Presentation is loading. Please wait.

Presentation is loading. Please wait.

Web Trust Boundaries and Security Vulnerabilities Haris Volos and Hidayat Teonadi CS739 – Distributed Systems.

Published byCaroline Ebanks Modified over 9 years ago

Similar presentations

Presentation on theme: "Web Trust Boundaries and Security Vulnerabilities Haris Volos and Hidayat Teonadi CS739 – Distributed Systems."— Presentation transcript:

1 Web Trust Boundaries and Security Vulnerabilities Haris Volos and Hidayat Teonadi CS739 – Distributed Systems

2 2 Problem Web of Trust –Web crosses many trust boundaries To avoid Careless Delegation of Trust should follow principles: –Be specific Who is in your trusted group? What actions do we trust them to take? –Be careful Bad design example –A server offloads work to a client that “trusts”, but client is either malicious or is bypassed.

3 3 Starting point...Java Applets Hypothesis –Applets perform computation on client browser on behalf of the server. Using a web crawler (Larbin), we sought for Java applets. –Besides Java chat applications, other results seem uninteresting. Conclusion –Applets usage is not rampant.

4 4 Web Apps & JavaScript Interactive Web Applications –Main app resides in server-side (Servlet) –Use JavaScript for client-side computation Example: input data validation Robust Web Applications –JavaScript can be easily circumvented. Can be just disabled by browsers. –Never rely solely on JavaScript client-side validation.

5 5 Security Vulnerabilities Prevalent, because web apps cross trust boundaries A malicious user will try to exploit these Web app must protect itself –Is cryptography enough? No! –Must validate any data that crosses the trust boundary Example Vulnerabilities –Cross site scripting, SQL Injection

6 6 Case Study: RoundCube Webmail RoundCube Webmail is a browser based IMAP client. Uses a backend Apache/PHP/MySQL. RSnake from ha.ckers.org exposed a type 1 cross site scripting (XSS) vulnerability –Type-1 XSS: allows foreign code injection into a server generated dynamic page. –Exploit scenario: malicious script can silently obtain sensitive credentials in the form of cookies. We managed to reproduce the XSS vulnerability locally. Realized how seemingly adequate server-side validation can still be circumvented.

7 7 Next Step Study trust boundary more broadly Find more web applications Use a Web Vulnerability Scanner (e.g. Gamja) to guide search –Expose vulnerabilities –Study them, and –Propose some corrections

Download ppt "Web Trust Boundaries and Security Vulnerabilities Haris Volos and Hidayat Teonadi CS739 – Distributed Systems."

Similar presentations

Cross-Site Scripting Issues and Defenses Ed Skoudis Predictive Systems © 2002, Predictive Systems.

Cross-Site Scripting Issues and Defenses Ed Skoudis Predictive Systems © 2002, Predictive Systems.
Nick Feamster CS 6262 Spring 2009

Nick Feamster CS 6262 Spring 2009
Past, Present and Future By Eoin Keary and Jim Manico

Past, Present and Future By Eoin Keary and Jim Manico
SEC835 OWASP Top Ten Project.

SEC835 OWASP Top Ten Project.
WEB BROWSER SECURITY By Robert Sellers Brian Bauer.

WEB BROWSER SECURITY By Robert Sellers Brian Bauer.
Creating Stronger, Safer, Web Facing Code JPL IT Security Mary Rivera June 17, 2011.

Creating Stronger, Safer, Web Facing Code JPL IT Security Mary Rivera June 17, 2011.
Bypassing Client-Side Protection CSE 591 – Security and Vulnerability Analysis Spring 2015 Adam Doupé Arizona State University

Bypassing Client-Side Protection CSE 591 – Security and Vulnerability Analysis Spring 2015 Adam Doupé Arizona State University
©2009 Justin C. Klein Keane PHP Code Auditing Session 5 XSS & XSRF Justin C. Klein Keane

©2009 Justin C. Klein Keane PHP Code Auditing Session 5 XSS & XSRF Justin C. Klein Keane
Cross Site Scripting a.k.a. XSS Szymon Siewior. Disclaimer Everything that will be shown, was created for strictly educational purposes. You may reuse.

Cross Site Scripting a.k.a. XSS Szymon Siewior. Disclaimer Everything that will be shown, was created for strictly educational purposes. You may reuse.
By Brian Vees.  SQL Injection  Username Enumeration  Cross Site Scripting (XSS)  Remote Code Execution  String Formatting Vulnerabilities.

By Brian Vees.  SQL Injection  Username Enumeration  Cross Site Scripting (XSS)  Remote Code Execution  String Formatting Vulnerabilities.
IDAsec copyright - all rights reserved1 Web Vulnerabilities in the real world.

IDAsec copyright - all rights reserved1 Web Vulnerabilities in the real world.
It’s always better live. MSDN Events Security Best Practices Part 2 of 2 Reducing Vulnerabilities using Visual Studio 2008.

It’s always better live. MSDN Events Security Best Practices Part 2 of 2 Reducing Vulnerabilities using Visual Studio 2008.
Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.

Information Networking Security and Assurance Lab National Chung Cheng University 1 Top Vulnerabilities in Web Applications (I) Unvalidated Input:  Information.
Multiple Tiers in Action

Multiple Tiers in Action
CS 290C: Formal Models for Web Software Lecture 1: Introduction Instructor: Tevfik Bultan.

CS 290C: Formal Models for Web Software Lecture 1: Introduction Instructor: Tevfik Bultan.
CROSS SITE SCRIPTING..! (XSS). Overview What is XSS? Types of XSS Real world Example Impact of XSS How to protect against XSS?

CROSS SITE SCRIPTING..! (XSS). Overview What is XSS? Types of XSS Real world Example Impact of XSS How to protect against XSS?
Presenter Deddie Tjahjono.  Introduction  Website Application Layer  Why Web Application Security  Web Apps Security Scanner  About  Feature  How.

Presenter Deddie Tjahjono.  Introduction  Website Application Layer  Why Web Application Security  Web Apps Security Scanner  About  Feature  How.
Introducing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa.

Introducing LAMP: Linux, Apache, MySQL and PHP Track 2 Workshop PacNOG 7 July 1, 2010 Pago Pago, American Samoa.
Martin Kruliš 2. 4. 2015 by Martin Kruliš (v1.0)1.

Martin Kruliš by Martin Kruliš (v1.0)1.
Security and Risk Management. Who Am I Matthew Strahan from Content Security Principal Security Consultant I look young, but I’ve been doing this for.

Security and Risk Management. Who Am I Matthew Strahan from Content Security Principal Security Consultant I look young, but I’ve been doing this for.

Similar presentations

Ads by Google