Presentation is loading. Please wait.

Presentation is loading. Please wait.

10: Remoting Securing System.Runtime.Remoting

Published bySheryl Small Modified over 6 years ago

Similar presentations

Presentation on theme: "10: Remoting Securing System.Runtime.Remoting"— Presentation transcript:

1 10: Remoting Securing System.Runtime.Remoting
Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

2 Why bother securing .NET remoting?
.NET remoting will mainly be used on a corporate intranet the corporate intranet is protected by firewalls so aren’t we safe from external attacks? Firewalls can slow down external attacks, but they aren’t a silver bullet the best defenses are layered ones insider attacks can be much more devastating ignore security on the intranet at your own peril Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

3 Solution one: hosting in IIS
10: Remoting Solution one: hosting in IIS ASP.NET comes with a special handler for remoting HttpRemotingHandlerFactory Reads server remoting configuration from web.config Passes HTTP requests through to remoting channel requires that you use Http channel you can use any formatter you like (binary, soap, custom) Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

4 HttpRemotingHandlerFactory class foo : MarshalByRefObject
10: Remoting Hosting in IIS ASP.NET Pipeline modules HttpRemotingHandlerFactory class foo : MarshalByRefObject worker process Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

5 How to host in IIS Set up a virtual directory in IIS
10: Remoting How to host in IIS Set up a virtual directory in IIS Build server object into a library assembly (.DLL) drop this assembly into “bin” directory under vroot, or install in GAC Create a web.config file and wire it all up must use http channel when hosting in IIS prefer binary formatter for efficiency server URI must end with “.soap” or “.rem” to map to .NET remoting handler in ASP.NET pipeline Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

6 web.config example <configuration>
10: Remoting web.config example <configuration> <system.runtime.remoting> <application> <channels> <channel ref='http'> <serverProviders> <formatter ref='binary'/> </serverProviders> </channel> </channels> <service> <wellknown mode='Singleton' type='Calc, server' objectUri='calc.soap'/> </service> </application> </system.runtime.remoting> </configuration> This should look familiar to anyone who has written a normal .NET remoting configuration file (which is normally processed via RemotingConfiguration.Configure(filename). Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

7 Client configuration <configuration>
10: Remoting Client configuration <configuration> <system.runtime.remoting> <application> <channels> <channel ref='http' useDefaultCredentials='true'> <serverProviders> <formatter ref='binary'/> </serverProviders> </channel> </channels> <service> <wellknown mode='Singleton' type='Calc, server' objectUri='calc.soap'/> </service> </application> </system.runtime.remoting> </configuration> This should look familiar to anyone who has written a normal .NET remoting configuration file (which is normally processed via RemotingConfiguration.Configure(filename). Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

8 Security goals Authentication Message Integrity
10: Remoting Security goals Authentication Message Integrity Message Confidentiality Authorization Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

9 Security when hosting in IIS
10: Remoting Security when hosting in IIS IIS has many options for authentication basic digest integrated (Kerberos) SSL (optionally with client certs) SSL is required if you want message integrity message confidentiality mutual authentication Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

10 Typical configurations: SSL + Basic Authentication
10: Remoting Typical configurations: SSL + Basic Authentication Benefits: works well with firewalls & proxies passwords easy to work with for clients provides mutual authentication, integrity, confidentiality Drawbacks: doesn’t leverage single sign on (client must provide cleartext password) server code has access to client’s cleartext password Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

11 Typical configurations: Integrated Authentication (Kerberos)
10: Remoting Typical configurations: Integrated Authentication (Kerberos) Benefits: leverages single sign on great for Intranet clients Drawbacks: generally does not work with firewalls or proxies must add SSL into the mix to achieve mutual authentication message integrity message confidentiality Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

12 Typical configurations: SSL with client certificates
10: Remoting Typical configurations: SSL with client certificates Benefits: works well with firewalls & proxies provides mutual authentication, integrity, confidentiality Drawbacks: human clients have trouble managing personal certificates certificates aren’t as mobile as passwords smart cards can help here Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

13 Authorization When hosting in IIS, your server code runs under ASP.NET
10: Remoting Authorization When hosting in IIS, your server code runs under ASP.NET To get access to the client principal, be sure to set authentication mode to “Windows” this is the default setting in machine.config anyway Use normal ASP.NET techniques for authorization Thread.CurrentPrincipal.IsInRole() PrincipalPermission PrincipalPermissionAttribute Uncaught exceptions will propagate back to client this is bad (includes a server-side stack trace) trap, log, and rethrow exception at top level of call to avoid giving away too much information consider using a remoting sink to automate this Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

14 IIS hosting and callbacks
10: Remoting IIS hosting and callbacks Callbacks will be completely unsecured No authentication No message integrity protection No message confidentiality protection We really need a built-in solution Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

15 Solution two: the SSPI remoting sink
In August, 2002, Microsoft published two unsupported samples for the .NET Framework SSPI wrapper[1] Remoting security channel sinks[2] To use, must install both on client and server Uses SSPI to add security (e.g., Kerberos) to the channel authentication message integrity message confidentiality [1] [2] Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

16 The SSPI remoting sink Does not require IIS Does not require SSL
Doesn’t fall down in the face of callbacks Will eventually be built in (but not in Everett) Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

17 Using the SSPI remoting sink
Wire the sink into the channel via configuration file must do this on both client and server Use remoting like you normally would current sample autoimpersonates client this is broken, watch for fix in future Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

18 client.exe.config <configuration>
10: Remoting client.exe.config <configuration> <system.runtime.remoting> <application> <channels> <channel ref='http'> <clientProviders> <formatter ref='binary'/> <provider ref='sspi' securityPackage='kerberos' impersonationLevel='impersonate' authenticationLevel='packetPrivacy'/> </clientProviders> </channel> </channels> </application> </system.runtime.remoting> </configuration> Note that order is important – the sspi provider must come *after* the formatter on the client side. Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

19 server.exe.config impersonationLevel='impersonate'
10: Remoting server.exe.config <configuration> <system.runtime.remoting> <application> <channels> <channel ref='http' port='4243'> <serverProviders> <provider ref='sspi' securityPackage='kerberos' impersonationLevel='impersonate' authenticationLevel='packetPrivacy'/> <formatter ref='binary'/> </serverProviders> </channel> </channels> <service> <wellknown type='Bob, server' mode='Singleton' objectUri='bob'/> </service> </application> </system.runtime.remoting> </configuration> Note that order is important, on the server side the provider must come *before* formatter. This is the opposite order from the client. Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

20 10: Remoting machine.config The preceding example config files made use of ref='sspi' adjust machine.config as follows to make this work <system.runtime.remoting> <!-- other stuff omitted for brevity --> <channelSinkProviders> <clientProviders> <formatter id="soap" ... /> <formatter id="binary" ... /> <provider id="sspi" type="see notes"/> </clientProviders> <serverProviders> </serverProviders> </channelSinkProviders> </system.runtime.remoting> The type attribute should be set to something that looks like this: "Microsoft.Samples.Runtime.Remoting.Security.SecurityClientChannelSinkProvider, Microsoft.Samples.Runtime.Remoting.Security, Version= , Culture=neutral, PublicKeyToken=9f0928b6ea506bde" Since the version and public key may change over time, the safest way to get the assembly name part of this string is to run the following command: gacutil -l Microsoft.Samples.Runtime.Remoting.Security This will show you the full strong names of all versions of the remoting sample assembly. Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

21 Summary .NET remoting has no built in, supported, security model
Can layer security on by hosting in IIS Can layer security on using an unsupported sample from MS Expect improvement in the future (not Everett, though ) Essential .NET Security © 2003 DevelopMentor, Inc. 11/3/2003

Download ppt "10: Remoting Securing System.Runtime.Remoting"

Similar presentations

.NET Remoting in Delphi and C# Alain “Lino” Tadros President & CEO Falafel Software Inc. ComponentScience Inc. BORCON 2004.

.NET Remoting in Delphi and C# Alain “Lino” Tadros President & CEO Falafel Software Inc. ComponentScience Inc. BORCON 2004.
XML Web Services in Visual Studio ®.NET NameTitleCompany.

XML Web Services in Visual Studio ®.NET NameTitleCompany.
Chapter 7 HARDENING SERVERS.

Chapter 7 HARDENING SERVERS.
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.

K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
Implementing Native Mode and Internet Based Client Management.

Implementing Native Mode and Internet Based Client Management.
Distributed Systems Tutorial 2 -.NET Remoting. 2 What is Remoting?  Remoting allows you to pass objects or values across servers in different domains.

Distributed Systems Tutorial 2 -.NET Remoting. 2 What is Remoting?  Remoting allows you to pass objects or values across servers in different domains.
© 2007 Charteris plc20 June 2015 1 1 Extending Web Service Security with WS-* Presented by Chris Seary MVP Charteris plc, 39-40 Bartholomew Close, London.

© 2007 Charteris plc20 June Extending Web Service Security with WS-* Presented by Chris Seary MVP Charteris plc, Bartholomew Close, London.
.NET Deployment Matt Smouse CSE775 – Distributed Objects Spring 2003.

.NET Deployment Matt Smouse CSE775 – Distributed Objects Spring 2003.
Using Internet Information Server And Microsoft ® Internet Explorer To Implement Security On The Intranet HTTP.

Using Internet Information Server And Microsoft ® Internet Explorer To Implement Security On The Intranet HTTP.
Internet Information Server (IIS)

Internet Information Server (IIS)
Jonas Thomsen, Ph.d. student Computer Science University of Aarhus Best Practices and Techniques for Building Secure Microsoft.

Jonas Thomsen, Ph.d. student Computer Science University of Aarhus Best Practices and Techniques for Building Secure Microsoft.
Course 201 – Administration, Content Inspection and SSL VPN

Course 201 – Administration, Content Inspection and SSL VPN
Internet Information Server 6.0. Overview  What’s New in IIS 6.0?  Built-in Accounts and IIS 6.0  IIS Pass-Through Authentication  Securing Web Traffic.

Internet Information Server 6.0. Overview  What’s New in IIS 6.0?  Built-in Accounts and IIS 6.0  IIS Pass-Through Authentication  Securing Web Traffic.
1 Infrastructure Hardening. 2 Objectives Why hardening infrastructure is important? Hardening Operating Systems, Network and Applications.

1 Infrastructure Hardening. 2 Objectives Why hardening infrastructure is important? Hardening Operating Systems, Network and Applications.
Session 11: Security with ASP.NET

Session 11: Security with ASP.NET
70-284 MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter Four Configuring Outlook and Outlook Web Access.

MCSE Guide to Microsoft Exchange Server 2003 Administration Chapter Four Configuring Outlook and Outlook Web Access.
The Windows NT ® 5.0 Public Key Infrastructure Charlie Chase Program Manager Windows NT Security Microsoft Corporation.

The Windows NT ® 5.0 Public Key Infrastructure Charlie Chase Program Manager Windows NT Security Microsoft Corporation.
© FPT SOFTWARE – TRAINING MATERIAL – Internal use 04e-BM/NS/HDCV/FSOFT v2/3 Securing a Microsoft ASP.NET Web Application.

© FPT SOFTWARE – TRAINING MATERIAL – Internal use 04e-BM/NS/HDCV/FSOFT v2/3 Securing a Microsoft ASP.NET Web Application.
11 Web Services. 22 Objectives You will be able to Say what a web service is. Write and deploy a simple web service. Test a simple web service. Write.

11 Web Services. 22 Objectives You will be able to Say what a web service is. Write and deploy a simple web service. Test a simple web service. Write.
1 Web services and security ---discuss different ways to enforce security Presenter: Han, Xue.

1 Web services and security ---discuss different ways to enforce security Presenter: Han, Xue.

Similar presentations

Ads by Google