Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security Source: George Colouris, Jean Dollimore, Tim Kinderberg & Gordon Blair (2012). Distributed Systems: Concepts & Design (5th Ed.). Essex: Addison-Wesley.

Published byAshlynn Hamilton Modified over 9 years ago

Similar presentations

Presentation on theme: "Security Source: George Colouris, Jean Dollimore, Tim Kinderberg & Gordon Blair (2012). Distributed Systems: Concepts & Design (5th Ed.). Essex: Addison-Wesley."— Presentation transcript:

1 Security Source: George Colouris, Jean Dollimore, Tim Kinderberg & Gordon Blair (2012). Distributed Systems: Concepts & Design (5th Ed.). Essex: Addison-Wesley Chapter 8 & Chapter 5 Power point presentation was adapted from: www72.homepage.villanova.edu/william.coley/Ch.7-Security.ppt

2 Content Introduction Overview of security techniques
Cryptographic algorithms Digital signatures Cryptography pragmatics Case studies: Kerberos, TLS

3 Content Introduction Overview of security techniques
Cryptographic algorithms Digital signatures Cryptography pragmatics Case studies: Kerberos, TLS

4 Introduction The Importance of Security in DS
There is a need to protect the privacy, integrity and availability of resources in distributed systems due to the openness created by resource sharing Examples of security attacks: Eavesdropping, masquerading, tampering, and denial of service Clients access resources through interfaces, hence, they must be protected against unauthorized access Processes interact through a network that is shared by many users, the network could be insecure

5 Introduction Threats and Attacks Eavesdropping - A form of leakage
obtaining private or secret information or copies of messages without authority. Masquerading assuming the identity of another user/principal – i.e., sending or receiving messages using the identity of another principal without their authority. Message tampering altering the content of messages in transit man in the middle attack (tampers with the secure channel mechanism) Replaying storing secure messages and sending them at a later date Denial of service - Vandalism flooding a channel or other resource, denying access to others

6 Introduction Securing Electronic Transactions
Examples of transactions that require high security level: s Purchasing of goods and services Banking transactions Micro transactions

7 Introduction Designing Secure Systems
The objective of having security precautions or protections is to avoid disasters and minimize damages. Designing secure systems is a difficult task Designers must construct a list of threats, methods by which the security policies might be violated, and show that each of them is prevented by the mechanisms employed A security log can provide information on the time-stamped records of users’ actions

8 Content Introduction Overview of security techniques
Cryptographic algorithms Digital signatures Cryptography pragmatics Case studies: Kerberos, TLS

9 Overview of Security Techniques
Worst-case assumptions and design guidelines Interfaces are exposed Networks are insecure Limit the lifetime and scope of each secret Algorithms and code are available to hackers Attackers may have access to large resources Minimize the trusted base

10 Overview of Security Techniques
Common Security Techniques Cryptography Certificates Access control Credentials Firewalls

11 Overview of Security Techniques
Cryptography Cryptography is the art of encoding message to conceal its original meaning, that is, only intended recipients can decode the message Cryptography: encryption and decryption Encryption- the process of encoding a message in such a way as to hide its contents. Decryption- the process of decoding a message into its original form. Cryptography is based on the use of secret keys Shared Secret Keys- The sender and recipient share a knowledge of the key and it must not be revealed to anyone. Public/Private Key pair - The sender of a message uses a recipient’s public key to encrypt the message and the recipient uses a corresponding private key to decrypt the message.

12 Overview of Security Techniques
Cryptography The roles of cryptography are: To protect secrecy and integrity of information Secrecy - to stop eavesdropping and tampering Integrity – to validate information Authentication To authenticate the message by comparing the checksum Digital Signatures To verify to a third party that a message is an original one and unaltered that have been produced by the signer

13 Overview of Security Techniques
Cryptography Classification of cryptography techniques: Public key encryption Symmetric key encryption Message digest

14 Overview of Security Techniques
Cryptography The use of the cryptographic techniques- some examples Common notations Alice First participant Bob Second participant Carol Participant in three- and four-party protocols Dave Participant in four-party protocols Eve Eavesdropper Mallory Malicious attacker Sara A server KA Alice’s secret key KB Bob’s secret key KAB Secret key shared between Alice and Bob KApriv Alice’s private key (known only to Alice) KApub Alice’s public key (published by Alice for all to read) { M } K Message encrypted with key [ ]K signed with key

15 Overview of Security Techniques
Cryptography Scenario 1: Communication with a shared secret key Alice wishes to send some information secretly. Alice and Bob share a secret key KAB. Alice uses KAB and an agreed encryption function E(KAB, M) to encrypt and send any number of messages {Mi}KAB to Bob. Bob reads the encrypted messages using the corresponding decryption function D(KAB, M). Alice and Bob can go on using KAB as long as it is safe to assume that KAB has not been compromised. Issues: Key distribution: How can Alice send a shared key KAB to Bob securely? Freshness of communication: How does Bob know that any {Mi} isn’t a copy of an earlier encrypted message from Alice that was captured by Mallory and replayed later? Problem: if the message is a request to pay some money to someone. Mallory might trick Bob into paying twice?

16 Overview of Security Techniques
Cryptography Scenario 2: Authenticated communication with a server Bob is a file server; Sara is an authentication service. Sara shares secret key KA with Alice and secret key KB with Bob. Alice sends an (unencrypted) message to Sara stating her identity and requesting a ticket for access to Bob. Sara sends a response to Alice. {{Ticket}KB, KAB}KA. It is encrypted in KA and consists of a ticket (to be sent to Bob with each request for file access) encrypted in KB and a new secret key KAB. Alice uses KA to decrypt the response. Alice sends Bob a request R to access a file: {Ticket}KB, Alice, R. The ticket is actually {KAB, Alice}KB. Bob uses KB to decrypt it, checks that Alice's name matches and then uses KAB to encrypt responses to Alice. ** A ticket is an encrypted item containing the identity of the principal to whom it is issued and a shared key for a communication session. This is a simplified version of the Needham and Schroeder (and Kerberos) protocol. Timing and replay issues – addressed in N-S and Kerberos. Not suitable for e-commerce because the use of a separate channel is inconvenient and the requirement for a trusted third party is unrealistic

17 Overview of Security Techniques
Cryptography Scenario 3: Authenticated communication with public keys Bob has a public/private key pair <KBpub, KBpriv> & establishes KAB as follows: Alice obtains a certificate that was signed by a trusted authority stating Bob's public key KBpub Alice creates a new shared key KAB , encrypts it using KBpub using a public-key algorithm and sends the result to Bob. 3. Bob uses the corresponding private key KBpriv to decrypt it. (If they want to be sure that the message hasn't been tampered with, Alice can add an agreed value to it and Bob can check it.) Mallory might intercept Alice’s initial request to a key distribution service for Bob’s public-key certificate and send a response containing his own public key. He can then intercept all the subsequent messages.

18 Overview of Security Techniques
Cryptography Scenario 4: Digital signatures with a secure digest function Alice wants to publish a document M in such a way that anyone can verify that it is from her. Alice computes a fixed-length digest of the document Digest(M). Alice encrypts the digest in her private key, appends it to M and makes the resulting signed document (M, {Digest(M)}KApriv) available to the intended users. Bob obtains the signed document, extracts M and computes Digest(M). Bob uses Alice's public key to decrypt {Digest(M)}KApriv and compares it with his computed digest. If they match, Alice's signature is verified. ** birthday attack -

19 Overview of Security Techniques
Certificates Certificate: a statement signed by an appropriate authority. Certificates require: An agreed standard format. Agreement on the construction of chains of trust. Expiry dates, so that certificates can be revoked. Public-key certificate for Bob's Bank 1. Certificate type : Public key 2. Name Bob’s Bank 3. KBpub 4. Certifying authority Fred – The Bankers Federation 5. Signature {Digest(field 2 + field 3)} KFpriv

20 Overview of Security Techniques
Access control Some objects in distributed systems may need to have access control applied: The decisions are often application-specific. Example - Alice may be allowed only one cash withdrawal from her bank account per day, while Bob is allowed three. Access control decisions are usually left to the application-level code, but generic support is provided for much of the machinery that supports the decisions.

21 Overview of Security Techniques
Access control Protection domain A set of <resource, rights> pairs Two practical approaches to access control: Access control list (ACL) associated with each object E.g. File access permissions For more complex object types and user communities, ACLs can become very complex Capabilities associated with principals Like a key Format: <resource id, permitted operations, authentication code> Must be unforgeable Problems: eavesdropping, difficulty of cancellation

22 Overview of Security Techniques
Credentials Credentials are a set of evidence provided by a principal when requesting access to a resource. E.g. : a certificate, token, etc. from a relevant authority stating the principal’s identity, and this would be used to check the principal’s permissions in an access control list.

23 Overview of Security Techniques
Firewalls Protect intranets. Filter actions on incoming and outgoing communications. Produce a local communication environment in which all external communication is intercepted. Allow access to public services on the Internet.

24 Content Introduction Overview of security techniques
Cryptographic algorithms Digital signatures Cryptography pragmatics Case studies: Kerberos, TLS

25 Cryptographic Algorithms
Introduction Encryption is a process to transform a plaintext message (any sequence of bits) to a ciphertext (a different sequence of bits) following some rules. The encryption transformation is defined with two parts, a function E and a key K. The resulting encrypted message is written

26 Cryptographic Algorithms
Introduction Symmetric (secret key) E(K, M) = {M}K D(K, E(K, M)) = M Same key for E and D M must be hard (infeasible) to compute if K is not known. Usual form of attack is brute-force: try all possible key values for a known pair M, {M}K. Resisted by making K sufficiently large ~ 128 bits Asymmetric (public key) Separate encryption and decryption keys: Ke, Kd D(Kd. E(Ke, M)) = M depends on the use of a trap-door function to make the keys. E has high computational cost. Very large keys > 512 bits

27 Cryptographic Algorithms
Secret-key (symmetric) algorithms Examples of secret-key (symmetric) algorithms Tiny Encryption Algorithm - (TEA) International Data Encryption Algorithm (IDEA) RC4 Data Encryption Standard (DES) Advanced Encryption Standard (AES)

28 Cryptographic Algorithms
Public-key (asymmetric) algorithms Not many public-key algorithms have been developed to date Some of them Rivest, Shamir and Adelman (RSA) Elliptic curve algorithms

29 Content Introduction Overview of security techniques
Cryptographic algorithms Digital signatures Cryptography pragmatics Case studies: Kerberos, TLS

30 Digital Signatures Introduction
Signatures are always required when performing business and personal transactions. Handwritten signatures are used to meet the needs of document recipients to verify that the document is: Authentic: It convinces the recipient that the signer deliberately signed the document and it has not been altered by anyone else. Unforgeable: It provides proof that the signer, and no one else, deliberately signed the document. The signature cannot be copied and placed on another document. Non-repudiable: The signer cannot credibly deny that the document was signed by them.

31 Digital Signatures Introduction
The properties of digital documents held in stored files or messages are completely different from those of paper documents. A document with a digital signature can be considerably more resistant to forgery than a handwritten one.

32 Digital signing An electronic document or message M can be signed by a principal A by encrypting a copy of M with a key KA and attaching it to a plaintext copy of M and A’s identifier. The signed document then consists of: M, A, [M]KA. The signature can be verified by a principal that subsequently receives the document to check that it was originated by A and that its contents, M, have not subsequently been altered.

33 Digital Signatures Digital signing
Digest functions are used in digital signatures: They are also called secure hash functions Denoted as H(M) They must be carefully designed to ensure that H(M) is different from H(M') for all likely pairs of messages M and M'

34 Digital Signatures Digital Signature with Public Keys

35 Digital Signatures Digital Signature with Public Keys
A generates a key pair Kpub and Kpriv and publishes the public key Kpub by placing it in a well-known location. A computes the digest of M, H(M) using an agreed secure hash function H and encrypts it using the private key Kpriv to produce the signature S = {H(M)}Kpriv. A sends the signed message [M]K = M,S to B. B decrypts S using Kpub and computes the digest of M, H(M). If they match, the signature is valid.

36 Digital Signatures Digital signatures with secret keys
To use digital signatures with secret keys, the keys must be disclosed, and this causes some problems: The signer must arrange for the verifier to receive the secret key used for signing securely. It may be necessary to verify a signature in several contexts and at different times– at the time of signing, the signer may not know the identities of the verifiers. To resolve this, verification could be delegated to a trusted third party who holds secret keys for all signers, but this adds complexity to the security model and requires secure communication with the trusted third party. The disclosure of a secret key used for signing is undesirable because it weakens the security of signatures made with that key – a signature could be forged by a holder of the key who is not the owner of it.

37 Digital Signatures Digital signatures with secret keys
Message authentication codes (MACs) authenticate communication between pairs of principals based on a shared secret in secure channel communication. A low-cost signing technique.

38 Digital Signatures Digital signatures with secret keys

39 Digital Signatures Digital signatures with secret keys
A generates a random key K for signing and distributes it using secure channels to one or more principals who will need to authenticate messages received from A. The principals are trusted not to disclose the shared key. For any document M that A wishes to sign, A concatenates M with K, computes the digest of the result, h=H(M+K), and sends the signed document [M]K=M,h to anyone wishing to verify the signature. (The digest h is a MAC.) K will not be compromised by the disclosure of h, since the hash function has totally obscured its value. The receiver, B, concatenates the secret key K with the received document M and computes the digest h' = H(M+K). The signature is verified if h=h'.

40 Digital Signatures Secure Digest Functions
A function that is used in communication protocols to produce a short fixed-length hash to characterize a message for error-detection purposes. Examples: MD5 algorithm SHA-1

41 Content Introduction Overview of security techniques
Cryptographic algorithms Digital signatures Cryptography pragmatics Case studies: Kerberos, TLS

42 Cryptography Pragmatics
Performance of cryptographic algorithms Key size/hash size (bits) Extrapolated speed (kbytes/sec.) PRB optimized (kbytes/s) TEA 128 700 - DES 56 350 7746 Triple-DES 112 120 2842 IDEA 4469 RSA 512 7 2048 1 MD5 1740 62425 SHA 160 750 25162 *PRB optimized is based on Preneel et al. [1998]. * Crypto++ was obtained from Crypto++ open source library of cryptographic schemes [

43 Cryptography Pragmatics
Applications of cryptography and political obstacles Algorithms described in this chapter emerged in the 1980’s and 1990’s. Strongly resisted by the US government. Cryptographic software had stringent export restrictions. US software companies protested. Current position - software that implements most of the major algorithms has been available worldwide for several years.

44 Cryptography Pragmatics
Applications of cryptography and political obstacles Example: PGP (Pretty Good Privacy) Generates and manages public and secret keys on behalf of a user. In Jan US government changed its policy on exported software. Current proposals want to require the inclusion of loopholes for government law enforcement, and security agencies.

45 Content Introduction Overview of security techniques
Cryptographic algorithms Digital signatures Cryptography pragmatics Case studies: Kerberos, TLS

46 Case Study: Kerberos Kerberos Developed at MIT in the 1980’s.
Deals with three kinds of security objects: Ticket Authentication Session Key Client processes must possess a ticket for each server that they use (most have a lifetime of several hours).

47 Case Study: Kerberos Kerberos The architecture

48 Case Study: Kerberos Kerberos
A Kerberos server is known as a Key Distribution Center (KDC), supplying: Authentication Service (AS) Ticket-Granting Service (TGS)

49 Case Study: TLS Transport Layer Security (TLS)
Transport Layer Security (TLS) is an extended version of Secure Socket Layer (SSL) that has been developed by Netscape Corporation [ TLS is supported by most browsers and is widely used in Internet commerce. Features of TLS: Negotiable encryption and authentication algorithms –TLS allows the algorithms used for encryption and authentication are negotiated between the processes at the two ends of the connection during the initial handshake. Bootstrapped secure communication - secure channel is established. Unencrypted communication is used for the initial exchanges, then public-key cryptography and finally secret-key cryptography once a shared secret key has been established. Each switch is optional and preceded by a negotiation.

50 Case Study: TLS Transport Layer Security (TLS)

51 Case Study: Kerberos Transport Layer Security (TLS)

52 Case Study: TLS Transport Layer Security (TLS)

53 Case Study: TLS Transport Layer Security (TLS)

54 End of the chapter … Thank you

Download ppt "Security Source: George Colouris, Jean Dollimore, Tim Kinderberg & Gordon Blair (2012). Distributed Systems: Concepts & Design (5th Ed.). Essex: Addison-Wesley."

Similar presentations

AUTHENTICATION AND KEY DISTRIBUTION

AUTHENTICATION AND KEY DISTRIBUTION
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
Cryptography and Network Security

Cryptography and Network Security
Security- Chapter 7 By Carrie Mace And Bill Coley.

Security- Chapter 7 By Carrie Mace And Bill Coley.
Digital Signatures and Hash Functions. Digital Signatures.

Digital Signatures and Hash Functions. Digital Signatures.
Information Security Principles & Applications Topic 4: Message Authentication 虞慧群

Information Security Principles & Applications Topic 4: Message Authentication 虞慧群
CS 425 / ECE 428 Distributed Systems Fall 2014 Indranil Gupta (Indy) Lecture 24B: Security All slides © IG.

CS 425 / ECE 428 Distributed Systems Fall 2014 Indranil Gupta (Indy) Lecture 24B: Security All slides © IG.
Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.

Lecture III : Communication Security, Services & Mechanisms Internet Security: Principles & Practices John K. Zao, PhD SMIEEE National Chiao-Tung University.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.

8-1 What is network security? Confidentiality: only sender, intended receiver should “understand” message contents m sender encrypts message m receiver.
Cryptographic Technologies

Cryptographic Technologies
Case Study On Distributed Systems Security by Merv Wagner.

Case Study On Distributed Systems Security by Merv Wagner.
EECC694 - Shaaban #1 lec #16 Spring2000 5-4-2000 Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.

EECC694 - Shaaban #1 lec #16 Spring Properties of Secure Network Communication Secrecy: Only the sender and intended receiver should be able.
Security 2 Distributed Systems Lecture# 15. Overview Cryptography Symmetric Assymeteric Digital Signature Secure Digest Functions Authentication.

Security 2 Distributed Systems Lecture# 15. Overview Cryptography Symmetric Assymeteric Digital Signature Secure Digest Functions Authentication.
Chapter 8 Web Security.

Chapter 8 Web Security.
Cryptography and Network Security Chapter 10. Chapter 10 – Key Management; Other Public Key Cryptosystems No Singhalese, whether man or woman, would venture.

Cryptography and Network Security Chapter 10. Chapter 10 – Key Management; Other Public Key Cryptosystems No Singhalese, whether man or woman, would venture.
Computer Science CSC 774Dr. Peng Ning1 CSC 774 Advanced Network Security Topic 2. Review of Cryptographic Techniques.

Computer Science CSC 774Dr. Peng Ning1 CSC 774 Advanced Network Security Topic 2. Review of Cryptographic Techniques.
Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.

Alexander Potapov.  Authentication definition  Protocol architectures  Cryptographic properties  Freshness  Types of attack on protocols  Two-way.

Similar presentations

Ads by Google