Password NAND Flash Host PC Black box Password unlocks drive and DEK is used to encrypt data •

  52. They might not be related at all Pitfall 1: DEK not derived from password { data } DEK Password NAND Flash Host PC Black box Password unlocks drive and DEK is used to encrypt data • How they are related is unknown •

  53. Pitfall 1: DEK not derived from password { data } DEK Password NAND Flash Host PC Black box Password unlocks drive and DEK is used to encrypt data • How they are related is unknown • They might not be related at all •

  54. Weakest password will grant access to all ranges Even to ranges for which no permission is granted No cryptographic enforcement, but if-statements BitLocker leaves an Opal range unprotected (partition table) Thus, in this case, DEK is recoverable without a password Pitfall 2: Single DEK for entire drive Strong Password 1 Decrypt Decrypt DEK Weak Password 3 Encrypted DEK 1 Encrypted DEK 3 Strong Password 2 Decrypt Encrypted DEK 2

  55. No cryptographic enforcement, but if-statements BitLocker leaves an Opal range unprotected (partition table) Thus, in this case, DEK is recoverable without a password Pitfall 2: Single DEK for entire drive Strong Password 1 Decrypt Decrypt DEK Weak Password 3 Encrypted DEK 1 Encrypted DEK 3 Strong Password 2 Decrypt Encrypted DEK 2 Weakest password will grant access to all ranges • Even to ranges for which no permission is granted

  56. BitLocker leaves an Opal range unprotected (partition table) Thus, in this case, DEK is recoverable without a password Pitfall 2: Single DEK for entire drive Strong Password 1 Decrypt Decrypt DEK Weak Password 3 Encrypted DEK 1 Encrypted DEK 3 Strong Password 2 Decrypt Encrypted DEK 2 Weakest password will grant access to all ranges • Even to ranges for which no permission is granted No cryptographic enforcement, but if-statements •

  57. Thus, in this case, DEK is recoverable without a password Pitfall 2: Single DEK for entire drive Strong Password 1 Decrypt Decrypt DEK Weak Password 3 Encrypted DEK 1 Encrypted DEK 3 Strong Password 2 Decrypt Encrypted DEK 2 Weakest password will grant access to all ranges • Even to ranges for which no permission is granted No cryptographic enforcement, but if-statements • BitLocker leaves an Opal range unprotected (partition table) •

  58. Pitfall 2: Single DEK for entire drive Strong Password 1 Decrypt Decrypt DEK Weak Password 3 Encrypted DEK 1 Encrypted DEK 3 Strong Password 2 Decrypt Encrypted DEK 2 Weakest password will grant access to all ranges • Even to ranges for which no permission is granted No cryptographic enforcement, but if-statements • BitLocker leaves an Opal range unprotected (partition table) • → Thus, in this case, DEK is recoverable without a password

  59. Recall: You should set the MASTER PASSWORD CAPABILITY to Max Ideally, this erases key material However, the standard allows resetting it to High , using only the user password In practice, key material remains stored. If unchanged, factory default master password allows data to be recovered Pitfall 3: ATA Master password re-enable Stored data Master password: Salt # 1 Salt # 2 Hash output KEK User password: Salt # 1 Salt # 2 Hash output KEK

  60. Ideally, this erases key material However, the standard allows resetting it to High , using only the user password In practice, key material remains stored. If unchanged, factory default master password allows data to be recovered Pitfall 3: ATA Master password re-enable Stored data Master password: Salt # 1 Salt # 2 Hash output KEK User password: Salt # 1 Salt # 2 Hash output KEK Recall: You should set the MASTER PASSWORD CAPABILITY to Max •

  61. However, the standard allows resetting it to High , using only the user password In practice, key material remains stored. If unchanged, factory default master password allows data to be recovered Pitfall 3: ATA Master password re-enable Stored data Master password: Salt # 1 Salt # 2 Hash output KEK User password: Salt # 1 Salt # 2 Hash output KEK Recall: You should set the MASTER PASSWORD CAPABILITY to Max • Ideally, this erases key material •

  62. In practice, key material remains stored. If unchanged, factory default master password allows data to be recovered Pitfall 3: ATA Master password re-enable Stored data Master password: Salt # 1 Salt # 2 Hash output KEK User password: Salt # 1 Salt # 2 Hash output KEK Recall: You should set the MASTER PASSWORD CAPABILITY to Max • Ideally, this erases key material • However, the standard allows resetting it to High , using only the user • password

  63. Pitfall 3: ATA Master password re-enable Stored data Master password: Salt # 1 Salt # 2 Hash output KEK User password: Salt # 1 Salt # 2 Hash output KEK Recall: You should set the MASTER PASSWORD CAPABILITY to Max • Ideally, this erases key material • However, the standard allows resetting it to High , using only the user • password In practice, key material remains stored. If unchanged, factory default • master password allows data to be recovered

  64. Plaintext DEK Plaintext DEK User sets password Encrypted DEK NAND before NAND after Set password overwrite of unprotected DEK with encrypted variant Unprotected DEK may still be present in physical fmash Pitfall 4: Wear Leveling Multiple writes to the same logical sector trigger writes to different physical sectors

  65. Set password overwrite of unprotected DEK with encrypted variant Unprotected DEK may still be present in physical fmash Pitfall 4: Wear Leveling Multiple writes to the same logical sector trigger writes to different physical sectors Plaintext DEK Plaintext DEK User sets password Encrypted DEK NAND before NAND after

  66. Unprotected DEK may still be present in physical fmash Pitfall 4: Wear Leveling Multiple writes to the same logical sector trigger writes to different physical sectors Plaintext DEK Plaintext DEK User sets password Encrypted DEK NAND before NAND after Set password → overwrite of unprotected DEK with encrypted variant •

  67. Pitfall 4: Wear Leveling Multiple writes to the same logical sector trigger writes to different physical sectors Plaintext DEK Plaintext DEK User sets password Encrypted DEK NAND before NAND after Set password → overwrite of unprotected DEK with encrypted variant • Unprotected DEK may still be present in physical fmash •

  68. Power-saving mode: DEVSLP Drive may dump its RAM incl. crypto keys to non-volatile memory, and shut off the RAM. General implementation issues Mode of operation (ECB, CBC, CTR, XTS) , Side channels, Key derivation, etc. Other pitfalls Random entropy generation •

  69. Drive may dump its RAM incl. crypto keys to non-volatile memory, and shut off the RAM. General implementation issues Mode of operation (ECB, CBC, CTR, XTS) , Side channels, Key derivation, etc. Other pitfalls Random entropy generation • Power-saving mode: DEVSLP •

  70. General implementation issues Mode of operation (ECB, CBC, CTR, XTS) , Side channels, Key derivation, etc. Other pitfalls Random entropy generation • Power-saving mode: DEVSLP • Drive may dump its RAM incl. crypto keys to non-volatile memory, and shut off the RAM.

  71. Mode of operation (ECB, CBC, CTR, XTS) , Side channels, Key derivation, etc. Other pitfalls Random entropy generation • Power-saving mode: DEVSLP • Drive may dump its RAM incl. crypto keys to non-volatile memory, and shut off the RAM. General implementation issues •

  72. Other pitfalls Random entropy generation • Power-saving mode: DEVSLP • Drive may dump its RAM incl. crypto keys to non-volatile memory, and shut off the RAM. General implementation issues • Mode of operation (ECB, CBC, CTR, XTS) , Side channels, Key derivation, etc.

  73. Methodology

  74. (i) Obtain a fjrmware image (ii) Gain low level control over the device (iii) Analyze the fjrmware Methodology General approach

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Deception and Estimation: Deception and Estimation: How We Fool Ourselves How We Fool Ourselves

Deception and Estimation: Deception and Estimation: How We Fool Ourselves How We Fool Ourselves

T18 Concurrent Session Thursday 06/12/2008 3:00 PM 4:30 PM Deception and Estimation: Deception and Estimation: How We Fool Ourselves How We Fool Ourselves Presented by: Linda Rising Independent Consultant Presented at: Better Software

303 views • 29 slides
Lying and Deception in Games Joel Sobel August 2, 2016 Lying and Deception Sobel What is the

Lying and Deception in Games Joel Sobel August 2, 2016 Lying and Deception Sobel What is the

Lying and Deception in Games Joel Sobel August 2, 2016 Lying and Deception Sobel What is the Talk About? Definitions: 1. Lying 2. Deception 3. Bluff and simple properties. Lying and Deception Sobel Why do this? 1. Coherence 2. To

659 views • 47 slides
Roadmap for Section 8.3 Encrypting File System (EFS) Terminology EFS Operation Data Encryption

Roadmap for Section 8.3 Encrypting File System (EFS) Terminology EFS Operation Data Encryption

Unit OS8: File System 8.3. Encrypting File System Security in Windows Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 8.3 Encrypting File System (EFS) Terminology EFS

250 views • 12 slides
On Deception and Defection Jason Quinley Chris Ahern University of Tbingen, University of

On Deception and Defection Jason Quinley Chris Ahern University of Tbingen, University of

Cooperation and Deception Beggars and Signals Face and Other-Regarding Preferences Further Examples and Discussion On Deception and Defection Jason Quinley Chris Ahern University of Tbingen, University of Pennsylvania August 7, 2012

732 views • 50 slides
Paper Swords I Timothy 4:1-8 The Deception of Demon-Doctrines The deadliest form of evil to

Paper Swords I Timothy 4:1-8 The Deception of Demon-Doctrines The deadliest form of evil to

Paper Swords I Timothy 4:1-8 The Deception of Demon-Doctrines The deadliest form of evil to beware of, is that which has the appearance of good. deception: appears to lead you toward holiness, but eventually leads you astray demon-possession :

394 views • 6 slides
Information Hiding in Email Services Based on Confused Document Encrypting Schemes Author

Information Hiding in Email Services Based on Confused Document Encrypting Schemes Author

Information Hiding in Email Services Based on Confused Document Encrypting Schemes Author Wei-Shyun Pan Po-Kang Chen Quincy Wu Outline Introduction Related works A Confused Document Encrypting Schemes and its

514 views • 33 slides
Deception Detection in Transcribed Speech and Written Text Rebecca Pottenger Background

Deception Detection in Transcribed Speech and Written Text Rebecca Pottenger Background

Deception Detection in Transcribed Speech and Written Text Rebecca Pottenger Background Detecting deception is a difficult problem Human detection accuracy is low For text: on average, correctly classify 47% of lies and 61% of

384 views • 7 slides
The Role of Deception in Games CMPUT 654 Leticia Wanderley 1 Agenda Social psychology

The Role of Deception in Games CMPUT 654 Leticia Wanderley 1 Agenda Social psychology

The Role of Deception in Games CMPUT 654 Leticia Wanderley 1 Agenda Social psychology (FAE) Example: Kasparov vs. Deep Blue Overview of deception research Poker 2x2 games Voting games Repeated games

586 views • 36 slides
Detecting Hoaxes, Frauds and Deception in Writing Style Online Sadia Afroz, Michael Brennan and

Detecting Hoaxes, Frauds and Deception in Writing Style Online Sadia Afroz, Michael Brennan and

Detecting Hoaxes, Frauds and Deception in Writing Style Online Sadia Afroz, Michael Brennan and Rachel Greenstadt Privacy, Security and Automation Lab Drexel University What do we mean by deception? Let me give an example A Gay

906 views • 65 slides
On Deception-Based Protection Against Cryptographic Ransomware Ziya Alper Gen, Gabriele

On Deception-Based Protection Against Cryptographic Ransomware Ziya Alper Gen, Gabriele

On Deception-Based Protection Against Cryptographic Ransomware Ziya Alper Gen, Gabriele Lenzini, and Daniele Sgandurra June 20, 2019 Ransomware Threat 1 Ransomware Threat 1 Deception-Based Anti-Ransomware In the context of ransomware,

507 views • 22 slides
Exercise: Encrypting and Decrypting with RSA In this exercise, you will encrypt and decrypt

Exercise: Encrypting and Decrypting with RSA In this exercise, you will encrypt and decrypt

Exercise: Encrypting and Decrypting with RSA In this exercise, you will encrypt and decrypt numbers using a simple version of the RSA algorithm. Each team should have two members. Each team-member should complete the exercise as Bob, then pass

228 views • 4 slides
Deception: An epistemic planned event? Shikha Singh, Deepak Khemani Department of Computer

Deception: An epistemic planned event? Shikha Singh, Deepak Khemani Department of Computer

Deception: An epistemic planned event? Shikha Singh, Deepak Khemani Department of Computer Science & Engineering IIT Madras Logic and Cognition Pre-Conference Workshop ICLA-2019 Shikha Singh, Deepak Khemani Deception: An epistemic planned

1.35k views • 111 slides
got HW crypto? On the (in)security of a Self-Encrypting Drive series Research motivation is HW

got HW crypto? On the (in)security of a Self-Encrypting Drive series Research motivation is HW

got HW crypto? On the (in)security of a Self-Encrypting Drive series Research motivation is HW crypto more secure? JMS538S SW6316 OXUF943SE INIC-1607E x x x x JMS569 INIC-3608 x x 2 Speakers intro Gunnar Alendal: Christian Kison:

718 views • 56 slides
Lets Encrypt as a Startup Success Story Security and Ops and Encrypting the web Daniel

Lets Encrypt as a Startup Success Story Security and Ops and Encrypting the web Daniel

Lets Encrypt as a Startup Success Story Security and Ops and Encrypting the web Daniel Jeffery Linux Foundation Why HTTPS? As our dependency on the internet has grown, the risk to users' privacy and safety has grown along with it.

746 views • 40 slides
The grace and wrath of God: unity and generosity, greed and deception Acts 4:32-5:11

The grace and wrath of God: unity and generosity, greed and deception Acts 4:32-5:11

The grace and wrath of God: unity and generosity, greed and deception Acts 4:32-5:11 Solomons Portico - artists rendition http://bibleillustration.blogspot.com/2010/09/bible-artist-news.html

405 views • 4 slides
Tencrypt: Encrypting Tenant-Traffic in OpenShift Forschungsprojekt Anwendung // Dresden, 15th

Tencrypt: Encrypting Tenant-Traffic in OpenShift Forschungsprojekt Anwendung // Dresden, 15th

Dominik Pataky Faculty of Computer Science, Institute of Systems Architecture, Chair of Computer Networks Tencrypt: Encrypting Tenant-Traffic in OpenShift Forschungsprojekt Anwendung // Dresden, 15th November, 2018 Contents Introduction Red

1.26k views • 125 slides
MODULE TWO You are an aspect of the cosmos What you are here to express? Your Intuition

MODULE TWO You are an aspect of the cosmos What you are here to express? Your Intuition

MODULE TWO You are an aspect of the cosmos What you are here to express? Your Intuition provides guidance when to stay and when to move The mind mimics the evolutionary impulse and drives you relentlessly Anxiety is never from the soul

184 views • 15 slides
GOODWARE DRUGS FOR MALWARE: ON-THE-FLY MALWARE ANALYSIS AND CONTAINMENT DAMIANO BOLZONI

GOODWARE DRUGS FOR MALWARE: ON-THE-FLY MALWARE ANALYSIS AND CONTAINMENT DAMIANO BOLZONI

GOODWARE DRUGS FOR MALWARE: ON-THE-FLY MALWARE ANALYSIS AND CONTAINMENT DAMIANO BOLZONI CHRISTIAAN SCHADE TWENTE SECURITY LAB UNIVERSITY OF TWENTE THE NETHERLANDS AGENDA Something about malware Malware internals Current analysis

398 views • 27 slides
LBL Pill Box cavity X O Y Mukti R Jana RF Meeting 4 -15 - 2013 2 Spark Distribution r

LBL Pill Box cavity X O Y Mukti R Jana RF Meeting 4 -15 - 2013 2 Spark Distribution r

Spark Damage Distribution on Pill Box Cavity Windows in r - plane Mukti R Jana Acknowledgment Moses Chung APC Fermilab 04-08-2013 LBL Pill Box cavity X O Y Mukti R Jana RF Meeting 4 -15 - 2013 2 Spark Distribution r Mukti R

297 views • 6 slides
The WLRK Proposal for 13(d) Reform: Market Protection or Corporate Entrenchment? Lucian Bebchuk

The WLRK Proposal for 13(d) Reform: Market Protection or Corporate Entrenchment? Lucian Bebchuk

The WLRK Proposal for 13(d) Reform: Market Protection or Corporate Entrenchment? Lucian Bebchuk The Conference Board, November 13, 2012 Debate with Martin Lipton Talk builds on: Bebchuk and Jackson (2012), The Law and Economics of

613 views • 13 slides
IPv4 Comes to an End Cesar Diaz cesar@lacnic.net Addressing in the Internet Devices on

IPv4 Comes to an End Cesar Diaz cesar@lacnic.net Addressing in the Internet Devices on

IPv4 Comes to an End Cesar Diaz cesar@lacnic.net Addressing in the Internet Devices on the Internet need to have unique addresses in order to be reachable from each other We have long put up with NAT, which up to a point subverts

427 views • 30 slides
All Your IFCException Are Belong To Us C t lin Hri cu (joint work with Michael Greenberg,

All Your IFCException Are Belong To Us C t lin Hri cu (joint work with Michael Greenberg,

All Your IFCException Are Belong To Us C t lin Hri cu (joint work with Michael Greenberg, Ben Karel, Benjamin Pierce, Greg Morrisett, and more) 2012-11-05 -- WG 2.8 meeting in Annapolis Information Flow Control [Fenton, 1974] Static

326 views • 18 slides
Musical chills Effects of stimulus properties, stylistic preference and familiarity Rmi de

Musical chills Effects of stimulus properties, stylistic preference and familiarity Rmi de

Musical chills Effects of stimulus properties, stylistic preference and familiarity Rmi de Fleurian Marcus T. Pearce Background Objectives Causes of chills Study Longitudinal Unfamiliar songs Piloerection

307 views • 6 slides
Best Practices for Treating Pain and Prescribing Opioids I have no financial disclosures to

Best Practices for Treating Pain and Prescribing Opioids I have no financial disclosures to

8/9/2018 Disclosures Best Practices for Treating Pain and Prescribing Opioids I have no financial disclosures to report. B R O O K C A L T O N , M D , M H S A S S I S T A N T P R O F E S S O R O F C L I N I C A L M E D I C I N E D I V I

319 views • 13 slides

More recommend