Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Security of Embedded Systems 27.1.2010: remote access, wireless networks Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Information Security of Embedded Systems 27.1.2010: remote access, wireless networks Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer."— Presentation transcript:

1 Information Security of Embedded Systems 27.1.2010: remote access, wireless networks Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST

2 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 20102 Structure 1. Introductory example 2. Embedded systems engineering 1.definitions and terms 2.design principles 3. Foundations of security 1.threats, attacks, measures 2.construction of safe systems 4. Design of secure systems 1.design challenges 2.safety modelling and assessment 3.cryptographic algorithms 5. Communication of embedded systems 1.remote access 2.sensor networks 6. Algorithms and measures 1.digital signatures 2.key management 3.authentication 4.authorization 7. Formal methods for security 1.protocol verification 2.logics and proof methods

3 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 20103 Communication of Embedded Systems Various wired and wireless bus systems are being used  CAN, LIN, MOST, I2C, …  GSM, UMTS, …  WiFi, Bluetooth, … Security considerations  general rule: newer standards are more secure  known problems with nearly all standards

4 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 20104 Wireless Data Communication History: replacement of cables  First: “make it work”  Then: specialization (application-specific)  Now: security vs. resource limitations Trend: All IP  coalescence of telephone and data communication (“B3G”, “NGN”, “4G”)  data- vs. knowledge-communication, semantic net

5 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 20105 WLAN (802.11x) 802.11 a,b (1999); 802.11 g,h(2003) Widely used (2003 Intel Centrino) Point-to-point and Access-point networking Local data transfer, internet-connectivity, integration in company or private networks Air frequencies openly accessible (cf. mobile phones) Threats: illegitimate foreign hard disk access, unauthorized use of connectivity, unauthorized data access, masking and fake identities

6 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 20106 WLAN Security Measures Frequency hopping (  pseudo-random) SSID cloaked mode (  eavesdropping) MAC address control (  spoofing) VPN and CHAP (Server must know user passwords, Client calculates hash key  possible attacks) WEP (  next slide) WPA with EAP and TKIP

7 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 20107 WEP “Wired Equivalent Privacy”, Authentication & secured communication via symmetric encryption and checksums Authentication by challenge-response; client proves knowledge of the common key  up to 4 keys are possible; choice by client; 40 bit weak  all user (and all access points) need to know the key(s); key exchange difficult  access point does not authentify itself to the client! - sending of challenges, analysing responses - denial-of-service, logoff of clients Checksums (CRC) instead of secure hashing  modification and generation of messages even without key!  redirection of communication (IP-address-faking)

8 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 20108 WEP-Attack 1 CRC-property: CRC(M  M’)=CRC(M)  CRC(M’) RC-4-property: M  Key  Key = M (M|CRC(M))  Key (M|CRC(M))  Key  (D|CRC(D)) (M|CRC(M))  Key  (D|CRC(D))  Key = (M+D)|CRC(M+D)

9 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 20109 WEP-Attack 2 2. (M|CRC(M))  Key 3. (M|CRC(M))  Key  (M|CRC(M))  (M’|CRC(M’)) 1. M M’|CRC(M’)

10 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 201010 WPA WiFi Protected Access 128 bit, AES/TKIP (temporal key integrity protocol)  message integrity code (MIC)  sequence numbering against replay-attacks  key management, key mixing, quasi asymmetric encryption  master key, session keys, key renewal EAP (extensible authentication protocol)  password-based, certificate-based, SIM-based  forwarding of requests to a designated server  still no authentication of server! (  PEAP)

11 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 201011 Sensor Networks Network of small, cheap, low-power nodes  e.g. earthquake early warning system  e.g. ambient assisted living  e.g. wireless controller network  e.g. logistics routing Construction of threat scenarios? Self-organization  new nodes must integrate into the network  the network must be able to build “trust” Several emerging radio technologies

12 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 201012 Bluetooth Security Replacement of IrDA Bluetooth profiles (> 30)  headset, AV remote control, telephony, obj exchange, ftp, serial, lan, pan, health devices… Security mechanisms  visibility restrictions (“non-discoverable”)  pairing via passkey or PIN  unit keys  encrypted communication  frequency hopping

13 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 201013 Bluetooth Security http://grouper.ieee.org/groups/1451/5/Comparison%20of%20PHY/Bluetooth_24Security_Paper.pdf

14 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 201014 Vulnerabilities and Attacks Passkey for headsets: 1234 or 0000 Default discoverability Pairing in public areas  mobile phone always accepts a basic L2CAP connection request without acceptance of the user Scanning for bluetooth addresses  MAC address ranges of devices are known Eavesdropping air frequencies  Pseudo-random frequency hopping scheme Reading passkeys from compromised devices Unauthorized access to information on devices http://www.securityfocus.com/infocus/1830

15 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 201015 Public “Blue Kiosk”  vulnerability: display of device by name only Stack overflow attacks  vCard  file names in File Transfer or Object Push Activating the microphone Tracking and positioning attacks  triangulation  antenna extensions

16 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 201016 ZigBee http://www.zigbee.org/imwp/idms/popups/pop_download.asp?contentID=9436

17 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 201017

18 27.1.2010Embedded Security © Prof. Dr. H. Schlingloff 201018 Infrastructure security  network access; keys installed in a trusted environment  integrity of packet routing Application data security  message integrity  authentication  data encryption Configurability of security  memory and computational constraints

Download ppt "Information Security of Embedded Systems 27.1.2010: remote access, wireless networks Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer."

Similar presentations

Information Security of Embedded Systems 9.1.2010: Design of Secure Systems Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.

Information Security of Embedded Systems : Design of Secure Systems Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.
Information Security of Embedded Systems 4.11.2009: Embedded Systems Design Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.

Information Security of Embedded Systems : Embedded Systems Design Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.
SECURING WIRELESS LANS PRESENTED BY VICTOR C. NWALA CS555 Department of Computer Science Old Dominion University.

SECURING WIRELESS LANS PRESENTED BY VICTOR C. NWALA CS555 Department of Computer Science Old Dominion University.
IEEE 802.11i IT443 Broadband Communications Philip MacCabe October 5, 2005

IEEE i IT443 Broadband Communications Philip MacCabe October 5, 2005
Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.

Attack and Defense in Wireless Networks Presented by Aleksandr Doronin.
Raphael Frank 20 October 2007 Authentication & Intrusion Prevention for Multi-Link Wireless Networks.

Raphael Frank 20 October 2007 Authentication & Intrusion Prevention for Multi-Link Wireless Networks.
無線區域網路安全 Wireless LAN Security. 2 Outline  Wireless LAN – 802.11b  Security Mechanisms in 802.11b  Security Problems in 802.11b  Solutions for 802.11b.

無線區域網路安全 Wireless LAN Security. 2 Outline  Wireless LAN – b  Security Mechanisms in b  Security Problems in b  Solutions for b.
Information Security of Embedded Systems 2.12.2009: Foundations of Security II Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.

Information Security of Embedded Systems : Foundations of Security II Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.
1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID 001790660.

1 Enhancing Wireless Security with WPA CS-265 Project Section: 2 (11:30 – 12:20) Shefali Jariwala Student ID
Information Security of Embedded Systems 9.1.2010: Public Key Cryptosystems, Communication Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer.

Information Security of Embedded Systems : Public Key Cryptosystems, Communication Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer.
Wired Equivalent Privacy (WEP)

Wired Equivalent Privacy (WEP)
Security in Wireless LAN 802.11 Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.

Security in Wireless LAN Layla Pezeshkmehr CS 265 Fall 2003-SJSU Dr.Mark Stamp.
Wireless Encryption By: Kara Dolansky Network Management Spring 2009.

Wireless Encryption By: Kara Dolansky Network Management Spring 2009.
Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.

Vulnerability In Wi-Fi By Angus U CS 265 Section 2 Instructor: Mark Stamp.
11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.

11 WIRELESS SECURITY by Prof. Russell Jones. WIRELESS COMMUNICATION ISSUES  Wireless connections are becoming popular.  Network data is transmitted.
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
E-mail: kemal@cs.siu.edu Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE 802.11.

Department of Computer Science Southern Illinois University Carbondale Wireless and Network Security Lecture 9: IEEE
Information Security of Embedded Systems 20.1.2010: Communication, wireless remote access Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer.

Information Security of Embedded Systems : Communication, wireless remote access Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer.
Information Security of Embedded Systems 3.2.2010: Algorithms and Measures Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.

Information Security of Embedded Systems : Algorithms and Measures Prof. Dr. Holger Schlingloff Institut für Informatik und Fraunhofer FIRST.
15 November 2004 1 Wireless Security Issues Cheyenne Hollow Horn SFS Presentation 2004.

15 November Wireless Security Issues Cheyenne Hollow Horn SFS Presentation 2004.

Similar presentations

Ads by Google