Presentation is loading. Please wait.

Presentation is loading. Please wait.

Lecture 28 Security II April 7, 2017

Published byAileen Singleton Modified over 5 years ago

Similar presentations

Presentation on theme: "Lecture 28 Security II April 7, 2017"— Presentation transcript:

1 Lecture 28 Security II April 7, 2017
This lecture ran over by 5-10 minutes. Probably cut down some of the password stuff? Possibly move some to previous security lecture – that was a little short. 7/7/2019 CS132 Lecture 28: Security II

2 Project Design Presentations
CS132 Lecture 28: Security II Project Design Presentations 10-15 Minute presentation of your overall design Concentrating on back end and implementation Describe and justify implementation decisions Show the overall architecture What are the primary tasks (stories) How are the tasks handled What is done in the front end, server, database, … Strategies for handling Security, scalability, testing Alternative A 3-10 page document describing the above 7/7/2019

3 Review Security is a major concern Lots of obvious problems
CS132 Lecture 28: Security II Review Security is a major concern Lots of obvious problems Lots of non-obvious problems SQL injection attacks Code insertion attacks Cross-Site Scripting attacks (XSS) File name attacks And there are others … 7/7/2019

4 Cross-Site Request Forgery
CS132 Lecture 28: Security II Cross-Site Request Forgery Suppose user logs into banking application Cookies used to validate user/session Suppose there is a URL that transfers money transfer?from=checking&to=43434&amt= Agent puts an ad on a different page Clicking on the ad, generates that URL What happens if user clicks on the ad While logged into banking application 7/7/2019

5 Cross-Site Request Forgery
CS132 Lecture 28: Security II Cross-Site Request Forgery Use a random value for each request Set on previous request, kept in session Passed back as part of any request Validated by server before the action Effective URL will be different each time Can’t be spoofed by another client (easily) Can be passed to client in various ways Sent as part of html or XMLHttpRequest Included in a hidden form field Can also be put into header for use by JavaScript Packages exist to support this 7/7/2019

6 Server Attacks Inputs from web page attack the server directly
CS132 Lecture 28: Security II Server Attacks Inputs from web page attack the server directly Outside login to server Weak passwords, user ids Access from other machines Server becomes compromised Phishing attacks 7/7/2019

7 Buffer Overflow Attack
CS132 Lecture 28: Security II Buffer Overflow Attack Code: void function(char* text) { char buf[1000]; strcpy(buf,text); // do some editing of buf // save result } Stack (high to low) 8888: <ptr to text> 8884: <return address> 8880: <old stack ptr> 7880: buf[ ] 7/7/2019

8 Preventing Buffer Overflow
CS132 Lecture 28: Security II Preventing Buffer Overflow Use “safe” languages (Java, C#, JavaScript, …) Check sizes of data before putting in array Reads, copies, inputs Use safe functions (strncpy, snprintf, …) Safe programming – don’t cut corners Randomize code locations between runs Don’t let data pages be executable 7/7/2019

9 Server Attacks Can buffer overflow happen in Java? JavaScript? Php?
CS132 Lecture 28: Security II Server Attacks Can buffer overflow happen in Java? JavaScript? Php? Even safe languages can have problems Out of memory Out of file space Run arbitrary code (malicious servlets) Tie up server for long time Java/PHP/… security problems File access, exec, eval, … Internal bugs 7/7/2019

10 What Else Can Go Wrong? PEOPLE Denial of service Timing attacks …
CS132 Lecture 28: Security II What Else Can Go Wrong? PEOPLE Denial of service Timing attacks … 7/7/2019

11 CS132 Lecture 28: Security II
Question Which is not true about password management in an application? Passwords should never be sent in clear text. Passwords can be checked by the client so that no passwords need to be stored on the server. Passwords should be saved in the server database by using a hash function such as SHA256 over the password concatenated with a user-specific seed. With proper encodings it is not easy for an attacker to determine if two users share the same password. Login with passwords is difficult to get right so you should use a tested, third-party solution to handle login. 7/7/2019

12 Logging In Common operation Should be easy What are the problems?
CS132 Lecture 28: Security II Logging In Common operation Should be easy What are the problems? What are the operations to be concerned with? Registration (initial name & password) Log in (provide name & password to validate) Access while logged in 7/7/2019

13 CS132 Lecture 28: Security II
Homework What requirements did you come up with for registration and login? 7/7/2019

14 Logging In: Threat Model
CS132 Lecture 28: Security II Logging In: Threat Model Spoofing URLs Sending lots of requests Wi-Fi snooping Internet snooping Reading logs Man-in-the-middle attacks Phishing attacks Brute force Loss of database (SQL injection attack; stolen laptop) Guessing passwords Finding duplicate passwords 7/7/2019

15 Main Concerns Not sensitive to snooping
CS132 Lecture 28: Security II Main Concerns Not sensitive to snooping Seeing what is sent one time, won’t help the attacker log in Loss of database doesn’t lose information Difficult to get passwords from database Difficult to even know if 2 users have the same password 7/7/2019

16 Sending Passwords How might you hide a password from the Internet?
CS132 Lecture 28: Security II Sending Passwords How might you hide a password from the Internet? /login?uid=spr&pwd=password Send Hash(password) to server MD5(), SH1(), SH256(), … Does this work? Server sends Hash(password) to client Each of these has problems, see if the class can figure them out. 7/7/2019

17 Sending Passwords More complex protocols
CS132 Lecture 28: Security II Sending Passwords More complex protocols Server sends random string (i.e. session id) to client Client sends Hash(string + password) to server Client sends Hash(string + hash(password)) to server Client sends Hash(string + userid + hash(password)) to server Do these work? Can they be checked by the server? What does server need to save to check these? 7/7/2019

18 Saving Passwords How to save passwords on your website?
CS132 Lecture 28: Security II Saving Passwords How to save passwords on your website? Why is this a problem? Does it matter? What if your site is compromised Users use same password for multiple sites This is something many applications do wrong Never store user passwords in plaintext Store the hash of the passwords Cryptographically secure hash function MD5, SH1, SH256, … Is this sufficient? 7/7/2019

19 Secure Password Hashing
CS132 Lecture 28: Security II Secure Password Hashing What happens if two users have the same password? What will the stored password hashes look like? What happens if users use ‘common’ passwords? Solution: “salt” the hashes. You generate a random string which is stored alongside the hashed password for each user. Can just be the user id Compute and store hash(<salt> + <password>) Is this sufficient? 7/7/2019

20 Secure Password Hashing
CS132 Lecture 28: Security II Secure Password Hashing Brute force attack on stored passwords Compute SHA256($salt . $password) for possible passwords This is relatively fast Solution: “stretch” the hashes. Instead of calling SHA256 once, call it thousands of times. Makes it more expensive to mount a brute-force attack Do you really want to write all that code? Crypto code is notoriously tricky, the bugs are subtle, and the consequences of doing it wrong are dire. 7/7/2019

21 Managing Login Doing it yourself Web page sends
CS132 Lecture 28: Security II Managing Login Doing it yourself Web page sends Hash(sessionid + Hash(userid + Hash(password)) Server stores Hash(userid + Hash(password)) Registration sends userid, Hash(userid + Hash(password)) Or just userid, Hash(password) Better yet – let someone else do it Passport, bcrypt, oauth, … packages exist to support this Support using other credentials as well (Facebook, Google, …) 7/7/2019

22 Secure Password Hashing
CS132 Lecture 28: Security II Secure Password Hashing Your thread model should look like this: 7/7/2019

23 Secure Communication Want to make it so what is sent is unreadable
CS132 Lecture 28: Security II Secure Communication Want to make it so what is sent is unreadable To anyone who can see all Internet traffic How can this be done? Encryption Recall hash functions H(X) = <random number> These are not encryption functions What is an encryption function F(X) = Y easy to compute F-1(Y) = X difficult to compute (without additional knowledge) Examples of encryption functions 7/7/2019

24 Encrypted Connections
CS132 Lecture 28: Security II Encrypted Connections Encrypt all communication Simpler solution than trying to encrypt password Between the browser and the server Handles some of the issues raised with passwords Still want to hash and mix passwords however Handles other problems as well Credit card numbers and other private information Encrypted communications are relatively standard Clients needs to agree on how to encode/decode Agreeing on an algorithm for encoding/decoding Agreeing on a key for that algorithm 7/7/2019

25 Standard Encryption Both parties agree on a key K
CS132 Lecture 28: Security II Standard Encryption Both parties agree on a key K F(K) and F-1(K) are easy to compute If you know K But are difficult if you don’t know K May even be done in hardware Standard encryption functions available DES is probably the most common encryption/decryption libraries available Most back-ends; JavaScript front end Problem: agreeing on K 7/7/2019

26 Public Key Cryptosystems
CS132 Lecture 28: Security II Public Key Cryptosystems Public Key Cryptosystems Originator has two pieces of information X and Y F(string,X) = encoded string F-1(string,X) is difficult to compute F-1(string,X,Y) is easy to compute Examples Y,Z are 200 digit primes, X is Y*Z Create a string using X such that string can only be decoded knowing the factors of X Other examples are possible This is often used as part of a secure protocol Agreeing on a key for a more secure encoding 7/7/2019

27 Browser-Server Communication
CS132 Lecture 28: Security II Browser-Server Communication Can use encrypted communication in a web app HTTPS represents an encrypted (secure) connection HTTPS is just like HTTP Except that all data passed back and forth is encrypted Browser and server agree on a key Encryption is then done based on this key This is handled by the Secure Sockets Layer (SSL) Input on a different port Many applications are HTTPS only today Browsers are starting to enforce this SSL is not specific to web applications 7/7/2019

28 HTTPS Connections Browser makes a connection to the server
CS132 Lecture 28: Security II HTTPS Connections Browser makes a connection to the server SSL handshake protocol Browser sends and requests a certificate Certificates are effectively keys that can be verified as authentic This is one way public key systems are used Server replies with a certificate of its own SSL change cipher protocol Browser and server use their certificates to agree on a key Again using a variant of public key systems Communication is done securely using that key Key is only used for this particular session 7/7/2019

29 HTTPS Usage If you are sending confidential information
CS132 Lecture 28: Security II HTTPS Usage If you are sending confidential information Even just passwords Especially credit card numbers, etc. You should use HTTPS Alternatively, use a separate service (e.g. stripe, paypal, …) OPENSSL and other implementations exist Typically built into server and browser Different port used for secure communication Integrated into Apache using Mod_SSL for example Problem: Obtaining a valid certificate 7/7/2019

30 Next Time Security LAB Prelab Form teams
CS132 Lecture 28: Security II Next Time Security LAB Prelab Form teams Get and install a copy of the insecure server, study it Make a list of vulnerabilities Teams decide whether to attack/defend (or both) Attackers: develop a set of attacks to try on Monday Defenders: fix the most obvious holes in the server for Monday Wednesday We will post the URLs for defended servers Attackers will mark the ones that are successfully attacked 7/7/2019

Download ppt "Lecture 28 Security II April 7, 2017"

Similar presentations

Nick Feamster CS 6262 Spring 2009

Nick Feamster CS 6262 Spring 2009
Chapter 17: WEB COMPONENTS

Chapter 17: WEB COMPONENTS
COMP 321 Week 12. Overview Web Application Security  Authentication  Authorization  Confidentiality Cross-Site Scripting Lab 12-1 Introduction.

COMP 321 Week 12. Overview Web Application Security  Authentication  Authorization  Confidentiality Cross-Site Scripting Lab 12-1 Introduction.
It’s always better live. MSDN Events Security Best Practices Part 2 of 2 Reducing Vulnerabilities using Visual Studio 2008.

It’s always better live. MSDN Events Security Best Practices Part 2 of 2 Reducing Vulnerabilities using Visual Studio 2008.
Information Networking Security and Assurance Lab National Chung Cheng University The Ten Most Critical Web Application Security Vulnerabilities Ryan J.W.

Information Networking Security and Assurance Lab National Chung Cheng University The Ten Most Critical Web Application Security Vulnerabilities Ryan J.W.
SSL By: Anthony Harris & Adam Shkoler. What is SSL? SSL stands for Secure Sockets Layer SSL is a cryptographic protocol which provides secure communications.

SSL By: Anthony Harris & Adam Shkoler. What is SSL? SSL stands for Secure Sockets Layer SSL is a cryptographic protocol which provides secure communications.
Lecture 16 Page 1 CS 236 Online Cross-Site Scripting XSS Many sites allow users to upload information –Blogs, photo sharing, Facebook, etc. –Which gets.

Lecture 16 Page 1 CS 236 Online Cross-Site Scripting XSS Many sites allow users to upload information –Blogs, photo sharing, Facebook, etc. –Which gets.
Martin Kruliš 2. 4. 2015 by Martin Kruliš (v1.0)1.

Martin Kruliš by Martin Kruliš (v1.0)1.
CRYPTOGRAPHY PROGRAMMING ON ANDROID Jinsheng Xu Associate Professor North Carolina A&T State University.

CRYPTOGRAPHY PROGRAMMING ON ANDROID Jinsheng Xu Associate Professor North Carolina A&T State University.
Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,

Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,
Lecture 14 – Web Security SFDV3011 – Advanced Web Development 1.

Lecture 14 – Web Security SFDV3011 – Advanced Web Development 1.
Lecture 16 Page 1 CS 236 Online SQL Injection Attacks Many web servers have backing databases –Much of their information stored in a database Web pages.

Lecture 16 Page 1 CS 236 Online SQL Injection Attacks Many web servers have backing databases –Much of their information stored in a database Web pages.
Databases and security continued CMSC 461 Michael Wilson.

Databases and security continued CMSC 461 Michael Wilson.
CS453: State in Web Applications (Part 1) State in General Sessions (esp. in PHP) Prof. Tom Horton.

CS453: State in Web Applications (Part 1) State in General Sessions (esp. in PHP) Prof. Tom Horton.
Protecting Internet Communications: Encryption  Encryption: Process of transforming plain text or data into cipher text that cannot be read by anyone.

Protecting Internet Communications: Encryption  Encryption: Process of transforming plain text or data into cipher text that cannot be read by anyone.
Feedback #2 (under assignments) Lecture Code:

Feedback #2 (under assignments) Lecture Code:
School of Computing and Information Systems CS 371 Web Application Programming Security Avoiding and Preventing Attacks.

School of Computing and Information Systems CS 371 Web Application Programming Security Avoiding and Preventing Attacks.
All Input is Evil (Part 1) Introduction Will not cover everything Healthy level of paranoia Use my DVD Swap Shop application (week 2)

All Input is Evil (Part 1) Introduction Will not cover everything Healthy level of paranoia Use my DVD Swap Shop application (week 2)
SEC835 Runtime authentication Secure session management Secure use of cryptomaterials.

SEC835 Runtime authentication Secure session management Secure use of cryptomaterials.
Ram Santhanam Application Level Attacks - Session Hijacking & Defences

Ram Santhanam Application Level Attacks - Session Hijacking & Defences

Similar presentations

Ads by Google