tutamen a next generation secret storage system
play

Tutamen: A Next-Generation Secret-Storage System Andy Sayler, - PowerPoint PPT Presentation

Oct 21, 2022 •251 likes •2.19k views

Tutamen: A Next-Generation Secret-Storage System Andy Sayler, Taylor Andrews, Matt Monaco, and Dirk Grunwald Presented by Andy Sayler SoCC 2016 10/06/16 SFg5asknmc6e SFg5asknmc6e SFg5asknmc6e DTrump GreatPassword Secrets SFg5asknmc6e

  1. Tutamen: A Next-Generation Secret-Storage System Andy Sayler, Taylor Andrews, Matt Monaco, and Dirk Grunwald Presented by Andy Sayler SoCC 2016 10/06/16

  6. SFg5asknmc6e

  7. SFg5asknmc6e

  8. SFg5asknmc6e DTrump GreatPassword

  9. Secrets SFg5asknmc6e DTrump GreatPassword

  10. Modern Use Cases

  11. Multi-Device Access

  12. Multi-User Sharing

  13. Cloud Infrastructure

  14. Secret-Storage Problem

  15. Secret-Storage Problem How do we store and protect secrets while also supporting a range of modern use cases?

  16. Secret-Storage as a Service

  18. Storage

  19. Storage Access Control

  20. Storage Access Control Auditing

  23. - Requires single (semi-)trusted third party - Not designed for automated use cases

  24. - Requires single (semi-)trusted third party - Not designed for automated use cases

  25. - Requires single (semi-)trusted third party - Not designed for automated use cases - Lacks support for out-of-band approval - Designed for single administrative domain

  26. Tutamen: Next-Gen Secret-Storage

  27. Goals

  28. Flexible Authentication Plugins for Multi-factor, Out-of-Band, Etc Auth

  29. Flexible Authentication Plugins for Multi-factor, Out-of-Band, Etc Auth Minimally Trusted Infrastructure Sharding Across Multiple Servers

  30. Flexible Authentication Plugins for Multi-factor, Out-of-Band, Etc Auth Minimally Trusted Infrastructure Sharding Across Multiple Servers Beyond a Single Administrative Domain Distributed Federation Between Servers

  31. Architecture

  33. Storage Server

  34. Storage Server Access Control Server

  35. Storage Server Access Control Server Application

  36. Storage Server Access Control Server Client Application

  37. Storage Server Access Control Server Token Request Token Response Mutual TLS Client Application

  38. Storage Server Access Control Server Token Request S t o Token Response r Fetch Secret e TLS w/ Token S Mutual TLS e c r e t Client Application

  39. Storage Server Access Control Server Public Token Signing Token Request Key S t o Token Response r Fetch Secret e TLS w/ Token S Mutual TLS e c r e t Client Application

  41. Storage Server

  42. Collection Storage Server

  43. Collection Storage Server Secret

  44. Collection AC Srv URL Storage Server Secret AC Srv URL AC Srv URL

  45. Collection AC Srv URL # AC Srv Required Storage Server Secret AC Srv URL AC Srv URL

  47. Access Control Server

  48. Access Control Server Account

  49. Access Control Server Account Client

  50. Access Control Server Account Authenticator Client

  51. Access Control Server Account Authenticator Client Verifier

  52. Access Control Server Account Authenticator Client Verifier Account ID Account ID Account ID

  53. Access Control Server Account Authenticator Client Verifier Account ID Authenticator ID Account ID Authenticator ID Account ID Authenticator ID

  54. Access Control Server Account Authenticator Permissions Object Type Client Object ID Permission Name Verifier Account ID Authenticator ID Account ID Authenticator ID Account ID Authenticator ID

  55. Access Control Server Account Authenticator Permissions Object Type Client Object ID Permission Name Verifier Verifier ID Account ID Authenticator ID Verifier ID Account ID Authenticator ID Verifier ID Account ID Authenticator ID

  56. Why Place Trust In Single Servers?

  57. Multi-Server Operation

  59. AC Server A AC Server B

  60. Storage Server A AC Server A Storage Server B AC Server B Storage Server C

  61. Storage Server A AC Server A Storage Server B AC Server B Storage Server C Application

  62. Storage Server A AC Server A Storage Server B s n e k o T AC Server B Storage Server C Application

  63. Storage Server A Public Signing Keys AC Server A Storage Server B Tokens Shard AC Server B Storage Server C Application

  64. Storage Server A Public Signing Keys AC Server A Storage Server B AC Server B T o k Storage Server C e S n h s a r d Application

  65. Storage Server A AC Server A Public Signing Keys Storage Server B AC Server B Storage Server C Tokens Shard Application

  66. Storage Server A AC Server A Storage Server B AC Server B Storage Server C Secret Application

  67. Secret Retrieval

  68. Secret Retrieval w/ Out of Band Human-in-the-Loop

  70. Permissions for Collection cf3529eb13be: { read: [ Verifier a74b2e2d493d ] }

  71. Permissions for Collection cf3529eb13be: { read: [ Verifier a74b2e2d493d ] } Verifier a74b2e2d493d { Accounts: [ Account cceb832edcdb ] } Authenticators: [ Authenticator 34e85e1bb264 ] }

  72. Permissions for Collection cf3529eb13be: { read: [ Verifier a74b2e2d493d ] } Verifier a74b2e2d493d { Accounts: [ Account cceb832edcdb ] } Authenticators: [ Authenticator 34e85e1bb264 ] } Authenticator 34e85e1bb264 { Plugin: SMS Challenge/Response }

  73. Account Human ACS A ACS B SS A SS B SS C e m i T

  74. Account Human ACS A ACS B SS A SS B SS C 1. Request Collection read-sec e Tokens m i T

  75. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> 1. Request Collection read-sec e Tokens m i T

  76. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> 1. Request 1b. Collection Confirm read-sec via SMS e Tokens m i T

  77. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> <SMS challenge> 1. Request 1b. Collection Confirm read-sec via SMS e Tokens m i T

  78. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> <SMS challenge> 1. Request 1b. Collection Confirm <SMS reply> read-sec via SMS e Tokens m i T

  79. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> <SMS challenge> 1. Request 1b. Collection Confirm <SMS reply> read-sec via SMS e Tokens m i T <tokens>

  80. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> <SMS challenge> 1. Request 1b. Collection Confirm <SMS reply> read-sec via SMS e Tokens m i T <tokens> 2. Read Secret from Collection

  81. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> <SMS challenge> 1. Request 1b. Collection Confirm <SMS reply> read-sec via SMS e Tokens m i T <tokens> <tokens, uuid> 2. Read Secret from Collection

  82. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> <SMS challenge> 1. Request 1b. Collection Confirm <SMS reply> read-sec via SMS e Tokens m i T <tokens> <tokens, uuid> 2. Read Secret <secret shards> from Collection

  83. Applications

  84. Fusebox: Tutamen-backed Dropbox Client Implementation by Taylor Andrews

  92. Tutamen-backed dm-crypt/LUKS FDE Implementation by Matt Monaco

  95. 1.2.3.4/24

  96. SMS Challenge

  97. SMS Challenge 1.2.3.4/24

  98. SMS Challenge 1.2.3.4/24

  99. ✓ SMS Challenge ✓ ✓ 1.2.3.4/24

  100. ✓ SMS Challenge ✓ ✓ 1.2.3.4/24

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Fifth generation Melgarejo, innovating since 1780 When someone asks about our secret to keep

Fifth generation Melgarejo, innovating since 1780 When someone asks about our secret to keep

Fifth generation Melgarejo, innovating since 1780 When someone asks about our secret to keep producing an extra virgin olive oil of the highest quality for fjve generations, our answer is as simple as sincere: Our secret is that we are not

415 views • 40 slides
ECE590-03 Enterprise Storage Architecture Fall 2016 Survey of Next-Generation Storage Tyler

ECE590-03 Enterprise Storage Architecture Fall 2016 Survey of Next-Generation Storage Tyler

ECE590-03 Enterprise Storage Architecture Fall 2016 Survey of Next-Generation Storage Tyler Bletsch Duke University Lots of possible avenues... Wikipedia list of emerging technologies for storage: Thats a lot of things! Most

263 views • 23 slides
ECE590-03 Enterprise Storage Architecture Fall 2018 Survey of Next-Generation Storage Tyler

ECE590-03 Enterprise Storage Architecture Fall 2018 Survey of Next-Generation Storage Tyler

ECE590-03 Enterprise Storage Architecture Fall 2018 Survey of Next-Generation Storage Tyler Bletsch Duke University Lots of possible avenues... Wikipedia list of emerging technologies for storage: Thats a lot of things! Most

439 views • 23 slides
HI-STORM MPC STORAGE SYSTEM FOR VERMONT YANKEE By Dr. Kris Singh, President &amp; CEO Holtec

HI-STORM MPC STORAGE SYSTEM FOR VERMONT YANKEE By Dr. Kris Singh, President &amp; CEO Holtec

HI-STORM MPC STORAGE SYSTEM FOR VERMONT YANKEE By Dr. Kris Singh, President &amp; CEO Holtec International June 25, 2015 a generation ahead by design History of Dry Storage at Vermont Yankee Nuclear Power Station Certificate of Public Good

527 views • 14 slides
Achievement System in the World Clarity The True Secret to Success Clarity The True Secret

Achievement System in the World Clarity The True Secret to Success Clarity The True Secret

How to Achieve Any The Most Powerful Broadcast Starting Soon Achievement System in the World Clarity The True Secret to Success Clarity The True Secret to Success with Mike Pettigrew Get Whatever You Want 10 Times Faster! What We

371 views • 24 slides
Mixed Generation Interconnection, Metering &amp; Settlement Netmetering Eligible, Class 1

Mixed Generation Interconnection, Metering &amp; Settlement Netmetering Eligible, Class 1

8/13/2014 Mixed Generation Interconnection, Metering &amp; Settlement Netmetering Eligible, Class 1 Renewable Energy Generation Combined with Other Distributed Generation/Storage 1 System Impact Issues Traditional Distributed Generation

242 views • 9 slides
Enterprise Storage Architecture Fall 2019 Survey of Next-Generation Storage Tyler Bletsch Duke

Enterprise Storage Architecture Fall 2019 Survey of Next-Generation Storage Tyler Bletsch Duke

ECE590-03 Enterprise Storage Architecture Fall 2019 Survey of Next-Generation Storage Tyler Bletsch Duke University Lots of possible avenues... Wikipedia list of emerging technologies for storage: Thats a lot of things! Most

929 views • 27 slides
Secret-Key Generation from Physics Onur G unl u onur.gunlu@tum.de Supervisor: Gerhard

Secret-Key Generation from Physics Onur G unl u onur.gunlu@tum.de Supervisor: Gerhard

Institute for Communications Engineering Technische Universit at M unchen Secret-Key Generation from Physics Onur G unl u onur.gunlu@tum.de Supervisor: Gerhard Kramer January, 2015 - SPCodingSchool, Campinas - Brazil Onur G

188 views • 4 slides
A Simulation-based Evaluation of a Hybrid Storage System combining P2P, F2F, and Cloud storage

A Simulation-based Evaluation of a Hybrid Storage System combining P2P, F2F, and Cloud storage

. . A Simulation-based Evaluation of a Hybrid Storage System combining P2P, F2F, and Cloud storage with a Distributed Reputation System Anders Skoglund andsk668@student.liu.se November 04, 2013 . Cloud storage P2P storage F2F storage

660 views • 36 slides
Sec ecur urity ity Fea eatures ures for or SSD Why Storage Security is Important ? Dilemma

Sec ecur urity ity Fea eatures ures for or SSD Why Storage Security is Important ? Dilemma

Sec ecur urity ity Fea eatures ures for or SSD Why Storage Security is Important ? Dilemma emmas ! A secret known by two is no longer a secret : https://www.symantec.com/about/newsroom/press-kits#

621 views • 15 slides
A Language for Probabilistically Oblivious Computation David Darais , Ian Sweet, Chang Liu,

A Language for Probabilistically Oblivious Computation David Darais , Ian Sweet, Chang Liu,

A Language for Probabilistically Oblivious Computation David Darais , Ian Sweet, Chang Liu, Michael Hicks Secure Storage S[42] secret Cloud You s = S[42] Storage S[s] secret Implementation = encrypt the data Read/write indices

787 views • 59 slides
Secret Sharing and Visual Cryptography Outline Secret Sharing Visual Secret Sharing

Secret Sharing and Visual Cryptography Outline Secret Sharing Visual Secret Sharing

Secret Sharing and Visual Cryptography Outline Secret Sharing Visual Secret Sharing Constructions Moir Cryptography Issues Secret Sharing Secret Sharing Threshold Secret Sharing (Shamir, Blakely 1979) Motivation

1.32k views • 62 slides
YFS 1.0 is the next generation distributed file system for secure private, public and hybrid

YFS 1.0 is the next generation distributed file system for secure private, public and hybrid

YFS 1.0 is the next generation distributed file system for secure private, public and hybrid cloud storage deployments. YFS 1.0 is not a hardware appliance. Backward compatible with IBM AFS 3.6 and OpenAFS. No flag day required

359 views • 16 slides
VICTORIA'S SECRET THE WORLD'S BEST BRAS OVERVIEW Victoria's Secret Victoria's PINK Secret

VICTORIA'S SECRET THE WORLD'S BEST BRAS OVERVIEW Victoria's Secret Victoria's PINK Secret

NEW YORK LONDON SHANGHAI VICTORIA'S SECRET THE WORLD'S BEST BRAS OVERVIEW Victoria's Secret Victoria's PINK Secret Sport WE ARE MISSION VISION VALUES 8.1% GROWTH BY 2022 3BN DOMESTIC VALUE STATS WE OFFER LINGERIE PANTIES

340 views • 30 slides
Today. Polynomials. Secret Sharing. A secret! I have a secret! A number from 0 to 10. What is

Today. Polynomials. Secret Sharing. A secret! I have a secret! A number from 0 to 10. What is

Today. Polynomials. Secret Sharing. A secret! I have a secret! A number from 0 to 10. What is it? Any one of you knows nothing! Any two of you can figure it out! Example Applications: Nuclear launch: need at least 3 out of 5 people to

513 views • 23 slides
Designing and launching the next-generation database system: from whiteboard to production Guido

Designing and launching the next-generation database system: from whiteboard to production Guido

April 25, 2018 Designing and launching the next-generation database system: from whiteboard to production Guido Iaquinti $whoami Guido Iaquinti Operations Engineer in Dublin Member of the storage team No previous DBA experience

3.28k views • 99 slides
15-388/688 - Practical Data Science: Data collection and scraping J. Zico Kolter Carnegie Mellon

15-388/688 - Practical Data Science: Data collection and scraping J. Zico Kolter Carnegie Mellon

15-388/688 - Practical Data Science: Data collection and scraping J. Zico Kolter Carnegie Mellon University Fall 2019 1 Outline The data collection process Common data formats and handling Regular expressions and parsing 2 Outline The

605 views • 27 slides
Interledger Smart Contracts for Decentralized Authorization to Constrained Things Vasilios A.

Interledger Smart Contracts for Decentralized Authorization to Constrained Things Vasilios A.

Interledger Smart Contracts for Decentralized Authorization to Constrained Things Vasilios A. Siris joint work with D. Dimopoulos, N. Fotiou, S. Voulgaris, G.C. Polyzos Mobile Multimedia Laboratory Athens University of Economics and Business,

289 views • 28 slides
Sergey Beryozkin, T alend Sergey Beryozkin, T alend Apache CXF Apache CXF Practical JOSE

Sergey Beryozkin, T alend Sergey Beryozkin, T alend Apache CXF Apache CXF Practical JOSE

Sergey Beryozkin, T alend Sergey Beryozkin, T alend Apache CXF Apache CXF Practical JOSE with Apache CXF Practical JOSE with Apache CXF Practical JOSE with Apache CXF Practical JOSE with Apache CXF What Is Apache CXF Production

465 views • 25 slides
Secure System Development Mechanisms CS460 Cyber Security Lab Spring 2010 Reading Material

Secure System Development Mechanisms CS460 Cyber Security Lab Spring 2010 Reading Material

Secure System Development Mechanisms CS460 Cyber Security Lab Spring 2010 Reading Material Web sites Microsoft links from last lecture Linux Capabilities - man 7 capabilities or http://www.linuxjournal.com/article/5737

1.17k views • 29 slides
DEVELOPMENT OF A PRIVACY PRESERVING LIFERAY PORTAL DOCUMENT SYNCHRONIZER FOR ANDROID BY

DEVELOPMENT OF A PRIVACY PRESERVING LIFERAY PORTAL DOCUMENT SYNCHRONIZER FOR ANDROID BY

DEVELOPMENT OF A PRIVACY PRESERVING LIFERAY PORTAL DOCUMENT SYNCHRONIZER FOR ANDROID BY MAX PERRY PERINATO Thesis Supervisor: Prof. Michele Bugliesi Department of Environmental Sciences, Informatics and Statistics

830 views • 15 slides
Your TSP Account: What to Think About When Nearing Retirement or Considering Leaving the

Your TSP Account: What to Think About When Nearing Retirement or Considering Leaving the

Your TSP Account: What to Think About When Nearing Retirement or Considering Leaving the Government Alan Sorcher Randy Urban October 6, 2020 Tom Manganello Paul Saulski SEC Disclaimer The SECs Office of Investor Education and Advocacy

607 views • 39 slides
Spring Grove Lacrosse Club Registration Tutorial First Steps 1. Make an account for yourself

Spring Grove Lacrosse Club Registration Tutorial First Steps 1. Make an account for yourself

Spring Grove Lacrosse Club Registration Tutorial First Steps 1. Make an account for yourself This only applies if you dont already have an account If you are on the mailing list, go to www.sglax.org, click on Sign in at the upper

548 views • 21 slides
Optimizer Benchmarking Needs to Account for Hyperparameter Tuning Prabhu Teja S * 1, 2 Florian Mai

Optimizer Benchmarking Needs to Account for Hyperparameter Tuning Prabhu Teja S * 1, 2 Florian Mai

Optimizer Benchmarking Needs to Account for Hyperparameter Tuning Prabhu Teja S * 1, 2 Florian Mai * 1, 2 Thijs Vogels 2 Martin Jaggi 2 Franois Fleuret 1, 2 1 Idiap Research Institute, 2 EPFL, Switzerland * Equal Contribution prabhu.teja,

282 views • 15 slides

More recommend