Presentation is loading. Please wait.

Presentation is loading. Please wait.

Hiding Information, Encryption, and Bypasses

Published byHeinz Kästner Modified over 5 years ago

Similar presentations

Presentation on theme: "Hiding Information, Encryption, and Bypasses"— Presentation transcript:

1 Hiding Information, Encryption, and Bypasses
CS-695 Host Forensics Georgios Portokalidis

2 CS-695 Host Forensics Hiding Information
Why Hide Information? Preserve privacy Data-loss prevention Hide illegal activities/incriminating evidence Protect confidential information Protect trade secrets 4/16/2013 CS-695 Host Forensics Hiding Information

3 How Would you Hide Information
Make it hard to find Hide among other information Make it “unreadable” Encode information – use cryptography All of the above Plausible deniability 4/16/2013 CS-695 Host Forensics Hiding Information

4 Different Types of Encryption
What other types can you think of? /home /usr /etc /encrypted_dir / /dev/sda1 /dev/sda2 Full disk File/directory based 4/16/2013 CS-695 Host Forensics Hiding Information

5 Different Types of Encryption
What other types can you think of? /home /usr /etc /encrypted_dir / Partition based /dev/sda1 /dev/sda2 Full disk File/directory based 4/16/2013 CS-695 Host Forensics Hiding Information

6 Different Types of Encryption
What other types can you think of? /home /usr /etc /encrypted_dir / Partition based Hiding in slack space Example: with bmap /dev/sda1 /dev/sda2 Full disk File/directory based 4/16/2013 CS-695 Host Forensics Hiding Information

7 Decoy Operating Systems
TrueCrypt hidden partitions Deniable encryption Many other tools 4/16/2013 CS-695 Host Forensics Hiding Information

8 Other Data Hiding Locations
Store in “bad” data blocks The disk controller will hide this information 4/16/2013 CS-695 Host Forensics Hiding Information

9 Steganography Hiding data within data Very simple example
least significant bit (LSB) insertion 4/16/2013 CS-695 Host Forensics Hiding Information

10 Security Analysis and Decryption of Lion Full Disk Encryption
4/16/2013 CS-695 Host Forensics Hiding Information

11 CS-695 Host Forensics Hiding Information
Overview Apple introduced FileVault in Mac OS X Lion Volume encryption support similar to existing systems E.g., TrueCrypt, PGP whole disk encryption, BitLocker Volumes provide an abstraction that can group multiple partitions Challenges: Closed system No documentation Closed source Builds on CoreStorage volume manager Provides the extra layer needed to support the encryption 4/16/2013 CS-695 Host Forensics Hiding Information

12 CS-695 Host Forensics Hiding Information
Issues Where is the code that decrypts the volume? How is the encryption key derived? Where is it stored? How is encryption itself applied? AES 128bits key = 22 characters User password = n characters Where is the rest 22 – n? TPM SmartCard USB 4/16/2013 CS-695 Host Forensics Hiding Information

13 CS-695 Host Forensics Hiding Information
Key Derivation More than one keys/passwords 4/16/2013 CS-695 Host Forensics Hiding Information

14 CS-695 Host Forensics Hiding Information
Encryption Same data can result in the same ciphertext Solution: include block number in encryption Bit flipping issues See paper Disk block AES blocks 4/16/2013 CS-695 Host Forensics Hiding Information

15 Multiple Keys Must Decrypt the Master Key
Password Recovery Key Password Recovery Key Master Volume Key Secondary Value 1 Secondary Value 2 Master Volume Key 4/16/2013 CS-695 Host Forensics Hiding Information

16 CS-695 Host Forensics Hiding Information
4/16/2013 CS-695 Host Forensics Hiding Information

17 CS-695 Host Forensics Hiding Information
Attacking The Vault Guessing the randomly generated keys 4/16/2013 CS-695 Host Forensics Hiding Information

18 Pseudo Random Number Generators (PRNG)
Random numbers are generated based on a seed Full sequence of random numbers can be predicted if the seed is known PRNG state is preserved across boots “Real” randomness or entropy is usually used to determine the seed How much entropy does FileVault have ? 4/16/2013 CS-695 Host Forensics Hiding Information

19 CS-695 Host Forensics Hiding Information
Attacking The Vault 2 Leftover unencrypted data Unencrypted metadata can allow us to track the blocks that actually contain encrypted data Unencrypted data can expose user data 4/16/2013 CS-695 Host Forensics Hiding Information

20 CS-695 Host Forensics Hiding Information
Attacking The Vault 3 Attacking the user password PBKDF2 generates a key based on salt and password Multiple hashing iterations ensure it’s hard to crack FileVault uses 41K iterations 4/16/2013 CS-695 Host Forensics Hiding Information

21 CS-695 Host Forensics Hiding Information
Attacking The Vault 3 Brute forcing requires about 34 years But… What if the user password is weak Example: 6 characters or a 4-digit pin About 6 hours Known 41K iterations known 4/16/2013 CS-695 Host Forensics Hiding Information

22 CS-695 Host Forensics Hiding Information
Improving FileVault Secondary keys like the salt and key-encryption-keys need to be better guarded Or rely on user to enter long passwords Not likely to happen1 TPM systems can help there Keys can be stored safely in the TPM 4/16/2013 CS-695 Host Forensics Hiding Information

23 CS-695 Host Forensics Hiding Information
Cold Boot Attacks Cold Boot Attacks on Encryption Keys FROST: Forensic Recovery Of Scrambled Telephones 4/16/2013 CS-695 Host Forensics Hiding Information

24 CS-695 Host Forensics Hiding Information
4/16/2013 CS-695 Host Forensics Hiding Information

Download ppt "Hiding Information, Encryption, and Bypasses"

Similar presentations

White-Box Cryptography

White-Box Cryptography
Operating Systems Security 1. The Boot Sequence The action of loading an operating system into memory from a powered-off state is known as booting or.

Operating Systems Security 1. The Boot Sequence The action of loading an operating system into memory from a powered-off state is known as booting or.
Operating Systems Security 1. The Boot Sequence The action of loading an operating system into memory from a powered-off state is known as booting or.

Operating Systems Security 1. The Boot Sequence The action of loading an operating system into memory from a powered-off state is known as booting or.
CSUF Chapter 3.2 1. CSUF Operating Systems Security 2.

CSUF Chapter CSUF Operating Systems Security 2.
251959084756578934940271832400483985714 292821262040320277771378360436620207075 955562640185258807844069182906412495150 821892985591491761845028084891200728449.

Section 3.2: Operating Systems Security

Section 3.2: Operating Systems Security
Security+ Guide to Network Security Fundamentals, Fourth Edition

Security+ Guide to Network Security Fundamentals, Fourth Edition
Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.

Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.
Cryptography (continued). Enabling Alice and Bob to Communicate Securely m m m Alice Eve Bob m.

Cryptography (continued). Enabling Alice and Bob to Communicate Securely m m m Alice Eve Bob m.
CS 591 C3S C ryptography & S teganography S ecure S ystem By: Osama Khaleel.

CS 591 C3S C ryptography & S teganography S ecure S ystem By: Osama Khaleel.
Computer Security CS 426 Lecture 3

Computer Security CS 426 Lecture 3
0x1A Great Papers in Computer Security

0x1A Great Papers in Computer Security
File System and Full Volume Encryption Sachin Patel CSE 590TU 3/9/2006.

File System and Full Volume Encryption Sachin Patel CSE 590TU 3/9/2006.
Encryption Methods By: Michael A. Scott 20140508.

Encryption Methods By: Michael A. Scott
Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.

Chapter 8.  Cryptography is the science of keeping information secure in terms of confidentiality and integrity.  Cryptography is also referred to as.
ENCRYPTION Coffee Hour for August 2014. HISTORY OF ENCRYPTION Scytale Ciphers – paper wrapped around rod, receiver needed same size rod to get the message.

ENCRYPTION Coffee Hour for August HISTORY OF ENCRYPTION Scytale Ciphers – paper wrapped around rod, receiver needed same size rod to get the message.
Easy Encryption: OS X and Windows 2K/Xp Shawn Sines OARTech August 8, 2007.

Easy Encryption: OS X and Windows 2K/Xp Shawn Sines OARTech August 8, 2007.
TRUECRYPT.

TRUECRYPT.
Mac OS Lion Memory Forensics Using IEEE 1394 to Bypass FileVault 2 Full Volume Encryption. Todd Garrison September 18, 2011.

Mac OS Lion Memory Forensics Using IEEE 1394 to Bypass FileVault 2 Full Volume Encryption. Todd Garrison September 18, 2011.
CWNA Guide to Wireless LANs, Second Edition Chapter Eight Wireless LAN Security and Vulnerabilities.

CWNA Guide to Wireless LANs, Second Edition Chapter Eight Wireless LAN Security and Vulnerabilities.

Similar presentations

Ads by Google