Presentation is loading. Please wait.

Presentation is loading. Please wait.

Threat Modeling for Hostile Client Systems Avni Rambhia.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Threat Modeling for Hostile Client Systems Avni Rambhia."— Presentation transcript:

1 Threat Modeling for Hostile Client Systems Avni Rambhia

2 Outline Goals of threat modeling Quick overview of generic threat modeling Quirks of a hostile user system Threat modeling for hostile user systems Interactive threat model for PKI signature verification Summary Questions and discussion

3 What is threat modeling? Discover and document threats to a system or application –Threat = system is compromised in a certain way Fake transaction is created Determine severity of each threat –Severity = measure of danger if the threat were successfully executed. 20,000 dollar car shipped to different address Determine vulnerabilities or mitigations for each threat path –Threat path = way in which threat is executed Session number can be guessed and fake cookie created

4 Conventional Threat Modeling Create a threat model –APIs or entry points (trusted/untrusted) –Data flows –Assets Determine the severity of each threat Decompose application to discover vulnerabilities Document external dependencies and assumptions

5 VERIFIERVERIFIER PKI-based Authentication System Quick and Dirty overview Random Challenge = n Certificate + signed n Verify Certificate Verify Signed n Authentication success or failure REQUESTERREQUESTER 1 2 3 4 5

6 Conventional Threat Modeling VERIFIERVERIFIER REQUESTERREQUESTER Random Challenge = n Certificate + signed n Verify Certificate Verify Signed n Authentication success or failure Repeated or predictable n MIMMIM MIMMIM Buffer overflow Integer overflow Private key discovered using known plaintext

7 Hostile User Threat Modeling What is hostile user scenario? –Administrator of system has reason to attack the system to subvert it. virus running in kernel or with admin privilege user of multimedia management system More effective to threat model based on –Assumptions –Assets

8 Some assumptions in PKI Verifier Root public key used to verify the certificate is correct Local time used to check certificate expiry is correct Cryptography functions correctly perform operations and correctly report results Authentication does not succeed unless certificate and signature are correctly verified

9 Some assets in Verifier Challenge –Random number generator Certificate verification –Root public key (certificate chain) –System clock –Cryptography routines (signature verification)

10 Hostile Threat Modeling - Verifier VERIFIERVERIFIER Verify Certificate Verify Signed n Random Challenge = n Certificate + signed n success or failure Replace random no. generator Change code to not call random no. fn. Bypass verification routines Tamper clock Replace public key! Replace hash calculation function Tamper (hash == hash) condition to if (1) Replace hash calculation function

11 You have the threats. What next? Determine severity/risk of each threat –Relative to the security requirements of the system (penny sale auditing v/s NSA auditing) –DREAD (conventional) Damage Potential, Reproducibility, Exploitability, Affected Users, Discoverability –FACE (For hostile user systems) Feasibility, Asset value, Collateral Damage, Execution Difficulty –In general, don’t consider will-do mitigations while calculating risks.

12 Mitigating Risk For all threats with unacceptable risk, determine mitigations Some mitigations for hostile user systems: –Obfuscation/Fragilization –Integrity verification –In-lining critical functions –Server-based security –Stack checking –Privileged execution (more useful for safety against virus)

13 Summary Hostile user threat modeling has a much larger threat surface than conventional threat modeling Asset and Assumption based investigation is best approach for hostile user systems Systems needing resistance to hostile users have unique mitigation needs Breach of crypto algorithms is the least of your worries for such systems

14 Key Takeaway Design of hostile user systems is challenging. Whenever you design a system, identify all portions which must be resistant against hostile users, and ensure that your design can achieve the requisite level of security

15 Resources/Contact Avni Rambhia, Principal, Security Matters –www.avnirambhia.comwww.avnirambhia.com –avni@avnirambhia.com Conventional Threat Modeling resources –Writing Secure Code, Second Edition Mike Howard, Dave LeBlanc (MS Press) –Threat Modeling Frank Swiderski, Window Snyder (MS Press)

16 Questions/Discussion

Download ppt "Threat Modeling for Hostile Client Systems Avni Rambhia."

Similar presentations

Chapter 14 – Authentication Applications

Chapter 14 – Authentication Applications
The World of Access Controls

The World of Access Controls
MAC Raushan. DES simple fiestel network 3131 PlainText Blocks 2*4=8bits 31 f f =0011 xor 0011=0000 = 0 f(r,k)=(2*r+k^2)%8 f(1,5)=(2*1+5^2)%8=3 xor 3 3.

MAC Raushan. DES simple fiestel network 3131 PlainText Blocks 2*4=8bits 31 f f =0011 xor 0011=0000 = 0 f(r,k)=(2*r+k^2)%8 f(1,5)=(2*1+5^2)%8=3 xor 3 3.
Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2000CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Lesson Title: Threat Modeling Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas 1 This.

Lesson Title: Threat Modeling Dale R. Thompson Computer Science and Computer Engineering Dept. University of Arkansas 1 This.
Risk Assessment What is RISK?  requires vulnerability  likelihood of successful attack  amount of potential damage Two approaches:  threat modeling.

Risk Assessment What is RISK?  requires vulnerability  likelihood of successful attack  amount of potential damage Two approaches:  threat modeling.
Bridging the gap between software developers and auditors.

Bridging the gap between software developers and auditors.
1 Network Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

1 Network Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2012 Lecture 2 08/21/2012 Security and Privacy in Cloud Computing.

Ragib Hasan University of Alabama at Birmingham CS 491/691/791 Fall 2012 Lecture 2 08/21/2012 Security and Privacy in Cloud Computing.
Digital Signatures and Hash Functions. Digital Signatures.

Digital Signatures and Hash Functions. Digital Signatures.
Software Fault Injection for Survivability Jeffrey M. Voas & Anup K. Ghosh Presented by Alison Teoh.

Software Fault Injection for Survivability Jeffrey M. Voas & Anup K. Ghosh Presented by Alison Teoh.
1 Digital Signatures & Authentication Protocols. 2 Digital Signatures have looked at message authentication –but does not address issues of lack of trust.

1 Digital Signatures & Authentication Protocols. 2 Digital Signatures have looked at message authentication –but does not address issues of lack of trust.
August 1, 2006 XP Security. August 1, 2006 Comparing XP and Security Goals XP GOALS User stories No BDUF Refactoring Continuous integration Simplicity.

August 1, 2006 XP Security. August 1, 2006 Comparing XP and Security Goals XP GOALS User stories No BDUF Refactoring Continuous integration Simplicity.
August 1, 2006 Software Security. August 1, 2006 Essential Facts Software Security != Security Features –Cryptography will not make you secure. –Application.

August 1, 2006 Software Security. August 1, 2006 Essential Facts Software Security != Security Features –Cryptography will not make you secure. –Application.
19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.

19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.
BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.

BY MUKTADIUR RAHMAN MAY 06, 2010 INTERODUCTION TO CRYPTOGRAPHY.
Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.

Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.
Spring 2003CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.

Spring 2003CS 4611 Security Outline Encryption Algorithms Authentication Protocols Message Integrity Protocols Key Distribution Firewalls.
Computer Security and Penetration Testing

Computer Security and Penetration Testing
Lecture 12 e-mail Security. Summary  PEM  secure email  PGP  S/MIME.

Lecture 12 Security. Summary  PEM  secure  PGP  S/MIME.

Similar presentations

Ads by Google