towards a semantic of xml signature
play

Towards a Semantic of XML Signature - How to Protect Against XML - PowerPoint PPT Presentation

Nov 05, 2022 •377 likes •505 views

Towards a Semantic of XML Signature - How to Protect Against XML Wrapping Attacks Sebastian Gajek, Lijun Liao, Jrg Schwenk Horst-Grtz-Institut Ruhr-University Bochum, Germany Presented by Michael McIntosh Java and Web Services Security

  1. Towards a Semantic of XML Signature - How to Protect Against XML Wrapping Attacks Sebastian Gajek, Lijun Liao, Jörg Schwenk Horst-Görtz-Institut Ruhr-University Bochum, Germany Presented by Michael McIntosh Java and Web Services Security Group Security, Privacy, and Extensible Technologies Department IBM Research

  2. Overview • XML Wrapping Attacks (McIntosh and Austel 2005) • Receiver-side Protection: – Strict Filtering – Returning a Spanning Tree – Returning Location Hints • Sender-side Protection: – XPath • Towards a formal Semantic for XML Signature

  3. XML Wrapping Attacks (McIntosh and Austel 2005) • The original document: The SOAP Body is signed and referenced by a wsu:id attribute; signature verification returns Boolean value. soap: envelope soap: header soap: body wsu:Id=“theBody“ wsse:security getQuote Symbol=“IBM“ Vulnerability: ds:signature SOAP and XML Signature logics process ds:signedInfo data independently. That is, when signed data located at wsu:id is valid then the ds:reference content is processed by SOAP engine. uri=“#theBody“

  4. XML Wrapping Attacks (McIntosh and Austel 2005) • The modified document: The same data is signed and referenced by a wsu:id attribute, but the SOAP Body has changed. soap: envelope soap: header soap: body wsu:Id=“newBody“ wsse:security Wrapper getQuote Symbol=“MBI“ ds:signature soap: body wsu:Id=“theBody“ ds:signedInfo getQuote Symbol=“IBM“ ds:reference uri=“#theBody“

  5. XML Wrapping Attacks (McIntosh and Austel 2005) Summary • Wrapping Attacks do not change the semantics of XML signatures using wsu:id • However it would be useful to be able to detect such modification • For other signature formats (OpenPGP, PKCS#7) it is sufficient to return a Boolean value after verification; for XML Signature, this is no longer the case

  6. Receiver-side Protection: Strict Filtering Solution 1: Business Logic only gets the signed data • Signature verification is located as a filter between the network and the Business Logic • Effect: Only the following XML fragment is forwarded to the Business Logic soap: body wsu:Id=“theBody“ getQuote Symbol=“IBM“ • Problems: Transform within each <Reference>-Element may result in non-XML data.

  7. Receiver-side Protection: Returning a Spanning Tree Solution 2: The signature verification function returns the signed data plus all elements up to the root of the document • Effect: The Business Logic can compare the actual (vertical) position of the signed data with its expectations soap: envelope soap: envelope Spanning Tree of the modified soap: header soap: body wsu:Id=“theBody“ document Wrapper getQuote Symbol=“IBM“ soap: body wsu:Id=“theBody“ Spanning Tree of the original document getQuote Symbol=“IBM“

  8. Receiver-side Protection: Returning Location Hints Solution 3: The signature verification function returns the signed data plus an absolute XPath describing its (vertical) position • Effect: The Business Logic can compare the actual (vertical) position of the signed data with its expectations soap: body soap: body wsu:Id=“theBody“ wsu:Id=“theBody“ getQuote getQuote Symbol=“IBM“ Symbol=“IBM“ + /Envelope/Header/Wrapper/Body + /Envelope/Body Location hint for the Location hint for the modified document original document

  9. Sender-side Protection: XPath Solution 4: The sender fixes the position of the signed data via XPath • Either XPath transform (Version 1 or 2) • or XPointer argument in URI (not yet tested) Effect: Any modification to the document changing the position of the signed data will be detected

  10. Future Work: Towards a formal Semantic for XML Signature The XML Signature standard contains useful (e.g., XPath) and dangerous (e.g., XSLT) transforms. A formal semantics should help understand which parts of an XML document are protected by the signature. The most important part is to understand how the different types of URIs and XPath transform influence the protected parts. Known formal semantics for XPath in XSLT are not clear enough because they only map to (unordered) XML nodesets. A future semantic for XPath/URIs in XML Signature should map into (mathematical) trees/forests, along the lines of solution 2.

  11. A Hybrid Solution • Use an IDREF in the Signature Reference • Use a Transform – With Path (XPath syntax) from Root to Referenced Element – Processing verifies Path • Output = Input if Path matches • Output != Input if Path does not match • Assumes implementation has access to equivalent of Node::getParent

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Discharge uncertainty: sources and implications for hydrological analyses Signature 1 Signature

Discharge uncertainty: sources and implications for hydrological analyses Signature 1 Signature

Discharge uncertainty: sources and implications for hydrological analyses Signature 1 Signature 1 Signature 2 Signature 2 http://comm ons.wikime dia.org/wiki/ File:Piasnic a- Signature 3 Signature 3 wodowskaz -0.jpg Ida Westerberg 1,2

388 views • 19 slides
ratification and signature Signature vs ratification Signature formal expression of intent to

ratification and signature Signature vs ratification Signature formal expression of intent to

Steps and technical modalities to follow for the deposit of the instrument of ratification and signature Signature vs ratification Signature formal expression of intent to be bound, but no legal obligation yet: however, a State is

585 views • 10 slides
Electronic Signature Electronic Signature El Electronic Signature t i Si t Digital

Electronic Signature Electronic Signature El Electronic Signature t i Si t Digital

Electronic Signature Electronic Signature El Electronic Signature t i Si t Digital Signature Digital Signature And Hash Function Biometric Signature Electronic Signature Act ROC, 2002/04/01,

299 views • 13 slides
Digital Signature Schemes 1 What is digital signature? Properties Who signed what is

Digital Signature Schemes 1 What is digital signature? Properties Who signed what is

Digital Signature Schemes 1 What is digital signature? Properties Who signed what is publicly verifiable Unforgeable 2 A Digital Signature Scheme Key generation algorithm G (probabilistic) ( pk, sk ) G (1 ) security

602 views • 22 slides
Semantic Web 2008 Se a t c eb 008 Semantic Web ca. 2008 S ti W b 2008 Semantic Web

Semantic Web 2008 Se a t c eb 008 Semantic Web ca. 2008 S ti W b 2008 Semantic Web

Semantic Web 2008 Se a t c eb 008 Semantic Web ca. 2008 S ti W b 2008 Semantic Web companies starting &amp; growing Siderean, SandPiper, SiberLogic, Ontology Works, Intellidimension, Intellisophic, TopQuadrant, Data Grid, Mondeca,

481 views • 23 slides
1-out-of-2 Signature Jun Shao 2 Whats 1-out-of-2 Signature Mirosaw Kutyowski 1 and Jun

1-out-of-2 Signature Jun Shao 2 Whats 1-out-of-2 Signature Mirosaw Kutyowski 1 and Jun

1-out-of-2 Signature Mirosaw Kutyowski 1 and 1-out-of-2 Signature Jun Shao 2 Whats 1-out-of-2 Signature Mirosaw Kutyowski 1 and Jun Shao 2 Definitions of 1-out-of-2 signature 1 Institute of Mathematics and Computer Science Our

489 views • 34 slides
What the #%*&amp;! is the Semantic Web? The Semantic Web is a collaborative movement led by

What the #%*&amp;! is the Semantic Web? The Semantic Web is a collaborative movement led by

What the #%*&amp;! is the Semantic Web? The Semantic Web is a collaborative movement led by international standards body the World Wide Web Consortium (W3C).[1] ... By encouraging the inclusion of semantic content in web pages, the

578 views • 44 slides
Layered approach (by T. Berners-Lee) The Semantic Web principles are implemented in the layers of

Layered approach (by T. Berners-Lee) The Semantic Web principles are implemented in the layers of

Layered approach (by T. Berners-Lee) The Semantic Web principles are implemented in the layers of Web technologies and standards Trust Rules Proof Digital Signature Data Logic Data Self- semantics Ontology vocabulary descr. doc.

747 views • 49 slides
Semantic Similarity MultiJEDI ERC 259234 Semantic Similarity Semantic Similarity Mostly

Semantic Similarity MultiJEDI ERC 259234 Semantic Similarity Semantic Similarity Mostly

SemEval 2014 Task-3 Cross-Level Semantic Similarity MultiJEDI ERC 259234 Semantic Similarity Semantic Similarity Mostly focused on similar types of lexical items Semantic Similarity What if we have different types of inputs? CLSS:

971 views • 47 slides
Chairs signature Mrs E Surtees Heads signature Mr M Tipple-Johnson

Chairs signature Mrs E Surtees Heads signature Mr M Tipple-Johnson

Presentation &amp; Handwriting Policy Chairs signature Mrs E Surtees Heads signature Mr M Tipple-Johnson Date 24 th January 2018 Review date Jan 2020 1 Presentation 1 Book covers should indicate:

52 views • 4 slides
Motivation Bootstrapping Semantic Lexicons A semantic lexicon contains semantic category Ex:

Motivation Bootstrapping Semantic Lexicons A semantic lexicon contains semantic category Ex:

Motivation Bootstrapping Semantic Lexicons A semantic lexicon contains semantic category Ex: dog, cat, lion, unannotated texts lizard, snake assignments for words. For example: blogger HUMAN sedan VEHICLE AK-47 WEAPON N best words

344 views • 8 slides
Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2.

Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2.

Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2. Signature is unforgeable. 3. Signature is not reusable (it is a part of the document) 4. Signed document is unalterable. 5. Signature cannot be

478 views • 24 slides
Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2.

Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2.

Digital Signatures Good properties of hand-written signatures: 1. Signature is authentic. 2. Signature is unforgeable. 3. Signature is not reusable (it is a part of the document) 4. Signed document is unalterable. 5. Signature cannot be

244 views • 21 slides
Semantic technologies: the layered approach (by T. Berners-Lee) Trust Rules Proof Digital

Semantic technologies: the layered approach (by T. Berners-Lee) Trust Rules Proof Digital

Semantic technologies: the layered approach (by T. Berners-Lee) Trust Rules Proof Digital Signature Data Logic Data Self- semantics + reasoning Ontology vocabulary descr. doc. relational data RDF + RDF Schema information exchange

848 views • 68 slides
Digital Signature And Hash Function

Digital Signature And Hash Function

Digital Signature And Hash Function 1 Electronic Signature Electronic Signature El Electronic Signature t i Si t Digital Signature Biometric Signature

894 views • 52 slides
RDF, RDFS and OWL: Graph Data Models for the Semantic Web Semantic Web: The Idea Semantic

RDF, RDFS and OWL: Graph Data Models for the Semantic Web Semantic Web: The Idea Semantic

RDF, RDFS and OWL: Graph Data Models for the Semantic Web Semantic Web: The Idea Semantic Web does not mean computers are going to understand the meaning of everything on the web does mean that we can create some standards ways of

344 views • 33 slides
Information Systems XPath Nikolaj Popov Research Institute for Symbolic Computation Johannes

Information Systems XPath Nikolaj Popov Research Institute for Symbolic Computation Johannes

Information Systems XPath Nikolaj Popov Research Institute for Symbolic Computation Johannes Kepler University of Linz, Austria popov@risc.uni-linz.ac.at Outline XPath XPath What is XPath? XPath is a language whose primary purpose is to

309 views • 15 slides
XPath Reference XPath leashed, Michael Benedikt and Christoph Koch, TR, 2006 1

XPath Reference XPath leashed, Michael Benedikt and Christoph Koch, TR, 2006 1

XPath Reference XPath leashed, Michael Benedikt and Christoph Koch, TR, 2006 1 Expressivity of XPath Formal setting XPath interpreted in a logical structure t with a finite set of labels and a finite set of Attributes @Ai (functions

587 views • 15 slides
XPath Evaluation in Linear Time Mikoaj Bojaczyk, Pawe Parys Warsaw University find the

XPath Evaluation in Linear Time Mikoaj Bojaczyk, Pawe Parys Warsaw University find the

XPath Evaluation in Linear Time Mikoaj Bojaczyk, Pawe Parys Warsaw University find the nodes in an XML document d Goal: that satisfy an XPath unary query q. We consider a fragment of XPath called FOXPath. Previous algorithms:

984 views • 85 slides
Part II Semistructured Data XML: II.1 Semistructured data, XPath and XML II.2 Structuring XML

Part II Semistructured Data XML: II.1 Semistructured data, XPath and XML II.2 Structuring XML

Inf1-DA 20102011 II: 41 / 117 Part II Semistructured Data XML: II.1 Semistructured data, XPath and XML II.2 Structuring XML II.3 Navigating XML using XPath Corpora: II.4 Introduction to corpora II.5 Querying a corpus Recommended

234 views • 9 slides
XPath &amp; XQuery (continued) CS 645 Apr 24, 2008 1 Some slide content courtesy of

XPath &amp; XQuery (continued) CS 645 Apr 24, 2008 1 Some slide content courtesy of

XPath &amp; XQuery (continued) CS 645 Apr 24, 2008 1 Some slide content courtesy of Ramakrishnan &amp; Gehrke, Dan Suciu, Zack Ives. Today s lecture Review of XPath continuation of XQuery 2 Querying XML Data XPath = simple

569 views • 38 slides
9. Path expressions: XPath XPath is a language for selecting parts of XML documents it is

9. Path expressions: XPath XPath is a language for selecting parts of XML documents it is

9. Path expressions: XPath XPath is a language for selecting parts of XML documents it is a kind of simple query language . XPath does not use normal XML syntax; path expressions are strings for the parser. XPath is a tree

223 views • 20 slides
XML Processing (XPath, XQuery, XUpdate) Part 5: XQuery + XPath Fulltext 21.12.2011 Outline

XML Processing (XPath, XQuery, XUpdate) Part 5: XQuery + XPath Fulltext 21.12.2011 Outline

Module 3 XML Processing (XPath, XQuery, XUpdate) Part 5: XQuery + XPath Fulltext 21.12.2011 Outline Motivation Challenges XQuery Full-Text Language XQuery Full-Text Semantics and Data Model 21.12.2011 Peter

620 views • 46 slides
Information Retrieval Modeling Russian Summer School in Information Retrieval Djoerd Hiemstra

Information Retrieval Modeling Russian Summer School in Information Retrieval Djoerd Hiemstra

Information Retrieval Modeling Russian Summer School in Information Retrieval Djoerd Hiemstra http://www.cs.utwente.nl/~hiemstra 1/35 PART 4 Structured Information Retrieval 2/35 Overview 1. implicit vs. explicit structure 2. static vs.

580 views • 35 slides

More recommend