Presentation is loading. Please wait.

Presentation is loading. Please wait.

Web Logic Vulnerability By Eric Jizba and Yan Chen With slides from Fangqi Sun and Giancarlo Pellegrino.

Published byJoy Owens Modified over 9 years ago

Similar presentations

Presentation on theme: "Web Logic Vulnerability By Eric Jizba and Yan Chen With slides from Fangqi Sun and Giancarlo Pellegrino."— Presentation transcript:

1 Web Logic Vulnerability By Eric Jizba and Yan Chen With slides from Fangqi Sun and Giancarlo Pellegrino

2 Outline  Background and Motivation  Related Work  Whitebox approach  Detecting Logic Vulnerabilities in E-Commerce Applications  Fangqi Sun, Liang Xu, Zhendong Su  Blackbox approach  Toward Black-box Detection of Logic Flaws in Web Applications  Giancarlo Pellegrino, Davide Balzarotti

3 Background and motivation

4 Design Verification BrowserID SSO Analysis  Daniel Fett, Ralf Ku ̈ sters, and Guido Schmitz created expressive model for web infrastructure  Manual analysis: more comprehensive and accurate  Discovered logic vulnerability in BrowserID  Allows attacker to sign-in to any service that supports BrowserID using the email address of any user without know their credentials  Proposed fix adopted by Mozilla simply involves verifying the email address is correct

5 Blackbox Approach InteGuard: Web Service Integration Security  Third party APIs are more and more popular  SSO, Cashier Services, Maps, Search, etc.  Key Insight: most web APIs require small number of simple input parameters that are usually set by the user  InteGuard looks at web traffic between the app and third part service to analyze invariants (e.g. orderID, price)  Does not require source code  Mostly automatic  Cannot handle more complex invariant relations (such as the relation between signed content and its signature)

6 Blackbox Approach Parameter Pollution Vulnerabilities  Related to Logic Vulnerabilities  Generally does not analyze logic flow, just parameters in isolation  NoTamper detects insufficient server-side validations where the server fails to replicate validations on the client side  PAPAS uses a blackbox scanning technique for vulnerable parameters

7 Related Work

8 Whitebox Approach Basic Problem

9 Whitebox Approach Main Ideas

10 Whitebox Approach Evaluation and Results

11 Open Issues  Cannot identify all logic vulnerabilities  Does not support JavaScript analysis  Limited analysis of dynamic language features

12 Questions?

13 Blackbox Approach Basic Problem

14 Blackbox Approach Main Ideas

15 Blackbox Approach Evaluation and Results

16 Open Issues  Only tests attacks through data flow and workflow  E.g. does not test unauthorized access to resources  Automation favors efficiency over coverage

17 Questions?

Download ppt "Web Logic Vulnerability By Eric Jizba and Yan Chen With slides from Fangqi Sun and Giancarlo Pellegrino."

Similar presentations

Cross-Site Scripting Issues and Defenses Ed Skoudis Predictive Systems © 2002, Predictive Systems.

Cross-Site Scripting Issues and Defenses Ed Skoudis Predictive Systems © 2002, Predictive Systems.
Detecting Logic Vulnerabilities in E- Commerce Applications FANGQI SUN, LIANG XU, ZHENDONG SU UNIVERSITY OF CALIFORNIA, DAVIS NDSS (FEBRUARY,2014) 1.

Detecting Logic Vulnerabilities in E- Commerce Applications FANGQI SUN, LIANG XU, ZHENDONG SU UNIVERSITY OF CALIFORNIA, DAVIS NDSS (FEBRUARY,2014) 1.
Ensuring Operating System Kernel Integrity with OSck By Owen S. Hofmann Alan M. Dunn Sangman Kim Indrajit Roy Emmett Witchel Kent State University College.

Ensuring Operating System Kernel Integrity with OSck By Owen S. Hofmann Alan M. Dunn Sangman Kim Indrajit Roy Emmett Witchel Kent State University College.
Part 2 Authors: Marco Cova, et al. Presented by Brett Parker.

Part 2 Authors: Marco Cova, et al. Presented by Brett Parker.
JShield: Towards Real-time and Vulnerability-based Detection of Polluted Drive-by Download Attacks Yinzhi Cao*, Xiang Pan**, Yan Chen** and Jianwei Zhuge***

JShield: Towards Real-time and Vulnerability-based Detection of Polluted Drive-by Download Attacks Yinzhi Cao*, Xiang Pan**, Yan Chen** and Jianwei Zhuge***
SACM Terminology Nancy Cam-Winget, David Waltermire, March.

SACM Terminology Nancy Cam-Winget, David Waltermire, March.
CMSC 414 Computer and Network Security Lecture 24 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 24 Jonathan Katz.
SOFTWARE SECURITY JORINA VAN MALSEN 1 FLAX: Systematic Discovery of Client-Side Validation Vulnerabilities in Rich Web Applications.

SOFTWARE SECURITY JORINA VAN MALSEN 1 FLAX: Systematic Discovery of Client-Side Validation Vulnerabilities in Rich Web Applications.
DT211/3 Internet Application Development JSP: Processing User input.

DT211/3 Internet Application Development JSP: Processing User input.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.

Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.
1 Advanced Material The following slides contain advanced material and are optional.

1 Advanced Material The following slides contain advanced material and are optional.
Leveraging User Interactions for In-Depth Testing of Web Applications Sean McAllister, Engin Kirda, and Christopher Kruegel RAID ’08 1 Seoyeon Kang November.

Leveraging User Interactions for In-Depth Testing of Web Applications Sean McAllister, Engin Kirda, and Christopher Kruegel RAID ’08 1 Seoyeon Kang November.
1 Detecting Logic Vulnerabilities in E- Commerce Applications Presenter: Liu Yin Slides Adapted from Fangqi Sun Computer Science Department College of.

1 Detecting Logic Vulnerabilities in E- Commerce Applications Presenter: Liu Yin Slides Adapted from Fangqi Sun Computer Science Department College of.
PCI's Changing Environment – “What You Need to Know & Why You Need To Know It.” Stephen Scott – PCI QSA, CISA, CISSP

PCI's Changing Environment – “What You Need to Know & Why You Need To Know It.” Stephen Scott – PCI QSA, CISA, CISSP
Leveraging User Interactions for In-Depth Testing of Web Application Sean McAllister Secure System Lab, Technical University Vienna, Austria Engin Kirda.

Leveraging User Interactions for In-Depth Testing of Web Application Sean McAllister Secure System Lab, Technical University Vienna, Austria Engin Kirda.
Web-based Portal for Discovery, Retrieval and Visualization of Earth Science Datasets in Grid Environment Zhenping (Jane) Liu.

Web-based Portal for Discovery, Retrieval and Visualization of Earth Science Datasets in Grid Environment Zhenping (Jane) Liu.
Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.

Alter – Information Systems 4th ed. © 2002 Prentice Hall 1 E-Business Security.
Vetting SSL Usage in Applications with SSLINT

Vetting SSL Usage in Applications with SSLINT
Cloud Computing Cloud Security– an overview Keke Chen.

Cloud Computing Cloud Security– an overview Keke Chen.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 18 Slide 1 Software Reuse.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 18 Slide 1 Software Reuse.

Similar presentations

Ads by Google