Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security & Cryptographic Methods Unix System Administration May 28, 2008 Rabat, Morocco Hervey Allen.

Published byBlake Haynes Modified over 8 years ago

Similar presentations

Presentation on theme: "Security & Cryptographic Methods Unix System Administration May 28, 2008 Rabat, Morocco Hervey Allen."— Presentation transcript:

1

2 Security & Cryptographic Methods Unix System Administration May 28, 2008 Rabat, Morocco Hervey Allen

3 NSRC@AfNOG '08 Rabat Reminder: Core Security Principals What are they? (1)-- C onfidentiality (2)-- I ntegrity (3)-- A uthentication - Access Control - Verification (4)-- A vailability

4 NSRC@AfNOG '08 Rabat Cryptographic Methods Critical for confidentiality, integrity, and authentication. Indirectly they lead to better availability. What are some methods and tools? ssh ssl ciphers digital certificates digital signatures md5/sha1 pgp... public keys private keys hashes des/3des/blowfish...Do you have any more?

5 NSRC@AfNOG '08 Rabat What We'll Cover Digital signatures TLS/SSL SSH PGP

6 NSRC@AfNOG '08 Rabat Public Key Cryptosystems are Important But they require a lot of computation (expensive in CPU time)‏ So we use some tricks to minimise the amount of data which is encrypted

7 NSRC@AfNOG '08 Rabat When encrypting (review): Use a symmetric cipher with a random key (the "session key"). Use a public key cipher to encrypt the session key and send it along with the encrypted document. k1k1 k2k2 encrypted session key cipher text random session key ksks ksks (private)‏ (public)‏

8 NSRC@AfNOG '08 Rabat When authenticating (review): Take a hash of the document and encrypt only that. An encrypted hash is called a "digital signature" k2k2 k1k1 digital signature COMPARE hash (public)‏ (private)‏

9 NSRC@AfNOG '08 Rabat Digital Signatures have many uses, for example: E-commerce. An instruction to your bank to transfer money can be authenticated with a digital signature. Legislative regimes are slow to catch up A trusted third party can issue declarations such as "the holder of this key is a person who is legally known as Alice Hacker" Like a passport binds your identity to your face Such a declaration is called a "certificate" You only need the third-party's public key to check the signature

10 NSRC@AfNOG '08 Rabat Do public keys really solve the key distribution problem? Often we want to communicate securely with a remote party whose key we don't know We can retrieve their public key over the network But what if there's someone in between intercepting our traffic? public key

11 NSRC@AfNOG '08 Rabat The "man-in-the-middle" Attack  Passive sniffing is no problem  But if they can modify packets, they can substitute a different key  The attacker uses separate encryption keys to talk to both sides  You think your traffic is secure, but it isn't! key 1key 2 Attacker sees all traffic in plain text - and can modify it!

12 NSRC@AfNOG '08 Rabat TLS/SSL – Digital Certificates

13 NSRC@AfNOG '08 Rabat Digital Certificates can solve the man-in-the- middle problem Problem: I have no prior knowledge of the remote side's key, so cannot tell if a different one has been substituted But maybe someone else does A trusted third party can vouch for the remote side by signing a certificate which contains the remote side's name & public key I can check the validity of the certificate using the trusted third party's public key

14 NSRC@AfNOG '08 Rabat Example: TLS (SSL) web server with digital certificate I generate a private key on my webserver I send my public key plus my identity (my webserver's domain name) to a certificate authority (CA)‏ The CA manually checks that I am who I say I am, i.e. I own the domain They sign a certificate containing my public key, my domain name, and an expiration date I install the certificate on my web server

15 NSRC@AfNOG '08 Rabat When a client's web browser connects to me using HTTPS: They negotiate an encrypted session with me, during which they learn my public key I send them the certificate They verify the certificate using the CA's public key, which is built-in to the browser If the signature is valid, the domain name in the URL matches the domain name in the certificate, and the expiration date has not passed, they know the connection is secure (Q: why is there an expiration date?)‏

16 NSRC@AfNOG '08 Rabat The security of TLS depends on: Your webserver being secure So nobody else can obtain your private key The CA's public key being in all browsers The CA being well managed How carefully do they look after their own private keys? The CA being trustworthy Do they vet all certificate requests properly? Could a hacker persuade the CA to sign their key pretending to be someone else? What about a government? Do you trust them? Why?

17 NSRC@AfNOG '08 Rabat Testing TLS (SSL) Applications There is an equivalent of telnet you can use: openssl s_client It opens a TCP connection, negotiates TLS, then lets you type data $ openssl s_client -connect afnog.org:443 CONNECTED(00000003)‏ depth=1 /C=US/ST=Washingron/L=Bainbridge Island/O=RGnet/PSGnet/OU= \ Engineering/CN=RGnet Root CA/emailAddress=randy@psg.com verify error:num=19:self signed certificate in certificate chain verify return:0... New, TLSv1/SSLv3, Cipher is DHE-RSA-AES256-SHA... And, at the end you see: Verify return code: 19 (self signed certificate in certificate chain)‏

18 NSRC@AfNOG '08 Rabat Limitations of s_client Works only for protocols which use TLS from the very beginning of the connection These protocols are identified by using a different port number to the non-encrypted version (HTTP port 80), HTTPS port 443 (POP3 port 110), POP3S port 995 Other protocols start unencrypted and then "upgrade" the connection to encrypted on request e.g. SMTP has a "STARTTLS" command s_client is not usable for these

19 NSRC@AfNOG '08 Rabat SSH

20 NSRC@AfNOG '08 Rabat SSH Uses a Simple Solution to man- in-the-middle The first time you connect to a remote host, remember its public key Stored in ~/.ssh/known_hosts The next time you connect, if the remote key is different, then maybe an attacker is intercepting the connection! Or maybe the remote host has just got a new key, e.g. after a reinstall. But it's up to you to resolve the problem Relies on there being no attack in progress the first time you connect to a machine Connect on LAN before travelling with laptop

21 NSRC@AfNOG '08 Rabat SSH Can Eliminate Passwords Use public-key cryptography to prove who you are Generate a public/private key pair locally ssh-keygen -t rsa Private key is ~/.ssh/id_rsa Public key is ~/.ssh/id_rsa.pub Install your PUBLIC key on remote hosts mkdir ~/.ssh chmod 755 ~/.ssh Copy public key into ~/.ssh/authorized_keys Login!

22 NSRC@AfNOG '08 Rabat Notes on SSH Authentication Private key is protected by a passphrase So you have to give it each time you log in Or use "ssh-agent" which holds a copy of your passphrase in RAM No need to change passwords across dozens of machines Disable passwords entirely! /etc/ssh/sshd_config Annoyingly, for historical reasons there are three different types of SSH key SSH1 RSA, SSH2 DSA, SSH2 RSA

23 NSRC@AfNOG '08 Rabat PGP/GPG – Pretty Good Privacy

24 NSRC@AfNOG '08 Rabat PGP Takes a Different View We don't trust anyone except our friends (especially not big corporate monopolies)‏ You sign your friends' keys to vouch for them Other people can choose to trust your signature as much as they trust you Generates a distributed "web of trust" Sign someone's key when you meet them face to face - "PGP key signing parties"

25 NSRC@AfNOG '08 Rabat Summary

26 NSRC@AfNOG '08 Rabat Designing a Good Cryptosystem is Very Difficult Many possible weaknesses and types of attack, often not obvious DON'T design your own! DO use expertly-designed cryptosystems which have been subject to widespread scrutiny Understand how they work and where the potential weaknesses are Remember the other weaknesses in your systems, especially the human ones, speaking of which...

27 NSRC@AfNOG '08 Rabat The following code was removed from md_rand.c on Debian: The end result was disastrous... MD_Update(&m,buf,j); [.. ] MD_Update(&m,buf,j); /* purify complains */

28 NSRC@AfNOG '08 Rabat This was a human issue, and a subtle one at that. More information is here: http://metasploit.com/users/hdm/tools/debian-openssl/

29 NSRC@AfNOG '08 Rabat Where can you apply these cryptographic methods? At the link layer PPP encryption At the network layer IPSEC At the transport layer TLS (SSL): many applications support it At the application layer SSH: system administration, file transfers PGP/GPG: for securing E-mail messages, stand-alone documents, software packages etc. Tripwire (and others): system integrity checks

30 NSRC@AfNOG '08 Rabat Start Using Cryptography Now! Use ssh for remote administration. Use scp/sftp for files transfer (except public ftp repositories). Install pop3/imap/smtp servers with tls support. Phase out the use of non-tls versions (really!)‏ Use https for any web application where users enter passwords or confidential data e.g. webmail, databases

31 NSRC@AfNOG '08 Rabat Any questions?

Download ppt "Security & Cryptographic Methods Unix System Administration May 28, 2008 Rabat, Morocco Hervey Allen."

Similar presentations

Key Management. Shared Key Exchange Problem How do Alice and Bob exchange a shared secret? Offline – Doesnt scale Using public key cryptography (possible)

Key Management. Shared Key Exchange Problem How do Alice and Bob exchange a shared secret? Offline – Doesnt scale Using public key cryptography (possible)
CP3397 ECommerce.

CP3397 ECommerce.
Grid Computing, B. Wilkinson, 20045a.1 Security Continued.

Grid Computing, B. Wilkinson, 20045a.1 Security Continued.
Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.

Internet and Intranet Protocols and Applications Lecture 9a: Secure Sockets Layer (SSL) March, 2004 Arthur Goldberg Computer Science Department New York.
Cryptography and Network Security

Cryptography and Network Security
SSL CS772 Fall 2011. Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.

SSL CS772 Fall Secure Socket layer Design Goals: SSLv2) SSL should work well with the main web protocols such as HTTP. Confidentiality is the top.
Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.

Topic 8: Secure communication in mobile devices. Choice of secure communication protocols, leveraging SSL for remote authentication and using HTTPS for.
CSE 461 Section. “Transport Layer Security” protocol Standard protocol for encrypting Internet traffic Previously known as SSL (Secure Sockets Layer),

CSE 461 Section. “Transport Layer Security” protocol Standard protocol for encrypting Internet traffic Previously known as SSL (Secure Sockets Layer),
NSRC Workshop Some fundamental security concerns... Confidentiality - could someone else read my data? Integrity - has my data been changed? Authentication.

NSRC Workshop Some fundamental security concerns... Confidentiality - could someone else read my data? Integrity - has my data been changed? Authentication.
SSL & SharePoint IT:Network:Applications. Agenda Secure Socket Layer Encryption 101 SharePoint Customization SharePoint Integration.

SSL & SharePoint IT:Network:Applications. Agenda Secure Socket Layer Encryption 101 SharePoint Customization SharePoint Integration.
1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.

1 Supplement III: Security Controls What security services should network systems provide? Confidentiality Access Control Integrity Non-repudiation Authentication.
15-1 Last time Internet Application Security and Privacy Public-key encryption Integrity.

15-1 Last time Internet Application Security and Privacy Public-key encryption Integrity.
Encryption and Firewalls Chapter 7. Learning Objectives Understand the role encryption plays in firewall architecture Know how digital certificates work.

Encryption and Firewalls Chapter 7. Learning Objectives Understand the role encryption plays in firewall architecture Know how digital certificates work.
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 12 Applying Cryptography.

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 12 Applying Cryptography.
Lesson 12 Cryptography for E-Commerce. Approaches to Network Security Separate Security Protocol--SSL Application-Specific Security--SHTTP Security with.

Lesson 12 Cryptography for E-Commerce. Approaches to Network Security Separate Security Protocol--SSL Application-Specific Security--SHTTP Security with.
Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.

Mar 12, 2002Mårten Trolin1 This lecture Diffie-Hellman key agreement Authentication Certificates Certificate Authorities SSL/TLS.
 Authorization via symmetric crypto  Key exchange o Using asymmetric crypto o Using symmetric crypto with KDC  KDC shares a key with every participant.

 Authorization via symmetric crypto  Key exchange o Using asymmetric crypto o Using symmetric crypto with KDC  KDC shares a key with every participant.
Secure communications Week 10 – Lecture 2. To summarise yesterday Security is a system issue Technology and security specialists are part of the system.

Secure communications Week 10 – Lecture 2. To summarise yesterday Security is a system issue Technology and security specialists are part of the system.
Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.

Apr 22, 2003Mårten Trolin1 Agenda Course high-lights – Symmetric and asymmetric cryptography – Digital signatures and MACs – Certificates – Protocols Interactive.
Encryption An Overview. Fundamental problems Internet traffic goes through many networks and routers Many of those networks are broadcast media Sniffing.

Encryption An Overview. Fundamental problems Internet traffic goes through many networks and routers Many of those networks are broadcast media Sniffing.

Similar presentations

Ads by Google