Presentation is loading. Please wait.

Presentation is loading. Please wait.

Why Cryptosystems Fail R. Anderson, Proceedings of the 1st ACM Conference on Computer and Communications Security, 1993 Reviewed by Yunkyu Sung

Published bySybil Perkins Modified over 8 years ago

Similar presentations

Presentation on theme: "Why Cryptosystems Fail R. Anderson, Proceedings of the 1st ACM Conference on Computer and Communications Security, 1993 Reviewed by Yunkyu Sung"— Presentation transcript:

1 Why Cryptosystems Fail R. Anderson, Proceedings of the 1st ACM Conference on Computer and Communications Security, 1993 Reviewed by Yunkyu Sung merius@kdb.snu.ac.kr

2 Contents Introduction ATM Fraud Examples The Wider Implications A New Security Paradigm Conclusion

3 Introduction The purpose of this paper Presenting the results of a survey Wrong threat model Implementation error Management failure Paradigm shift

4 Cryptosystem Limitation of Cryptosystem at that time No learning mechanism Aircraft crashes  Professional Investigators rush to the scene Beginning as a military purpose Limited network  integrating various areas Banking After government, the next biggest application Various miss-operation

5 ATM Fraud Examples Simple attack Inside attack Stealing cards and PINs by Staff Record customer’s PIN and account Outside attack Card with full account, shoulder surfing Replay attack Hijack a Response signal from Bank to ATM Programming error If telephone card was inserted after clean card, ATM recognize as clean card

6 ATM Fraud Example Simple attack Limitation of PIN Many card owner write there PINs on own cards Simple PIN checking logic Encrypt PIN, apart from account number Not to exposure to programmer VISA recommends that banks should combine the customer’s account number with the PIN before encryption

7 ATM Fraud Example How ATM encryption works? The security of the system depends on keeping the PIN key absolutely secret ATM terminal key ATM terminal key Bank ABank B zone key User PIN key working key

8 ATM Fraud Example How ATM encryption works? (cont’d) The standard approach is to use a security module ( PC in a safe ) All the bank’s key & PINs are in encrypted form, so that mainframe programmers only over see a encrypted string

9 ATM Fraud Example Problems with Encryption products Expensive, difficult to install. And it takes long time to install  Software level implementation  PIN key can be found without too much effort by system programmer Each IBM, DEC module can not talk to each other  emulation  emulator’s log file

10 ATM Fraud Example Problems with Encryption products Not all security products are equally good. And Lack of expertise Trapdoor Different parameter between products Physically accessibility Back up in wrong place Sloppy operating procedure Ignore a error messages Kept in open files, rather than being locked up

11 ATM Fraud Example The implications for equipment vendors Lack of expertise Failure of suppliers Over-estimating of customer’s level of security design Ignoring application level implementation of security function Changing threat environment Solutions System level approach Certification process – hierarchy of license

12 The Wider Implications Wrong threat model Lack of expertise, basic errors in system What could possibly happen?  What was likely to happen? Reason of wrong assumptions Military purpose Limited network  integrating various areas Human factor No security team, just sales products Consultants without expertise

13 The Wider Implications Confirmation of analysis Poor implementation is the main security problem Designer just choose better components Fostering complacency Quality control!

14 A New Security Paradigm Systematic study of “what is likely to happen?” From evaluated product to an engineering discipline concerned with quality control process Research mode from other discipline Railway signaling system Aviation paradigm

15 A New Security Paradigm Safety critical system Failure results in loss of life, injury or damage to the environment Aircraft, nuclear power station control system Spec. List of all possible failure modes of the system Strategy has been adopted to prevent each of these failure modes Detailed explain of these strategies Must be assessed by independent experts

16 A New Security Paradigm Railway signaling system In control If the driver falls asleep, the train will stop automatically Aviation paradigm The pilot remains firmly in command The progress has made his job ever more complex and demanding But, we need an infrastructure which enables information owners to control and trade their own property, rather than trusting everything to a centralized administrative structure

17 Conclusion The lack of information feedback has led to a false threat model being accepted. What could go wrong?  too complex to solve Limitation of component-level certification A paradigm shift is underway We need fusion of security with software engineering

Download ppt "Why Cryptosystems Fail R. Anderson, Proceedings of the 1st ACM Conference on Computer and Communications Security, 1993 Reviewed by Yunkyu Sung"

Similar presentations

Why Cryptosystems Fail Nick Feamster CS 6262 Spring 2009.

Why Cryptosystems Fail Nick Feamster CS 6262 Spring 2009.
ASYCUDA Overview … a summary of the objectives of ASYCUDA implementation projects and features of the software for the Customs computer system.

ASYCUDA Overview … a summary of the objectives of ASYCUDA implementation projects and features of the software for the Customs computer system.
IT Security Policy Framework

IT Security Policy Framework
Achieve Benefit from IT Projects. Aim This presentation is prepared to support and give a general overview of the ‘How to Achieve Benefits from IT Projects’

Achieve Benefit from IT Projects. Aim This presentation is prepared to support and give a general overview of the ‘How to Achieve Benefits from IT Projects’
In need of a model for complexity assessment of highly automated human machine systems Fredrik Barchéus, Pernilla Ulfvengren, Johan Rignér.

In need of a model for complexity assessment of highly automated human machine systems Fredrik Barchéus, Pernilla Ulfvengren, Johan Rignér.
Pearson Education Ltd. Naki Kouyioumtzis

Pearson Education Ltd. Naki Kouyioumtzis
DanMoz Dairies.Sarl Chimoio,Mozamique. Company BackGround & Future Located in Chimoio,Mozambique. Factory located on 250 Ha farm. 2000 start Milk production.

DanMoz Dairies.Sarl Chimoio,Mozamique. Company BackGround & Future Located in Chimoio,Mozambique. Factory located on 250 Ha farm start Milk production.
Alford Academy Business Education and Computing1 Advanced Higher Computing Based on Heriot-Watt University Scholar Materials Implementation and Testing.

Alford Academy Business Education and Computing1 Advanced Higher Computing Based on Heriot-Watt University Scholar Materials Implementation and Testing.
1 No Silver Bullet : Inherent Limitations of Computer Security Technologies Jeffrey W. Humphries Texas A&M University.

1 No Silver Bullet : Inherent Limitations of Computer Security Technologies Jeffrey W. Humphries Texas A&M University.
Separate Domains of IT Infrastructure

Separate Domains of IT Infrastructure
DICOM INTERNATIONAL DICOM INTERNATIONAL CONFERENCE & SEMINAR April 8-10, 2008 Chengdu, China DICOM Security Eric Pan Agfa HealthCare.

DICOM INTERNATIONAL DICOM INTERNATIONAL CONFERENCE & SEMINAR April 8-10, 2008 Chengdu, China DICOM Security Eric Pan Agfa HealthCare.
Chapter 10  ATM 1 Automatic Teller Machines. Chapter 10  ATM 2 Automatic Teller Machines  “…one of the most influential technological innovations of.

Chapter 10  ATM 1 Automatic Teller Machines. Chapter 10  ATM 2 Automatic Teller Machines  “…one of the most influential technological innovations of.
Reliability and Safety Lessons Learned. Ways to Prevent Problems Good computer systems Good computer systems Good training Good training Accountability.

Reliability and Safety Lessons Learned. Ways to Prevent Problems Good computer systems Good computer systems Good training Good training Accountability.
1 An Overview of Computer Security computer security.

1 An Overview of Computer Security computer security.
Why Cryptosystems Fail?

Why Cryptosystems Fail?
The Australian/New Zealand Standard on Risk Management

The Australian/New Zealand Standard on Risk Management
Why Cryptosystems Fail Ross Anderson Proceeding of the 1 st ACM Conference on Computer and Communications Security, 1993 2010-20784 김학봉.

Why Cryptosystems Fail Ross Anderson Proceeding of the 1 st ACM Conference on Computer and Communications Security, 김학봉.
Why cryptosystems Fail Ross Anderson Proceeding of the 1 st ACM Conference on Computer and Communications Security, 1993 SSR Jiyeon Park.

Why cryptosystems Fail Ross Anderson Proceeding of the 1 st ACM Conference on Computer and Communications Security, 1993 SSR Jiyeon Park.
Lecture 11 Reliability and Security in IT infrastructure.

Lecture 11 Reliability and Security in IT infrastructure.
7.2 System Development Life Cycle (SDLC)

7.2 System Development Life Cycle (SDLC)

Similar presentations

Ads by Google