Presentation is loading. Please wait.

Presentation is loading. Please wait.

CSE565: Computer Security Lecture 27 Program Security

Published byHector Gibbs Modified over 5 years ago

Similar presentations

Presentation on theme: "CSE565: Computer Security Lecture 27 Program Security"— Presentation transcript:

1 CSE565: Computer Security Lecture 27 Program Security
Shambhu Upadhyaya Computer Science & Eng. University at Buffalo Buffalo, New York 14260 11/28/17 UB Fall 2017

2 Need for Securing Programs/Code
Used by many and vast number of modules performing varieties of tasks What is a “secure program”? Implies some degree of trust that the program enforces such as Confidentiality Integrity Availability Depending on the domain of operation, a combination of above mentioned aspects can be chosen Making sure that the program performs What it is supposed to do And not what it is not supposed to do 11/28/17 UB Fall 2017

3 Types of Flaws Landwehr et al. presentation on “Taxonomy of Programming Flaws” Intentional Denial of service (DoS) attacks Malicious Trojan Horse Trap door Logic/Time bomb Non-Malicious Covert channel Inadvertent Validation error: Permission checks Domain error: Control access to data Serialization and aliasing: Program flow order Inadequate identification & authentication: authorization Boundary condition violation Exploitable logic errors A Taxonomy of Computer Program Security Flaws CARL E. LANDWEHR, ALAN R. BULL, JOHN P. MCDERMOTT, AND WILLIAM S. CHOI Information Technology Division, Naval Research Laboratory, Washington, D. C 11/28/17 UB Fall 2017

4 Non-Malicious Errors: Buffer Overflow
Buffer overflow, or buffer overrun, is an anomaly where a program, while writing data to a buffer, overruns the buffer's boundary and overwrites adjacent memory Programming languages like C and C++ provide no built-in protection against accessing or overwriting data in any part of memory and do not check whether data written to an array is within the boundaries of that array Boundary checking can prevent buffer overflows 11/28/17 UB Fall 2017

5 Buffer Overflow Example
Consider the code below and the stack structure with 3-cases of input arguments: #include <string.h> void foo (char *bar) { char c[12]; strcpy(c, bar); // no bounds checking... } int main (int argc, char **argv) { foo(argv[1]); Source: wikipedia, 11/28/17 UB Fall 2017

6 Buffer Overflow A. - Before data is copied
B. - "hello" is the first command line argument C."A​A​A​A​A​A​A​A​A​A​A​A​A​A​A​A​A​A​A​A​\x08​\x35​\xC0​\x80" is the first CL argument 11/28/17 UB Fall 2017

7 Malicious Code Virus Worm
Rabbit (a program that creates multiple copies of itself) Trojan horse Trap door Logic bomb Time bomb Rabbit is a kind of DOS attack 11/28/17 UB Fall 2017

8 Virus A program that can pass on malicious code to other non-malicious programs by modifying them – biological metaphor Attaches itself to the program and either destroys it or co-exists with it Types Transient Virus: Has life that depends on the life of the attached program Resident Virus: Resides in memory 11/28/17 UB Fall 2017

9 Virus Attach: Appended Virus
Original Program Virus Code + = 11/28/17 UB Fall 2017

10 Virus Attach: Surround a Program
Original Program Virus Code Part b Part a => 11/28/17 UB Fall 2017

11 Virus Attach: Integrated Virus
+ = Original Program Original Program Virus Code Virus Code Virus Code Virus Code Virus Code 11/28/17 UB Fall 2017

12 Detecting Virus Based on the signature
Polymorphic virus makes the process harder Tracking storage patterns Execution patterns Transmission patterns Boot process Disk access Network connections Examples of virus Brain virus (1986), Melissa (1999) Brain virus infects boot sector of the device Melissa is mass-mailing mail virus – Outlook Express 11/28/17 UB Fall 2017

13 Other Malicious Programs/Code – 1 Worm Examples of Worm Trap door
Program that spreads copies of itself through a network Also copies itself as the standalone program Worms spread through network while viruses spread through any medium (usually thru copied programs or data files) Examples of Worm Morris worm (1990), Code Red (2001), Blaster (2003), Stuxnet (2010) Trap door The undocumented entry to the system inserted during the code development 11/28/17 UB Fall 2017

14 Other Malicious Programs/Code – 2
Trojan horse Malicious code that offers the required functionality at the same time performing some hidden work as well Logic bomb Malicious code that detonates or goes off when specific condition occurs 11/28/17 UB Fall 2017

15 Control Against Program Threats
Developmental controls Nature of software development (Software Engineering) Modularity, encapsulation and information hiding Hazard analysis Proper testing Configuration management Lesson from mistakes 11/28/17 UB Fall 2017

16 Covert Channels It is any communication channel that can be exploited by a process to transfer info in a manner that violates system’s security policy A built-in Trojan horse is used to get data by a programmer who is deceptive Why would one set up a covert channel? Gain some benefit, illegally Legitimate User Service Program Protected Data Spy 11/28/17 UB Fall 2017

17 How to Create Covert Channels?
In many not-so-obvious ways Short message is binary 0, long message is 1 Total vs. totals in a table No. of spaces after : Last digit in field that would not be checked No space after last line of a subtotal Last digit in insignificant field No. of lines per page Use of . Instead of : 11/28/17 UB Fall 2017

18 Storage and Timing Covert Channels
Storage Channels Pass info by presence or absence of objects in storage An example is the file lock channel When you write, your file is locked so that nobody else can write at the same time This file lock, unlock can be used to signal 1 bit of data Timing Channels Pass info by the speed at which things happen A service program uses a timing channel to communicate by using or not using an assigned amount of time Multiuser system with two users – alternate allocation of time quanta Identifying covert channels is generally hard 11/28/17 UB Fall 2017

19 References Charles P. Pfleeger, Shari L. Pfleeger “Security in Computing”, - Prentice Hall (2007), 4th edition Carl E. Landwehr, Alan R. Bull, John P. McDermott, Williams S. Choi, “A Taxonomy of Computer Program Security Flaws”, Information Technology Division, Naval Research Laboratory, Washington D. C., appeared in ACM Computing Surveys Sept. 1994 11/28/17 UB Fall 2017

Download ppt "CSE565: Computer Security Lecture 27 Program Security"

Similar presentations

Lecture: Malicious Code CIS 3360 Ratan K. Guha. Malicious Code2 Overview and Reading Assignments Defining malicious logic Types Action by Viruses Reading.

Lecture: Malicious Code CIS 3360 Ratan K. Guha. Malicious Code2 Overview and Reading Assignments Defining malicious logic Types Action by Viruses Reading.
Chapter 3 (Part 1) Network Security

Chapter 3 (Part 1) Network Security
A Taxonomy of Computer Program Security Flaws C. E. Landwehr, A. R. Bull, J. P. McDermott and W.S. Choi -- Presented by: Feng Hui Luo ACM Computing Surveys,

A Taxonomy of Computer Program Security Flaws C. E. Landwehr, A. R. Bull, J. P. McDermott and W.S. Choi -- Presented by: Feng Hui Luo ACM Computing Surveys,
ITMS- 3153 Information Systems Security 1. Malicious Code Malicious code or rogue program is the general name for unanticipated or undesired effects in.

ITMS Information Systems Security 1. Malicious Code Malicious code or rogue program is the general name for unanticipated or undesired effects in.
________________ CS3235, Nov 2002 Viruses Adapted from Pfleeger[Chap 5]. A virus is a program [fragment] that can pass on malicious code [usually itself]

________________ CS3235, Nov 2002 Viruses Adapted from Pfleeger[Chap 5]. A virus is a program [fragment] that can pass on malicious code [usually itself]
Chapter 14 Computer Security Threats Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Operating Systems: Internals and Design Principles,

Chapter 14 Computer Security Threats Patricia Roy Manatee Community College, Venice, FL ©2008, Prentice Hall Operating Systems: Internals and Design Principles,
What we will cover… Protection and Security in OS.

What we will cover… Protection and Security in OS.
1 Pertemuan 05 Malicious Software Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.

1 Pertemuan 05 Malicious Software Matakuliah: H0242 / Keamanan Jaringan Tahun: 2006 Versi: 1.
Lecture 15 Overview. Kinds of Malicious Codes Virus: a program that attaches copies of itself into other programs. – Propagates and performs some unwanted.

Lecture 15 Overview. Kinds of Malicious Codes Virus: a program that attaches copies of itself into other programs. – Propagates and performs some unwanted.
Chap 3: Program Security.  Programming errors with security implications: buffer overflows, incomplete access control  Malicious code: viruses, worms,

Chap 3: Program Security.  Programming errors with security implications: buffer overflows, incomplete access control  Malicious code: viruses, worms,
1 Computer Viruses (and other “Malicious Programs) Computer “Viruses” and related programs have the ability to replicate themselves on an ever increasing.

1 Computer Viruses (and other “Malicious Programs) Computer “Viruses” and related programs have the ability to replicate themselves on an ever increasing.
1 Malicious Logic CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute March 25, 2004.

1 Malicious Logic CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute March 25, 2004.
Protection and Security CSCI 444/544 Operating Systems Fall 2008.

Protection and Security CSCI 444/544 Operating Systems Fall 2008.
Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden

Henric Johnson1 Chapter 10 Malicious Software Henric Johnson Blekinge Institute of Technology, Sweden
Video Following is a video of what can happen if you don’t update your security settings! security.

Video Following is a video of what can happen if you don’t update your security settings! security.
1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.

1 Chap 10 Malicious Software. 2 Viruses and ”Malicious Programs ” Computer “Viruses” and related programs have the ability to replicate themselves on.
Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders.

Chapter 15: Security (Part 1). The Security Problem Security must consider external environment of the system, and protect the system resources Intruders.
14.1 Silberschatz, Galvin and Gagne ©2009 Operating System Concepts with Java – 8 th Edition Chapter 14: Protection.

14.1 Silberschatz, Galvin and Gagne ©2009 Operating System Concepts with Java – 8 th Edition Chapter 14: Protection.
CSCE 201 Attacks on Desktop Computers: Malicious Code Hardware attacks.

CSCE 201 Attacks on Desktop Computers: Malicious Code Hardware attacks.
 a crime committed on a computer network, esp. the Internet.

 a crime committed on a computer network, esp. the Internet.

Similar presentations

Ads by Google