The Rupture API: Productizing TLS attacks Aggelos Kiayias Eva - PowerPoint PPT Presentation

Jan 26, 2024 •250 likes •492 views

The Rupture API: Productizing TLS attacks Aggelos Kiayias Eva Sarafianou Dionysis Zindros Real World Crypto 2017 Attack Anatomy Attacker guesses part of secret Uses it in reflection Compressed/encrypted response is shorter if

The Rupture API: Productizing TLS attacks Aggelos Kiayias Eva Sarafianou Dionysis Zindros Real World Crypto 2017
Attack Anatomy
● Attacker guesses part of secret ● Uses it in reflection ● Compressed/encrypted response is shorter if right! Reflection Secret
Adaptively choosing reflections strings can lead to full recovery. But there are challenges: 1. Noise 2. Antagonistic compression methods (Huffman coding) 3. Unrelated static content on page matching candidates
Our Contributions ● Usable open-source tool ● Demonstrate attack is easy and practical via web UI ● Reusable RESTful API
Demo
https://github.com/dionyziz/rupture https://ruptureit.com/
Thank you! Questions? https://github.com/dionyziz/rupture http://www.kiayias.com E5F2 7045 437B 168B 39AD 1BFA C876 8019 6DBB 04E0 https://esarafianou.github.io 2FA9 7528 9554 F1EB F5F8 675B E371 5849 8CD0 92EE https://dionyziz.com 45DC 00AE FDDF 5D5C B988 EC86 2DA4 50F3 AFB0 46C7

Download Presentation

Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

L AB EXPERIMENTS ON GELS (T. Y AMAGUCHI ) C OMPLEXITY OF DYNAMIC RUPTURE Ripperger, Ampuero, Mai

I MAGING EARTHQUAKE RUPTURE COMPLEXITY WITH DENSE ARRAYS Pablo Ampuero (Caltech Seismolab) Simons et al (Science, 2011) Meng, Inbal and Ampuero (subm. GRL, 2011) C OMPLEXITY OF DYNAMIC RUPTURE Ripperger, Ampuero, Mai (2008) Complicated

540 views • 31 slides

Advanced ML in Google Cloud (2) Abhay Agarwal (MS Design 19) Agenda Productizing

CS341: Project in Mining Massive Datasets Advanced ML in Google Cloud (2) Abhay Agarwal (MS Design 19) Agenda Productizing analytics Data wrangling Data fundamentals Data studio vs datalab vs colab

687 views • 20 slides

3D rupture effects (seismogenic depth) Huihui Weng Jean-Paul Ampuero ICTP, Trieste, Italy, 2-14

3D rupture effects (seismogenic depth) Huihui Weng Jean-Paul Ampuero ICTP, Trieste, Italy, 2-14 Sep. Rupture speeds in 2D Modes II (strike slip) Supershear Sub-Rayleigh v R v S v E v P Rupture speed Unstable Modes III (dip slip)

1.04k views • 71 slides

Productizing Telephony and Audio in a GNU/Linux (Sailfish OS) Smartphone Martti Piirainen

Productizing Telephony and Audio in a GNU/Linux (Sailfish OS) Smartphone Martti Piirainen (martti.piirainen@tieto.com) Tieto Product Development Services Agenda Hardware / software stack overview Audio What we did and why Some

825 views • 27 slides

Goals Learn to simulate dynamic rupture model Explore the effects of fault heterogeneities

Practice : dynamic rupture in 2D and 2.5D Huihui Weng Jean-Paul Ampuero Goals Learn to simulate dynamic rupture model Explore the effects of fault heterogeneities on dynamic ruptures Discussion: seismology problems 2D and 2.5D

601 views • 41 slides

Aortic Rupture & Aortopulmonary fistulation in the friesian horse C.J.G.Delesalle@uu.nl

Aortic Rupture & Aortopulmonary fistulation in the friesian horse C.J.G.Delesalle@uu.nl Catherine.Delesalle@UGent.be lay out Friesian horse project 2008 Prof. Dr. Wim Back -Dwarfism -Hydrocephalia Aortic rupture & Aortopulmonary

498 views • 38 slides

Blunt Traumatic Aortic Rupture and the Aortic Response to High Speed Impact MARK COHEN AND

Blunt Traumatic Aortic Rupture and the Aortic Response to High Speed Impact MARK COHEN AND LYES KADEM Blunt Traumatic Aortic Rupture (BTAR) In North America, approximately 19% of all auto accident fatalities are caused by BTAR. Second

684 views • 16 slides

Acute Coronary syndrome 7th Annual Pharmacotherapy Conference ACS Pathophysiology rupture or

6/2/18 Acute Coronary syndrome 7th Annual Pharmacotherapy Conference ACS Pathophysiology rupture or erosion of a vulnerable, lipid- laden, atherosclerotic coronary plaque, resulting in exposure of circulating blood to highly thrombogenic

407 views • 17 slides

Achilles Tendon Rupture: How to Make Up for the Gap James A. Nunley MD DISCLOSURES Consultant

Achilles Tendon Rupture: How to Make Up for the Gap James A. Nunley MD DISCLOSURES Consultant for Wright, Stryker,Tornier,Orthofix,Acumed, Exactech,DTMedSurg Royalties from Wright Fellowship support from Breg, Synthes, Integra Turndown

790 views • 31 slides

Lake Maumelle Watershed ExxonMobil Pegasus Pipeline Pipeline and Rupture Overview v

Lake Maumelle Watershed ExxonMobil Pegasus Pipeline Pipeline and Rupture Overview v Constructed 1948 v 858 miles long v Flow reversed in 2006 v Up to 4 million gallons per day v Carries Wabasca heavy crude/dilbit v

401 views • 12 slides

Soil Shearing during Earthquake Surface Fault Rupture Nicolas K. Oettle, P.E. Graduate

Soil Shearing during Earthquake Surface Fault Rupture Nicolas K. Oettle, P.E. Graduate Researcher University of California, Berkeley Advisor: Funding: Jonathan D. Bray, Ph.D., P.E. National Science Foundation Professor of Geotechnical

444 views • 11 slides

Spontaneous Rupture of the Bile Duct Associated with Pancreatitis. A Rare Presentation Mahesh K

JOP. J Pancreas (Online) 2011 Mar 9; 12(2):149-151. CASE REPORT Spontaneous Rupture of the Bile Duct Associated with Pancreatitis. A Rare Presentation Mahesh K Goenka, Bhaswati C Acharyya, Pradeepta K Sethy, Usha Goenka Institute of

310 views • 3 slides

Rupture EVAR Formula 1 style: it is all about team training www.critical-issues-congress.com Di

Rupture EVAR Formula 1 style: it is all about team training www.critical-issues-congress.com Di Disclosures Speaker name: Colin Bicknell. I I ha have the foll ollowing po potentia ial l conflic icts of of interest to to report:

410 views • 22 slides

NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3

CMPS122: COMPUTER SECURITY NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3 due tonight NETWORKING ATTACKS LAST TIME TCP/IP networking stack Physical layer Data link layer Network

1.1k views • 61 slides

Bruno Gas Pipeline Rupture 6/1/11 Presentation to Washington State Citizens Committee on

Major Public Concerns Raised by the San Bruno Gas Pipeline Rupture 6/1/11 Presentation to Washington State Citizens Committee on Pipeline Safety Richard B. Kuprewicz President, Accufacts Inc. kuprewicz@comcast.net 1 Based on Information

454 views • 14 slides

Parallel Finite Element Simulations of Dynamic Earthquake Rupture and Seismic Wave Propagation

Parallel Finite Element Simulations of Dynamic Earthquake Rupture and Seismic Wave Propagation Benchun Duan and Dunyu Liu Department of Geology and Geophysics D r Texas A&M University Fall, 2018 1 Earth Why Do Earthquakes Happen?

316 views • 6 slides

Visceral Artery Aneurysms Endovascular vs. Open? John S. Lane III, MD Professor and Acting Chief

4/6/2017 Disclosures None relevant Visceral Artery Aneurysms Endovascular vs. Open? John S. Lane III, MD Professor and Acting Chief of Vascular Surgery UC San Diego, Department of Surgery UCSF Vascular Symposium, 2017 2 Open vs. Endo:

224 views • 7 slides

ENGINEERING PROPERTIES OF SPIDER SILK Frank K. Ko 1, Sueo Kawabata 2 , Mari Inoue 3 , Masako Niwa

ENGINEERING PROPERTIES OF SPIDER SILK Frank K. Ko 1, Sueo Kawabata 2 , Mari Inoue 3 , Masako Niwa 4 , Stephen Fossey 5 and John W. Song 6 1 Fibrous Materials Research Center, Department of Materials Engineering, Drexel University, Philadelphia,

207 views • 7 slides

Free Response Slide 2 / 82 1 Complex molecules are crucial for life processes. How these

Slide 1 / 82 Free Response Slide 2 / 82 1 Complex molecules are crucial for life processes. How these molecules came to be on Earth is subject to ongoing speculation and research. Below are several fabricated or real pieces of evidence that

452 views • 28 slides

Outline BIF sub-committee report on Discussion of current state of the ABEPD across-breed EPD

Larry Keuhn, U.S. Meat Animal Research 6/1/17 Center Outline BIF sub-committee report on Discussion of current state of the ABEPD across-breed EPD programs: system and possible changes proposed improvements Update on current sampling

465 views • 5 slides

Finite-time rupture in thin films driven by non-conservative effects zoom-in 8 8 8 8 0.3

ICERM, Making a Splash workshop, March 2017 Finite-time rupture in thin films driven by non-conservative effects zoom-in 8 8 8 8 0.3 0.2 6 6 6 6 0.1 h ( x, t ) h ( x, t ) h ( x, t ) h ( x, t ) 0 40 45 50 55 60 4 4 4 4 x 2

330 views • 19 slides

1 I have nothing to disclose 2 The rate of posttraumatic splenic pseudoaneurysms (SPA) in

1 I have nothing to disclose 2 The rate of posttraumatic splenic pseudoaneurysms (SPA) in children have been estimated to 5.4%* A rupturing SPA is a surgical emergency Routine imaging to identify SPA is common in adult centers but has not been

392 views • 18 slides

rupture dynamic modeling Luis A. Dalguer Swiss Seismological Service, ETH Zurich, CH-8092,

Research Signpost 37/661 (2), Fort P.O. Trivandrum-695 023 Kerala, India The Mechanics of Faulting: From Laboratory to Real Earthquakes, 2012: 93-124 ISBN: 978-81-308-0502-3 Editors: Andrea Bizzarri and Harsha S. Bhat 4. Numerical algorithms

704 views • 32 slides

ENGINE mid-term Conference Recent progress in Discrete Fracture Network modelling for EGS

ENGINE mid-term Conference Recent progress in Discrete Fracture Network modelling for EGS development in tight fractured rocks D. Bruel Ecole des Mines de Paris, Centre de Gosciences, Systmes Hydrologiques et Rservoirs UMR Sisyphe 7619,

285 views • 14 slides