Presentation is loading. Please wait.

Presentation is loading. Please wait.

Installing Fake Root Keys in a PC Adil Alsaid and Chris J. Mitchell Information Security Group Royal Holloway, University of London.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Installing Fake Root Keys in a PC Adil Alsaid and Chris J. Mitchell Information Security Group Royal Holloway, University of London."— Presentation transcript:

1 Installing Fake Root Keys in a PC Adil Alsaid and Chris J. Mitchell Information Security Group Royal Holloway, University of London

2 Contents  Introduction  Installing Root Certificates  A Practical Method for Silently Installing a Root Certificate  Countermeasures

3 Introduction  The attack  Motivation

4 Installing Root Certificates 1.Creating a Root Certificate 2.Installing Root Certificates under user control

5 Creating a Root Certificate makecert -r -n "CN=MyRootCA, OU=MyOrganization, O=CompanyName,E=Emailaddress" -sv root.pvk root.cer

6 User Controlled Installation

7

8

9 General Approach to Silent Root Certificate Installation 1.Using standard tools 2.Writing directly to the root certificate store

10 A Practical Method for Silently Installing a Root Certificate  C++ and CryptoAPI  MS Windows message system

11 The Attack A.The user executes a malicious applet B.The malicious applet does the following: 1.Creates another running thread (Monitoring) 2.Makes a CryptoAPI function call to add the fake root certificates 3.Hides the ‘security warning’ message box by providing a positive answer C. Now, the fake root certificate will be listed in the browser’s trusted root CAs list

12 Countermeasures  Proactive or preventative measures Users re-authentication Root public key store access restriction  Reactive measures Scanning tool OCSP Verified and user added root keys

13 Questions?

Download ppt "Installing Fake Root Keys in a PC Adil Alsaid and Chris J. Mitchell Information Security Group Royal Holloway, University of London."

Similar presentations

1Quit Adding a Web Site to Microsoft Internet Explorers Trusted Sites Zone OverviewMicrosoft Internet Explorer has security settings that restrict the.

1Quit Adding a Web Site to Microsoft Internet Explorers Trusted Sites Zone OverviewMicrosoft Internet Explorer has security settings that restrict the.
®® Microsoft Windows 7 for Power Users Tutorial 7 Enhancing Your Computers Security.

®® Microsoft Windows 7 for Power Users Tutorial 7 Enhancing Your Computers Security.
How to INSTALL THE CERTIFICATE

How to INSTALL THE CERTIFICATE
Www.mobilevce.com © 2004 Mobile VCE 3G 20041. www.mobilevce.com © 2004 Mobile VCE 3G 20042 19 th October 2004 Regional Blackouts: Protection of Broadcast.

© 2004 Mobile VCE 3G © 2004 Mobile VCE 3G th October 2004 Regional Blackouts: Protection of Broadcast.
Applet Security Gunjan Vohra. What is Applet Security? One of the most important features of Java is its security model. It allows untrusted code, such.

Applet Security Gunjan Vohra. What is Applet Security? One of the most important features of Java is its security model. It allows untrusted code, such.
Steps to Recover Private Encryption Keys

Steps to Recover Private Encryption Keys
1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.

1 Defining System Security Policies. 2 Module - Defining System Security Policies ♦ Overview An important aspect of Network management is to protect your.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
SAFETYCHECK Eric Hatch | David Allen |Bailee Lucas| Austin Rhodes.

SAFETYCHECK Eric Hatch | David Allen |Bailee Lucas| Austin Rhodes.
Configuring Windows Internet Explorer 7 Security Lesson 5.

Configuring Windows Internet Explorer 7 Security Lesson 5.
DESIGNING A PUBLIC KEY INFRASTRUCTURE

DESIGNING A PUBLIC KEY INFRASTRUCTURE
Configuring Windows Vista Security Chapter 3. IE7 Pop-up Blocker Pop-up Blocker prevents annoying and sometimes unsafe pop-ups from web sites Can block.

Configuring Windows Vista Security Chapter 3. IE7 Pop-up Blocker Pop-up Blocker prevents annoying and sometimes unsafe pop-ups from web sites Can block.
Online Security Tuesday April 8, 2003 Maxence Crossley.

Online Security Tuesday April 8, 2003 Maxence Crossley.
Chapter 4 Application Security Knowledge and Test Prep

Chapter 4 Application Security Knowledge and Test Prep
1 Secure Zero Configuration in a Ubiquitous Computing Environment Shenglan Hu and Chris J. Mitchell Information Security Group Royal Holloway, University.

1 Secure Zero Configuration in a Ubiquitous Computing Environment Shenglan Hu and Chris J. Mitchell Information Security Group Royal Holloway, University.
Chapter 9 Security 9.7 - 9.8 Malware Defenses. Malware Can be used for a form of blackmail. Example: Encrypts files on victim disk, then displays message.

Chapter 9 Security Malware Defenses. Malware Can be used for a form of blackmail. Example: Encrypts files on victim disk, then displays message.
Maintaining and Updating Windows Server 2008

Maintaining and Updating Windows Server 2008
Christopher Chapman | MCT Content PM, Microsoft Learning, PDG Planning, Microsoft.

Christopher Chapman | MCT Content PM, Microsoft Learning, PDG Planning, Microsoft.
Certificates, Keys, Web Browsers, and Security - Sumanth Gelle.

Certificates, Keys, Web Browsers, and Security - Sumanth Gelle.
Configuring Active Directory Certificate Services Lesson 13.

Configuring Active Directory Certificate Services Lesson 13.

Similar presentations

Ads by Google