using frankencerts for automated adversarial testing of
play

Using Frankencerts for Automated Adversarial Testing of Certificate - PowerPoint PPT Presentation

Jul 12, 2023 •21 likes •201 views

Using Frankencerts for Automated Adversarial Testing of Certificate Validation in SSL/TLS Implementations Chad Brubaker Suman Jana Baishakhi Ray Sarfraz Khurshid Vitaly Shmatikov 116033910063 Content SSL/TLS

  1. Using Frankencerts for Automated Adversarial Testing of Certificate Validation in SSL/TLS Implementations Chad Brubaker Suman Jana Baishakhi Ray Sarfraz Khurshid Vitaly Shmatikov 116033910063 黄中月

  2. Content • SSL/TLS Protocol • Implementation Correctness • Certificate Generation • Differential Testing • Conclusion

  3. SSL/TLS Protocol • End-to-end security even if the network is insecure • Authentication = certificate validation • Confidentiality • Integrity

  4. SSL/TLS Protocol • Server authentication • X.509 certificate validation • Chain of trust • Basic constraints • Name constraints • Key usage • Hostname • Time • …

  5. Implementation Correctness • Problem1: generating test inputs • Structurally complex data = Huge input space • Approach • Simple automated technique (Ex: random fuzzing) • A fuzzed string won't even parse as an X.509 cert • Manually creating certificates • Manually creating a high-quality suite is simply infeasible

  6. Implementation Correctness • Problem2: interpreting test results test SSL/TLS accept/reject certificate implementation

  7. Implementation Correctness • Problem1: generating test inputs • Frankencerts • Problem2: interpreting test results • Differential Testing

  8. Certificate Generation • Requirements • Syntactically correct • Semantically bad • Scale to millions of certs • X.509 certificate structure • Multilayered structured data • Syntactic constraints • Ex: Version must be an integer • Semantic constraints • Ex: Version must be 0, 1, or 2

  9. Certificate Generation • Step 1: collect 243,246 certificates

  10. Certificate Generation • Step 2: generate 8,127,600 frankencerts

  11. Certificate Generation • Step 3: mutate a few pieces

  12. Differential Testing • 9 open-source SSL/TLS libraries • 6 Web browsers

  13. Differential Testing • Results • 15 root causes • 208 discrepancies • 62,022 frankencerts • Error Reporting • Expired (E) • Bad issuer (I) • Bad name (N)

  14. Differential Testing • Results

  15. Differential Testing • Error Reporting

  16. Differential Testing • Ex. Google Chrome

  17. Conclusion • Differential testing with frankencerts is an effective technique for finding flaws in SSL/TLS implementations • The code is available at: https://github.com/sumanj/frankencert

  18. Thanks Q&A

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Automated testing for multiplayer Game AI Automated testing for multiplayer Game AI in Sea of

Automated testing for multiplayer Game AI Automated testing for multiplayer Game AI in Sea of

Automated testing for multiplayer Game AI Automated testing for multiplayer Game AI in Sea of Thieves in Sea of Thieves Robert Masella Rare - Microsoft Studios About Me About Me Senior Gameplay Engineer Worked on: Banjo Kazooie:

785 views • 55 slides
Testing Testing one two, one two! Setting up an automated testing environment for Samba on

Testing Testing one two, one two! Setting up an automated testing environment for Samba on

Testing Testing one two, one two! Setting up an automated testing environment for Samba on Gluster Sachin Prabhu Michael Adam sprabhu@redhat.com obnox@samba.org 1 Agenda Setting up of an automated testing environment for Samba on Gluster

519 views • 23 slides
Combinatorial Testing Automated testing and J.P . Galeotti - Alessandra Gorla verification

Combinatorial Testing Automated testing and J.P . Galeotti - Alessandra Gorla verification

Combinatorial Testing Automated testing and J.P . Galeotti - Alessandra Gorla verification Wednesday, November 28, 12 Combinatorial testing: Basic idea Identify distinct attributes that can be varied In the data, environment, or

1.02k views • 52 slides
Enterprise Automated Testing System Integration North American Distributor ATaaS Technology

Enterprise Automated Testing System Integration North American Distributor ATaaS Technology

ATN-Emulator Enterprise Automated Testing System Integration North American Distributor ATaaS Technology Overview ATaaS (Automated Testing as a Service) is an end-to-end automated POS (Point of Sale) testing system with a robotic arm for

155 views • 14 slides
Eiffel Testing Framework (ETF): Automated Regression & Acceptance Testing EECS3311 A & E:

Eiffel Testing Framework (ETF): Automated Regression & Acceptance Testing EECS3311 A & E:

Eiffel Testing Framework (ETF): Automated Regression & Acceptance Testing EECS3311 A & E: Software Design Fall 2020 C HEN -W EI W ANG Learning Objectives Upon completing this lecture, you are expected to understand: 1. User Interface :

775 views • 22 slides
Towards Automated Testing of Web Service Choreographies Felipe Besson, Pedro Leal, Fabio Kon and

Towards Automated Testing of Web Service Choreographies Felipe Besson, Pedro Leal, Fabio Kon and

Towards Automated Testing of Web Service Choreographies Felipe Besson, Pedro Leal, Fabio Kon and Alfredo Goldman 6th International University of So Paulo Workshop on Automated Dejan Milojicic Software Testing Hewlett Packard Laboratories

248 views • 12 slides
Structural and dataflow testing (cont.) Automated testing and J.P . Galeotti - Alessandra Gorla

Structural and dataflow testing (cont.) Automated testing and J.P . Galeotti - Alessandra Gorla

Structural and dataflow testing (cont.) Automated testing and J.P . Galeotti - Alessandra Gorla verification Thursday, January 17, 13 Structural testing Judging test suite thoroughness based on the structure of the program itself Also

944 views • 80 slides
Cloud9 Parallel Symbolic Execution for Automated Real-World Software Testing Stefan Bucur, Vlad

Cloud9 Parallel Symbolic Execution for Automated Real-World Software Testing Stefan Bucur, Vlad

Cloud9 Parallel Symbolic Execution for Automated Real-World Software Testing Stefan Bucur, Vlad Ureche, Cristian Zamfir, George Candea School of Computer and Communication Sciences Automated Software Testing Automated Industrial Techniques

1.25k views • 59 slides
Web Applications Testing Automated testing and JP Galeotti, Alessandra Gorla verification

Web Applications Testing Automated testing and JP Galeotti, Alessandra Gorla verification

Web Applications Testing Automated testing and JP Galeotti, Alessandra Gorla verification Thursday, January 31, 13 Why are Web applications different Web 1.0: Static content Client and Server side execution Different components and

442 views • 33 slides
Integration, System and Regression Testing Automated testing and J.P .Galeotti Alessandra Gorla

Integration, System and Regression Testing Automated testing and J.P .Galeotti Alessandra Gorla

Integration, System and Regression Testing Automated testing and J.P .Galeotti Alessandra Gorla verification Thursday, January 31, 13 Actual Needs and Delivered User Acceptance (alpha, beta test) Constraints Package Review System

999 views • 69 slides
Required Tutorial Eiffel Testing Framework (ETF): Automated Regression & Acceptance Testing

Required Tutorial Eiffel Testing Framework (ETF): Automated Regression & Acceptance Testing

Required Tutorial Eiffel Testing Framework (ETF): Automated Regression & Acceptance Testing All technical details of ETF are discussed in this tutorial series: https://www.youtube.com/playlist?list=PL5dxAmCmjv_ EECS3311 A & E: Software

447 views • 6 slides
Software testing Software Testing Introduction Testing levels Automated testing Principles and

Software testing Software Testing Introduction Testing levels Automated testing Principles and

Introduction Testing levels Automated testing Principles and testability Coverage Criteria Points for thought Software testing Software Testing Introduction Testing levels Automated testing Principles and testability Coverage Criteria

892 views • 55 slides
Neglected topics CS 446 Adversarial examples and deep networks 1 / 23 Adversarial

Neglected topics CS 446 Adversarial examples and deep networks 1 / 23 Adversarial

Neglected topics CS 446 Adversarial examples and deep networks 1 / 23 Adversarial examples? Standard ML setup: We have training data; try to do well on withheld testing data. Adversarial/robust ML setup: We have training

672 views • 27 slides
Introduction to software testing and quality process Automated testing and J.P . Galeotti -

Introduction to software testing and quality process Automated testing and J.P . Galeotti -

Introduction to software testing and quality process Automated testing and J.P . Galeotti - Alessandra Gorla verification Engineering processes Engineering disciplines pair construction activities activities that check intermediate

801 views • 58 slides
Evolution of Automated Testing for Enterprise Systems BNSF BNSF Automation Time Line Automated

Evolution of Automated Testing for Enterprise Systems BNSF BNSF Automation Time Line Automated

P R E S E N T A T I O N Presentation Bios F8 Friday, November 2, 2001 11:15 AM E VOLUTION OF A UTOMATED T ESTING FOR E NTERPRISE S YSTEMS Cherie Coles BNSF Railroad International Conference On Software Testing Analysis & Review October

348 views • 22 slides
Testing for the Unexpected: An Automated T ti f th U t d A A t t d Method of Injecting

Testing for the Unexpected: An Automated T ti f th U t d A A t t d Method of Injecting

Testing for the Unexpected: An Automated T ti f th U t d A A t t d Method of Injecting Faults for Engine Management Development M t D l t Scott James Applied Dynamics International Sh Shaun Fuller Pickering Interfaces F ll

353 views • 18 slides
Public-Private proposal for a European Cloud Security Certification Scheme C5 success story and

Public-Private proposal for a European Cloud Security Certification Scheme C5 success story and

Berlin 2 nd April 2019 Public-Private proposal for a European Cloud Security Certification Scheme C5 success story and the way forward to a European certification for cloud services Clemens Doubrava Head of Section of Information Security in

367 views • 36 slides
EU EU-SEC The European Security Certification Framework EU-SEC working package 4 (WP4) T4.1/D4.1

EU EU-SEC The European Security Certification Framework EU-SEC working package 4 (WP4) T4.1/D4.1

EU EU-SEC The European Security Certification Framework EU-SEC working package 4 (WP4) T4.1/D4.1 EU-SEC D4.1 SI-MPA audit report 30 January, 2019 1 In Introduction The deliverable (D4.1) present an execution of audit pilot in the

278 views • 8 slides
CYBERSECURITY CERTIFICATION PROGRAMS Workforce Training Need 30% more computer and network

CYBERSECURITY CERTIFICATION PROGRAMS Workforce Training Need 30% more computer and network

CYBERSECURITY CERTIFICATION PROGRAMS Workforce Training Need 30% more computer and network workers needed from 2008 to 2018 1 ; 433 New Mexico IT job postings in 2012 for security- specific positions 2 ; 110,000 information assurance

144 views • 11 slides
Safety and Security Certification Program Safety and Security Certification A process to

Safety and Security Certification Program Safety and Security Certification A process to

Safety and Security Certification Program Safety and Security Certification A process to assure that safety & security concerns, vulnerabilities, and hazards are adequately addressed prior to the initiation of service. Safety and

97 views • 9 slides
Data Security Breaches: Problems And Solutions Steven C. Bennett With a combination of risk

Data Security Breaches: Problems And Solutions Steven C. Bennett With a combination of risk

Data Security Breaches: Problems And Solutions Steven C. Bennett With a combination of risk assessment, technical solutions, and stafg training, it is possible to keep data secure. InformatIon Is the new currency of commerce. Sensitive data,

380 views • 6 slides
NPA 2019-07 Management of Information Security Risks Summary of Discussion: AMC & GM

NPA 2019-07 Management of Information Security Risks Summary of Discussion: AMC & GM

NPA 2019-07 Management of Information Security Risks Summary of Discussion: AMC & GM Jean-Paul Moreaux Principle Cybersecurity in Aviation Coordinator 2 nd July 2019 EASA Workshop on NPA 2019-07 Your safety is our mission. An Agency

123 views • 9 slides
CYNERGISTEK I N V E S T O R P R E S E N TAT I O N NYSE AMERICAN: CTEK SAFE HARBOR STATEMENTS

CYNERGISTEK I N V E S T O R P R E S E N TAT I O N NYSE AMERICAN: CTEK SAFE HARBOR STATEMENTS

CYNERGISTEK I N V E S T O R P R E S E N TAT I O N NYSE AMERICAN: CTEK SAFE HARBOR STATEMENTS This presentation contains, and our officers and representatives may from time to time make, forward-looking statements within the meaning of the

509 views • 23 slides
(And How to Improve It) A Complimentary Webinar From healthsystemCIO.com Your Line Will Be

(And How to Improve It) A Complimentary Webinar From healthsystemCIO.com Your Line Will Be

Understanding Your Security Posture (And How to Improve It) A Complimentary Webinar From healthsystemCIO.com Your Line Will Be Silent Until Our Event Begins at 12:00 ET Thank You! Slide Deck: http://goo.gl/700LIu Webex Support

556 views • 21 slides

More recommend