Presentation is loading. Please wait.

Presentation is loading. Please wait.

OWASP AppSec Israel, 13/Oct/2015 Yossi Oren, Ben Gurion University Joint work with Vasileios P. Kemerlis,

Published bySuzan Moore Modified over 9 years ago

Similar presentations

Presentation on theme: "OWASP AppSec Israel, 13/Oct/2015 Yossi Oren, Ben Gurion University Joint work with Vasileios P. Kemerlis,"— Presentation transcript:

1 OWASP AppSec Israel, 13/Oct/2015 Yossi Oren, Ben Gurion University yos@bgu.ac.ilyos@bgu.ac.il, @yossioren@yossioren Joint work with Vasileios P. Kemerlis, Simha Sethumadhavan and Angelos D. Keromytis

2 \ Want to keep your job? We got you covered Want to jump in? We got you covered Only 62 minutes from Azrieli! (closer than Hertzliya) More info: batelgo@bgu.ac.il, or talk to me!batelgo@bgu.ac.il

3 Capisce? Mapping strategy Sets, lines and associativity Replacement policy Cache slicing Virtual memory

4 Side-Channel Attacks 4 Input Output Secure Functionality Secret (In this work: cache attacks)

5 Side-Channel Side-Channel Attacks 5 Input Output Secure Device Secret (In this work: cache attacks)

6 Side-Channel Attacks are powerful! 6 From: An Introduction to Implementation Attacks and Countermeasures, Thomas Popp, MEMOCODE 2009

7 The Problem with Side-Channel Attacks 7 Most side-channel attacks require “close proximity” to the victim For cache attacks, this means code execution privileges No “close proximity” ⇒ no risk ⇒ no countermeasures

8 In This Work A cache attack delivered from a webpage – Minimal requirements from the victim – Attack is scalable to millions of victims How to use the attack to compromise the victim’s privacy 8

9 Cache, Cache and more Cache Mapping strategy Sets, lines and associativity Replacement policy Cache slicing Virtual memory 9

10 Cache Attack Fundamentals Basic idea: Find a cache set which attacker shares with the victim, and then monitor its usage over time First identified in 1992, used since to attack AES, RSA, defy sandboxing, break ASLR and more One common form of attack is P RIME +P ROBE 10

11 The P RIME +P ROBE Attack Cache Set 1 Set 2 Set n Attacker Memory Page 1 Page m Page 2 11

12 The P RIME +P ROBE Attack CacheAttacker Memory Set 1 Set 2 Set n Page 1 Page m Page 2 12

13 The P RIME +P ROBE Attack CacheAttacker Memory Set 1 Set 2 Set n Page 1 Page m Page 2 13

14 The P RIME +P ROBE Attack CacheAttacker Memory Set 1 Set 2 Set n Page 1 Page m Page 2 14

15 Implementation Challenges Attack must be written in Javascript: – Non-deterministic just-in-time compiler – No direct memory access – No pointers – No native code/syscalls – BUT: some nice new APIs...

16 Memorygrams

17 An Attack on Privacy 17 Traditional Cache Attacks This Work Victim is a virtual machine instance running in the cloud, performing some business process Victim is a standard personal computer, used for browsing the web, e-mail, etc. No interactive input capability (keyboard, mouse) Private information is encoded in victim’s interactive inputs Attack targets victim’s cryptographic keys Attack targets victim’s privacy Note: Attack setup is technically capable of extracting cryptographic keys!

18 An Attack on Privacy – Setup 18

19 An Attack on Privacy – Results Safari 8.0.6 Private BrowsingTor Browser 4.5.1

20 Responsible Disclosure Reported in March 2015 to Apple, Microsoft, Google and Mozilla (CVE-2015-5825) Already fixed in Safari 9, Chrome 45, Firefox 41 Future APIs in Javascript also affected

21 Conclusion and Discussion We presented a side-channel attack that has minimal requirements from the victim The attack compromises “human secrets” and not cryptographic keys Many more systems should consider side- channel defenses

22 Thanks! For more info: – http://iss.oy.ne.ro/SpyInTheSandbox#OWASP http://iss.oy.ne.ro/SpyInTheSandbox#OWASP 22 source:instagram.com/50cent

Download ppt "OWASP AppSec Israel, 13/Oct/2015 Yossi Oren, Ben Gurion University Joint work with Vasileios P. Kemerlis,"

Similar presentations

Presented by Vaibhav Rastogi. Current browsers try to separate host system from Web Websites evolved into web applications Lot of private data on the.

Presented by Vaibhav Rastogi. Current browsers try to separate host system from Web Websites evolved into web applications Lot of private data on the.
Software Security & Privacy Risks in Mobile E-Commerce Kartikeya Kakarala CSCI 5939-Independent Study Wireless Application Protocols.

Software Security & Privacy Risks in Mobile E-Commerce Kartikeya Kakarala CSCI 5939-Independent Study Wireless Application Protocols.
Rohit Kugaonkar CMSC 601 Spring 2011 May 9 th 2011

Rohit Kugaonkar CMSC 601 Spring 2011 May 9 th 2011
Operating System Structures

Operating System Structures
Ensuring Operating System Kernel Integrity with OSck By Owen S. Hofmann Alan M. Dunn Sangman Kim Indrajit Roy Emmett Witchel Kent State University College.

Ensuring Operating System Kernel Integrity with OSck By Owen S. Hofmann Alan M. Dunn Sangman Kim Indrajit Roy Emmett Witchel Kent State University College.
On the Privacy of Private Browsing Kiavash Satvat, Matt Forshaw, Feng Hao, Ehsan Toreini Newcastle University DPM’13.

On the Privacy of Private Browsing Kiavash Satvat, Matt Forshaw, Feng Hao, Ehsan Toreini Newcastle University DPM’13.
Rowan County Public Library. What Is a Web Browser? A web browser is a software application that allows you to browse the internet, provided that you.

Rowan County Public Library. What Is a Web Browser? A web browser is a software application that allows you to browse the internet, provided that you.
An Evaluation of the Google Chrome Extension Security Architecture

An Evaluation of the Google Chrome Extension Security Architecture
Secure web browsers, malicious hardware, and hardware support for binary translation Sam King.

Secure web browsers, malicious hardware, and hardware support for binary translation Sam King.
Design & Developed by: EATL

Design & Developed by: EATL
Tunis, Tunisia, 28 April 2014 Business Values of Virtualization Mounir Ferjani, Senior Product Manager, Huawei Technologies 2.

Tunis, Tunisia, 28 April 2014 Business Values of Virtualization Mounir Ferjani, Senior Product Manager, Huawei Technologies 2.
The Most Dangerous Code in the Browser Stefan Heule, Devon Rifkin, Alejandro Russo, Deian Stefan Stanford University, Chalmers University of Technology.

The Most Dangerous Code in the Browser Stefan Heule, Devon Rifkin, Alejandro Russo, Deian Stefan Stanford University, Chalmers University of Technology.
PREVENTING CRYPTOGRAPHIC KEY LEAKAGE IN CLOUD VIRTUAL MACHINES STUDENT: FATEMAH ALHARBI PROFESSOR: NAEL ABU-GHAZALEH EE260 SEMINAR IN ELECTRICAL ENGINEERING.

PREVENTING CRYPTOGRAPHIC KEY LEAKAGE IN CLOUD VIRTUAL MACHINES STUDENT: FATEMAH ALHARBI PROFESSOR: NAEL ABU-GHAZALEH EE260 SEMINAR IN ELECTRICAL ENGINEERING.
Full AES key extraction in 65 milliseconds using cache attacks

Full AES key extraction in 65 milliseconds using cache attacks
Honors 101, Fall 2006 Please do not sit in back of room! Lots of info on web page Join the mailing list Download Eclipse and start using it Read the text.

Honors 101, Fall 2006 Please do not sit in back of room! Lots of info on web page Join the mailing list Download Eclipse and start using it Read the text.
Varun Sharma Security Engineer | ACE Team | Microsoft Information Security

Varun Sharma Security Engineer | ACE Team | Microsoft Information Security
Presentation By Deepak Katta

Presentation By Deepak Katta
RFC6520 defines SSL Heartbeats - What are they? 1. SSL Heartbeats are used to keep a connection alive without the need to constantly renegotiate the SSL.

RFC6520 defines SSL Heartbeats - What are they? 1. SSL Heartbeats are used to keep a connection alive without the need to constantly renegotiate the SSL.
Introduction The performance of web is getting important due to the fact that more and more services have been presented by web interfaces recently. Our.

Introduction The performance of web is getting important due to the fact that more and more services have been presented by web interfaces recently. Our.
SECURITY IN CLOUD COMPUTING By Bina Bhaskar Anand Mukundan.

SECURITY IN CLOUD COMPUTING By Bina Bhaskar Anand Mukundan.

Similar presentations

Ads by Google