usable verification of terminal fast cryptographic
play

Usable verification of terminal fast cryptographic software Daniel - PowerPoint PPT Presentation

Jun 30, 2023 •321 likes •1.32k views

1 2 Usable verification of terminal fast cryptographic software Daniel J. Bernstein processes files University of Illinois at Chicago & Technische Universiteit Eindhoven RAM disk Operating-system kernel divides RAM among processes,

  1. 1 2 Usable verification of terminal fast cryptographic software Daniel J. Bernstein processes files University of Illinois at Chicago & Technische Universiteit Eindhoven RAM disk Operating-system kernel divides RAM among processes, divides disk among files. Provides convenient functions for processes to access files, start new processes, etc.

  2. 1 2 verification of terminal my terminal cryptographic software J. Bernstein processes files my p University of Illinois at Chicago & echnische Universiteit Eindhoven RAM disk RAM Operating-system kernel divides RAM among processes, Donald’s divides disk among files. Provides convenient functions for processes to access files, Donald’s start new processes, etc.

  3. 1 2 verification of terminal my terminal cryptographic software Bernstein processes files my processes Illinois at Chicago & Universiteit Eindhoven RAM disk RAM Operating-system kernel divides RAM among processes, Donald’s processes divides disk among files. Provides convenient functions for processes to access files, Donald’s terminal start new processes, etc.

  4. 1 2 terminal my terminal re processes files my processes my Chicago & Eindhoven RAM disk RAM Operating-system kernel divides RAM among processes, Donald’s Donald’s processes divides disk among files. Provides convenient functions for processes to access files, Donald’s terminal start new processes, etc.

  5. 2 3 terminal my terminal processes files my processes my files RAM disk RAM disk Operating-system kernel divides RAM among processes, Donald’s Donald’s processes files divides disk among files. Provides convenient functions for processes to access files, Donald’s terminal start new processes, etc.

  6. 2 3 Can Donald terminal my terminal appearing cesses files my processes my files RAM disk RAM disk erating-system kernel RAM among processes, Donald’s Donald’s processes files disk among files. Provides convenient functions cesses to access files, Donald’s terminal new processes, etc.

  7. 2 3 Can Donald corrupt my terminal appearing on my terminal? files my processes my files disk RAM disk kernel among processes, Donald’s Donald’s processes files among files. convenient functions access files, Donald’s terminal cesses, etc.

  8. 2 3 Can Donald corrupt the data my terminal appearing on my terminal? my processes my files RAM disk cesses, Donald’s Donald’s processes files functions files, Donald’s terminal

  9. 3 4 Can Donald corrupt the data my terminal appearing on my terminal? my processes my files RAM disk Donald’s Donald’s processes files Donald’s terminal

  10. 3 4 Can Donald corrupt the data my terminal appearing on my terminal? Attack: guess my password. my processes my files RAM disk Donald’s Donald’s processes files Donald’s terminal

  11. 3 4 Can Donald corrupt the data my terminal appearing on my terminal? Attack: guess my password. my processes my files Defense: I have a high-entropy randomly generated password. RAM disk Donald’s Donald’s processes files Donald’s terminal

  12. 3 4 Can Donald corrupt the data my terminal appearing on my terminal? Attack: guess my password. my processes my files Defense: I have a high-entropy randomly generated password. Attack: replace the terminal RAM disk with a rigged terminal that intercepts my password. Donald’s Donald’s processes files Donald’s terminal

  13. 3 4 Can Donald corrupt the data my terminal appearing on my terminal? Attack: guess my password. my processes my files Defense: I have a high-entropy randomly generated password. Attack: replace the terminal RAM disk with a rigged terminal that intercepts my password. Defense: physical security. Donald’s Donald’s processes files Donald’s terminal

  14. 3 4 Can Donald corrupt the data my terminal appearing on my terminal? Attack: guess my password. my processes my files Defense: I have a high-entropy randomly generated password. Attack: replace the terminal RAM disk with a rigged terminal that intercepts my password. Defense: physical security. Donald’s Donald’s processes files Attack: use my terminal earlier and leave a program running that looks like the usual login screen Donald’s terminal but intercepts my password.

  15. 3 4 Can Donald corrupt the data my terminal appearing on my terminal? Attack: guess my password. my processes my files Defense: I have a high-entropy randomly generated password. Attack: replace the terminal RAM disk with a rigged terminal that intercepts my password. Defense: physical security. Donald’s Donald’s processes files Attack: use my terminal earlier and leave a program running that looks like the usual login screen Donald’s terminal but intercepts my password. Defense: secure attention key.

  16. 3 4 Can Donald corrupt the data Donald is my terminal appearing on my terminal? data on Attack: guess my password. Attack: processes my files Defense: I have a high-entropy part of RAM, randomly generated password. Attack: replace the terminal RAM disk with a rigged terminal that intercepts my password. Defense: physical security. Donald’s Donald’s processes files Attack: use my terminal earlier and leave a program running that looks like the usual login screen Donald’s terminal but intercepts my password. Defense: secure attention key.

  17. 3 4 Can Donald corrupt the data Donald is authorized appearing on my terminal? data on the same computer. Attack: guess my password. Attack: Donald sto my files Defense: I have a high-entropy part of RAM, or my randomly generated password. Attack: replace the terminal disk with a rigged terminal that intercepts my password. Defense: physical security. Donald’s cesses files Attack: use my terminal earlier and leave a program running that looks like the usual login screen terminal but intercepts my password. Defense: secure attention key.

  18. 3 4 Can Donald corrupt the data Donald is authorized to store appearing on my terminal? data on the same computer. Attack: guess my password. Attack: Donald stores data in my files Defense: I have a high-entropy part of RAM, or my part of randomly generated password. Attack: replace the terminal disk with a rigged terminal that intercepts my password. Defense: physical security. Donald’s files Attack: use my terminal earlier and leave a program running that looks like the usual login screen but intercepts my password. Defense: secure attention key.

  19. 4 5 Can Donald corrupt the data Donald is authorized to store appearing on my terminal? data on the same computer. Attack: guess my password. Attack: Donald stores data in my Defense: I have a high-entropy part of RAM, or my part of disk. randomly generated password. Attack: replace the terminal with a rigged terminal that intercepts my password. Defense: physical security. Attack: use my terminal earlier and leave a program running that looks like the usual login screen but intercepts my password. Defense: secure attention key.

  20. 4 5 Can Donald corrupt the data Donald is authorized to store appearing on my terminal? data on the same computer. Attack: guess my password. Attack: Donald stores data in my Defense: I have a high-entropy part of RAM, or my part of disk. randomly generated password. Two-part defense: Attack: replace the terminal 1. “Memory protection”. with a rigged terminal that Hardware does not allow intercepts my password. processes to access data Defense: physical security. outside areas marked by kernel. Attack: use my terminal earlier 2. Kernel keeps track of which and leave a program running that parts of RAM and disk are mine, looks like the usual login screen and which parts are Donald’s. but intercepts my password. Defense: secure attention key.

  21. 4 5 Donald corrupt the data Donald is authorized to store Bugs in ring on my terminal? data on the same computer. can comp allowing ttack: guess my password. Attack: Donald stores data in my to my pa Defense: I have a high-entropy part of RAM, or my part of disk. randomly generated password. Two-part defense: ttack: replace the terminal 1. “Memory protection”. rigged terminal that Hardware does not allow intercepts my password. processes to access data Defense: physical security. outside areas marked by kernel. ttack: use my terminal earlier 2. Kernel keeps track of which leave a program running that parts of RAM and disk are mine, like the usual login screen and which parts are Donald’s. intercepts my password. Defense: secure attention key.

  22. 4 5 rrupt the data Donald is authorized to store Bugs in this kernel terminal? data on the same computer. can compromise securit allowing Donald to my password. Attack: Donald stores data in my to my part of RAM a high-entropy part of RAM, or my part of disk. generated password. Two-part defense: the terminal 1. “Memory protection”. terminal that Hardware does not allow password. processes to access data physical security. outside areas marked by kernel. terminal earlier 2. Kernel keeps track of which rogram running that parts of RAM and disk are mine, usual login screen and which parts are Donald’s. my password. attention key.

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Symbolic verification of cryptographic protocols using Tamarin Part 2 : Symbolic Verification

Symbolic verification of cryptographic protocols using Tamarin Part 2 : Symbolic Verification

Symbolic verification of cryptographic protocols using Tamarin Part 2 : Symbolic Verification David Basin ETH Zurich Summer School on Verification Technology, Systems & Applications Nancy France August 2018 Outline 1 Formal Models 2

1.01k views • 81 slides
Complexity of automatic verification of cryptographic protocols Clermont Ferrand 02/02/2017

Complexity of automatic verification of cryptographic protocols Clermont Ferrand 02/02/2017

Complexity of automatic verification of cryptographic protocols Clermont Ferrand 02/02/2017 Vincent Cheval Equipe Pesto, INRIA, Nancy 1 Cryptographic protocols Communication on public network Cryptographic protocols: Concurrent programs

946 views • 69 slides
Symbolic verification of cryptographic protocols using Tamarin Part 3 : Security Properties and

Symbolic verification of cryptographic protocols using Tamarin Part 3 : Security Properties and

Symbolic verification of cryptographic protocols using Tamarin Part 3 : Security Properties and Algorithmic Verification David Basin ETH Zurich Summer School on Verification Technology, Systems & Applications Nancy France August 2018

1.23k views • 78 slides
Towards Formal Verification in Cryptographic Web Applications A Three Year Evolution Nadim

Towards Formal Verification in Cryptographic Web Applications A Three Year Evolution Nadim

Towards Formal Verification in Cryptographic Web Applications A Three Year Evolution Nadim Kobeissi PROSECCO: Pro gramming Sec urely with C rypt o graphy. Team at INRIA Paris specializing in applied cryptography and formal verification.

357 views • 14 slides
Verification of cryptographic protocols: techniques, tools and link to cryptanalysis Vronique

Verification of cryptographic protocols: techniques, tools and link to cryptanalysis Vronique

Verification of cryptographic protocols: techniques, tools and link to cryptanalysis Vronique Cortier INRIA project Cassis, Loria CNRS, Nancy, France French/Japanese Symposium on Computer Security - Sept. 6th, 2005 Verification of

605 views • 46 slides
Symbolic verification of cryptographic protocols using Tamarin Part 1 : Introduction David Basin

Symbolic verification of cryptographic protocols using Tamarin Part 1 : Introduction David Basin

Symbolic verification of cryptographic protocols using Tamarin Part 1 : Introduction David Basin ETH Zurich Summer School on Verification Technology, Systems & Applications Nancy France August 2018 Organization of the course Two

774 views • 74 slides
Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in

Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in

Secure Cryptographic Protocol Execution based on Runtime Verification Secure Communication in the Quantum Era (SPS G5448) February 5th, 2020 Christian Colombo Mark Vella Cryptographic Protocols Design Proofs to validate design against

467 views • 20 slides
Comparison of Cryptographic Verification Tools Dealing with Algebraic Properties Pascal LAFOURCADE

Comparison of Cryptographic Verification Tools Dealing with Algebraic Properties Pascal LAFOURCADE

Comparison of Cryptographic Verification Tools Dealing with Algebraic Properties Comparison of Cryptographic Verification Tools Dealing with Algebraic Properties Pascal LAFOURCADE , Vanessa Terrade & Sylvain Vigier Universit e Joseph

1.01k views • 49 slides
Signed Cryptographic Program Verification with Typed C RYPTO L INE Yu-Fu Fu 1 , Jiaxiang Liu 2 ,

Signed Cryptographic Program Verification with Typed C RYPTO L INE Yu-Fu Fu 1 , Jiaxiang Liu 2 ,

Signed Cryptographic Program Verification with Typed C RYPTO L INE Yu-Fu Fu 1 , Jiaxiang Liu 2 , Xiaomu Shi 2 , Ming-Hsien Tsai 1 , Bow-Yaw Wang 1 , Bo-Yin Yang 1 1 Academia Sinica 2 Shenzhen University ACM CCS 2019 1/42 Outline Introduction 1

936 views • 79 slides
MPRI 2-30: Automated Verification of Cryptographic Protocol Implementations K Bhargavan

MPRI 2-30: Automated Verification of Cryptographic Protocol Implementations K Bhargavan

MPRI 2-30: Automated Verification of Cryptographic Protocol Implementations K Bhargavan (Slides from A.D. Gordon and C. Fournet) Spring, 2014 Outline of Lectures Lecture 1 (Jan 22, Today) Intro to Verified Protocol Implementations

1.32k views • 112 slides
MPRI 2-30: ! Automated Verification of ! Cryptographic Protocol Implementations K Bhargavan (Slides

MPRI 2-30: ! Automated Verification of ! Cryptographic Protocol Implementations K Bhargavan (Slides

MPRI 2-30: ! Automated Verification of ! Cryptographic Protocol Implementations K Bhargavan (Slides from A.D. Gordon and C. Fournet) Spring, 2014 TLS Handshakes ''''''ClientHello''''''''''''''''''99999999>'

744 views • 73 slides
Linux Terminal System Conceptual Linux terminal Terminal API Terminal emulators

Linux Terminal System Conceptual Linux terminal Terminal API Terminal emulators

Linux Terminal System Conceptual Linux terminal Terminal API Terminal emulators Graphical user interfaces Conceptual Linux terminal Mainframe Terminal User Application Keyboard Display Kernel Modem Modem stdin/stdout

460 views • 12 slides
Verification techniques for cryptographic protocols eronique Cortier 1 V RTA08 1 LORIA, CNRS

Verification techniques for cryptographic protocols eronique Cortier 1 V RTA08 1 LORIA, CNRS

Introduction Formal models Adding equational theories Towards more guarantees Verification techniques for cryptographic protocols eronique Cortier 1 V RTA08 1 LORIA, CNRS - INRIA Cassis project, Nancy Universities 1/45 V eronique

785 views • 76 slides
of Terminal Aerodrome Forecasts for Thunderstorms and Visibility Jadran Jurkovi 1 Zoran Pasari

of Terminal Aerodrome Forecasts for Thunderstorms and Visibility Jadran Jurkovi 1 Zoran Pasari

Displaying the Verification Results of Terminal Aerodrome Forecasts for Thunderstorms and Visibility Jadran Jurkovi 1 Zoran Pasari 2 and Igor Kos 1 1 Croatia Control ltd 2 University of Zagreb, Dept. Of Geophys. 7th International Verification

560 views • 15 slides
Fast Cryptographic Primitives & Circular-Secure Encryption Based on Hard Learning Problems

Fast Cryptographic Primitives & Circular-Secure Encryption Based on Hard Learning Problems

Fast Cryptographic Primitives & Circular-Secure Encryption Based on Hard Learning Problems Benny Applebaum, David Cash, Chris Peikert, Amit Sahai Princeton University, Georgia Tech, SRI international, UCLA CRYPTO 2009 Learning Noisy Linear

352 views • 33 slides
Verifpal Cryptographic protocol analysis for students and engineers Nadim Kobeissi FOSDEM

Verifpal Cryptographic protocol analysis for students and engineers Nadim Kobeissi FOSDEM

Verifpal Cryptographic protocol analysis for students and engineers Nadim Kobeissi FOSDEM Brussels, February 2020 What is Formal Verification? Using software tools in order to obtain guarantees on the security of cryptographic components.

319 views • 21 slides
The Nanopass Framework as a Nanopass Compiler Andy Keep Background Background The Nanopass

The Nanopass Framework as a Nanopass Compiler Andy Keep Background Background The Nanopass

The Nanopass Framework as a Nanopass Compiler Andy Keep Background Background The Nanopass Framework is an embedded domain-specific language for creating compilers that focuses on creating single purpose passes and precise intermediate

1.04k views • 50 slides
Meeting Mobile Downtown Airport June 22, 2020 Welcome Any issues, text Mary Mullins Redditt,

Meeting Mobile Downtown Airport June 22, 2020 Welcome Any issues, text Mary Mullins Redditt,

Community Advisory Committee Meeting Mobile Downtown Airport June 22, 2020 Welcome Any issues, text Mary Mullins Redditt, Outreach Coordinator and TAC Facilitator 251-802-3341 (include who you are) Meeting agenda and Zoom logistics

841 views • 16 slides
COMP 2718: The OS, Shell, Terminal, and Text By: Dr. Andrew Vardy Adapted from the notes of Dr.

COMP 2718: The OS, Shell, Terminal, and Text By: Dr. Andrew Vardy Adapted from the notes of Dr.

COMP 2718: The OS, Shell, Terminal, and Text By: Dr. Andrew Vardy Adapted from the notes of Dr. Rod Byrne Outline What is an Operating System? The Shell and Terminal How are Characters Encoded? Standard Input, Standard Output, and

463 views • 18 slides
CSE443 Compilers Dr. Carl Alphonce alphonce@buffalo.edu 343 Davis Hall Phases of a Syntactic

CSE443 Compilers Dr. Carl Alphonce alphonce@buffalo.edu 343 Davis Hall Phases of a Syntactic

CSE443 Compilers Dr. Carl Alphonce alphonce@buffalo.edu 343 Davis Hall Phases of a Syntactic compiler structure Figure 1.6, page 5 of text Continuing from last time FIRST(X) if X T then FIRST(X) = { X } if X N and X -> Y

470 views • 9 slides
The devil shell (dsh) COMPSCI210 Recitation 4th Feb 2013 Vamsi Thummala Shell Interactive

The devil shell (dsh) COMPSCI210 Recitation 4th Feb 2013 Vamsi Thummala Shell Interactive

The devil shell (dsh) COMPSCI210 Recitation 4th Feb 2013 Vamsi Thummala Shell Interactive command interpreter A high level language (scripting) Interface to the OS Provides support for key OS ideas Isolation Concurrency

522 views • 22 slides
Tutorial 11 - Compiling and Running C Locally You will not be using Seashell outside of CS136.

Tutorial 11 - Compiling and Running C Locally You will not be using Seashell outside of CS136.

Tutorial 11 - Compiling and Running C Locally You will not be using Seashell outside of CS136. We will be covering how to compile and run C on your local machine. 1. Download a C compiler (and terminal on Windows) 2. Download a text

223 views • 7 slides
Cisco Command History Command History Cisco IOS stores EXEC commands in a buffer that is

Cisco Command History Command History Cisco IOS stores EXEC commands in a buffer that is

Cisco Command History Command History Cisco IOS stores EXEC commands in a buffer that is accessible via the show history command. By default, 10 commands* are stored, but you can set the number of commands to any value between 0 (no

291 views • 14 slides
Singularities in the Mori program for orders Daniel Chan reporting on joint work with Colin

Singularities in the Mori program for orders Daniel Chan reporting on joint work with Colin

Singularities in the Mori program for orders Daniel Chan reporting on joint work with Colin Ingalls University of New South Wales web.maths.unsw.edu.au/ danielch December 2011 Daniel Chan reporting on joint work with Colin Ingalls

212 views • 18 slides

More recommend