Presentation is loading. Please wait.

Presentation is loading. Please wait.

1. 2009 SANS Top 25 Most Dangerous Programming Errors Catagory 1: Insecure Interaction Between Components These weaknesses are related to insecure ways.

Published byNathan Anthony Modified over 8 years ago

Similar presentations

Presentation on theme: "1. 2009 SANS Top 25 Most Dangerous Programming Errors Catagory 1: Insecure Interaction Between Components These weaknesses are related to insecure ways."— Presentation transcript:

1 1

2 2009 SANS Top 25 Most Dangerous Programming Errors Catagory 1: Insecure Interaction Between Components These weaknesses are related to insecure ways in which data is sent and received between separate components, modules, programs, processes, threads, or systems. CWE-20: Improper Input Validation CWE-116: Improper Encoding or Escaping of Output CWE-89: Failure to Preserve SQL Query Structure (aka 'SQL Injection') CWE-79: Failure to Preserve Web Page Structure (aka 'Cross-site Scripting') CWE-78: Failure to Preserve OS Command Structure (aka 'OS Command Injection') CWE-319: Cleartext Transmission of Sensitive Information CWE-352: Cross-Site Request Forgery (CSRF) CWE-362: Race Condition CWE-209: Error Message Information Leak 2 See http://www.sans.org/top25-programming-errors/ and http://cwe.mitre.org/index.htmlhttp://www.sans.org/top25-programming-errors/

3 2009 SANS Top 25 Most Dangerous Programming Errors Catagory 2: Risky Resource management The weaknesses in this category are related to ways in which software does not properly manage the creation, usage, transfer, or destruction of important system resources. CWE-119: Failure to Constrain Operations within the Bounds of a Memory Buffer CWE-642: External Control of Critical State Data CWE-73: External Control of File Name or Path CWE-426: Untrusted Search Path CWE-94: Failure to Control Generation of Code (aka 'Code Injection') CWE-494: Download of Code Without Integrity Check CWE-404: Improper Resource Shutdown or Release CWE-665: Improper Initialization CWE-682: Incorrect Calculation 3

4 2009 SANS Top 25 Most Dangerous Programming Errors Catagory 3: Porous Defenses The weaknesses in this category are related to defensive techniques that are often misused, abused, or just plain ignored. CWE-285: Improper Access Control (Authorization) CWE-327: Use of a Broken or Risky Cryptographic Algorithm CWE-259: Hard-Coded Password CWE-732: Insecure Permission Assignment for Critical Resource CWE-330: Use of Insufficiently Random Values CWE-250: Execution with Unnecessary Privileges CWE-602: Client-Side Enforcement of Server-Side Security 4

5 ACM/u/Mallory/u/Bob/u/Carlos/ Malloryrwx Bobrwx Carlosrwx ACM’/u/Mallory/u/Bob/u/Carlos/ Malloryrwxw Bobrwx Carlosrwx ACM Review 5 Mallory exploits a bug …… & gains ‘w’ on /u/Bob !

6 Security via Information Confinement Information may only flow to those with the appropriate clearance and need-to-know. 6

7 ClearanceLevels {“Unclassified”, “Confidential”, “Secret”, “Top Secret” } Unclassified Top Secret Secret Confidential Information Flow based on: ClearanceLevel c 1 <= c 2 7

8 Top Secret Secret Confidential Unclassified Adapted from Pfleeger & Pfleeger, Security in Computing, 4 th ed. Compartment 1 Compartment 2 Compartment 3 Compartments & Sensitivity Levels 8

9 Information Flow based on: Need-to-Know d 1  d 2 9

10 Information Flow based on: ClearanceLevel c 1 <= c 2 Need-to-Know d 1  d 2 10

11 Bell-LaPadula Model for Confidentiality Simple Security Property no-read-up rule: a subject can’t read data from an object “above” it. *-Property no-write-down rule: a subject that can read data in one class can’t write data to a lower class. Discretionary Security Property S can access O only if that access is allowed by the S-O entry of the current ACM 11

12 B-P *-Property 12

13 Biba Model for Integrity Simple integrity axiom subject at one level of integrity may not read an object at a lower integrity level (no read down) *-integrity axiom subject at one level of integrity may not write to an object at a higher integrity level. (no write up) 13

14 Problems with Biba How do you assign integrity levels? What do integrity categories mean? A high-integrity program is not allowed to read and validate lower-integrity data … but then isn’t that just what those programs should be capable of doing? 14

15 Bye-Bye Biba Java and ActiveX models of digitally signed code resemble the Biba model … however – They still have no basis for assigning integrity level – Just because company X wrote and signed some code doesn’t mean it’s secure or trustworthy. Pure Biba not used for much in the last 20 years. 15

16 16

Download ppt "1. 2009 SANS Top 25 Most Dangerous Programming Errors Catagory 1: Insecure Interaction Between Components These weaknesses are related to insecure ways."

Similar presentations

Information Flow and Covert Channels November, 2006.

Information Flow and Covert Channels November, 2006.
Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,

Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,
CWE-732 Incorrect Permission Assignment for Critical Resource

CWE-732 Incorrect Permission Assignment for Critical Resource
Access Control Intro, DAC and MAC System Security.

Access Control Intro, DAC and MAC System Security.
19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.

19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.
CMSC 414 Computer and Network Security Lecture 13 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 13 Jonathan Katz.
It’s always better live. MSDN Events Security Best Practices Part 2 of 2 Reducing Vulnerabilities using Visual Studio 2008.

It’s always better live. MSDN Events Security Best Practices Part 2 of 2 Reducing Vulnerabilities using Visual Studio 2008.
Security A system is secure if its resources are used and accessed as intended under all circumstances. It is not generally possible to achieve total security.

Security A system is secure if its resources are used and accessed as intended under all circumstances. It is not generally possible to achieve total security.
Information Networking Security and Assurance Lab National Chung Cheng University The Ten Most Critical Web Application Security Vulnerabilities Ryan J.W.

Information Networking Security and Assurance Lab National Chung Cheng University The Ten Most Critical Web Application Security Vulnerabilities Ryan J.W.
It’s always better live. MSDN Events Securing Web Applications Part 1 of 2 Understanding Threats and Attacks.

It’s always better live. MSDN Events Securing Web Applications Part 1 of 2 Understanding Threats and Attacks.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.

Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.
Silberschatz, Galvin and Gagne  2002 19.1 Operating System Concepts Module 19: Security The Security Problem Authentication Program Threats System Threats.

Silberschatz, Galvin and Gagne  Operating System Concepts Module 19: Security The Security Problem Authentication Program Threats System Threats.
CMSC 414 Computer and Network Security Lecture 11 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 11 Jonathan Katz.
Information Systems Security Security Architecture Domain #5.

Information Systems Security Security Architecture Domain #5.
User Domain Policies.

User Domain Policies.
Software Security Course Course Outline 2-27-09. Course Overview Introduction to Software Security Common Attacks and Vulnerabilities Overview of Security.

Software Security Course Course Outline Course Overview Introduction to Software Security Common Attacks and Vulnerabilities Overview of Security.
CMSC 414 Computer and Network Security Lecture 19 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 19 Jonathan Katz.
Secure Software Development Mini Zeng University of Alabama in Huntsville 1.

Secure Software Development Mini Zeng University of Alabama in Huntsville 1.
CWE/Sans Top 25 Most Dangerous Programming Errors

CWE/Sans Top 25 Most Dangerous Programming Errors
Web Security Overview Lohika ASC team 2009

Web Security Overview Lohika ASC team 2009

Similar presentations

Ads by Google