ENCRYPTION WITHOUT MAGIC, RISK MANAGEMENT WITHOUT …€¦ · CRYPTOGRAPHY? AES #qconlondon...

ENCRYPTION WITHOUT MAGIC,

RISK MANAGEMENT WITHOUT PAIN

#qconlondon @vixentael

@vixentael Product Engineer

Feel free to reach me with security questions.

I do check my inbox :)

CRYPTOGRAPHY?

CRYPTOGRAPHY?AES

3DESCBC

Salsa20

Blowfish

SHARKRC4

ECB CTR

Twofish

Camelia

Rabbit

CRYPTOGRAPHY?AES

3DESCBC

Salsa20

Blowfish

SHARKRC4

ECB CTR

Twofish

Camelia

Rabbit

MD5SHA1SHA3

algorithms

elliptic curves

key management

public key validity

storing secrets

CRYPTOGRAPHY

cool, but…

crypto is not a

but a method to manage the attack surface

ATTACK SURFACE

– all the possible places where sensitive data may be stolen by adversary

https://www.owasp.org/index.php/Attack_Surface_Analysis_Cheat_Sheet

it’s easier to monitor the suspicious behavior

in a small place

HANDLING SECRET DATA WITH CARE

avoid plain text as possible

manage keys properly

decrease time of plaintext secrets in memory

log, monitor and inspect

– HOW TO MANAGE THE ATTACK SURFACE OF MY DATA?

one container one key

symmetric encryption with poor key management

attack surface is arbitrary

one container one key

symmetric encryption with poor key management

key leaked → data leaked

WHAT IS A CRYPTO-SYSTEM

https://en.wikipedia.org/wiki/Cryptosystem

KEY AND TRUST MANAGEMENT SHOULD REFLECT YOUR SYSTEM

MESSAGING

https://core.telegram.org/api/end-to-end

GOOD MESSAGING

IS E2EE…but your infrastructures are not only for messaging

NAIVE DATABASE ENCRYPTION

attack surface is almost everywhere

NARROWING ATTACK SURFACE

middleware-side encryption

client-side encryption

MIDDLEWARE-SIDE ENCRYPTION

SQL injectionscode injections

execution flow attacks

reflection attacks

crypto-miners everywhereMitM

REAL-WORLD WEB SERVER

ATTACK SURFACE IS EVERYWHERE :(

REAL-WORLD WEB SERVER

monitor everything

TRY SYMMETRIC ENCRYPTION?

encrypt/decrypt data using symm key

TRY SYMMETRIC ENCRYPTION?

encrypt/decrypt data using symm key

easy to steal a keyhttps://www.alibabacloud.com/help/faq-detail/37505.htm

ASYMMETRIC ENCRYPTION

wrapped data = Enc(data, random symm key)

container = Enc(wrapped data, PKweb, PubKtds)

wrapped data = Enc(data, random symm key)

container = Enc(wrapped data, PKweb, PubKtds)

PubKey of ‘trusted decryption service’

ASYMMETRIC ENCRYPTION

TRUSTED DECRYPTION SERVICE

wrapped_data = Dec(container, PKtds, PubKweb)

data = Dec(wrapped_data, random symm key)

decrypts data

trusted element in infrastructure

SEPARATION OF DUTIES

no decryption keys

monitor & log

NARROWED ATTACK SURFACE

TRUSTED DECRYPTION SERVICE

monitor everything

monitor decryption proxy

WHERE TO USE THIS TECHNIQUE?

micro-services infrastructure

public-oriented interfaces

non trusted client side (browsers, IoT devices)

hard to store keys securely

HOW TO IMPLEMENT?

ACRAhttps://github.com/cossacklabs/acra

GREEN SQLhttps://github.com/larskanis/greensql-fw

HEXATIERhttp://www.hexatier.com/

ORACLE DATABASE FIREWALL / TDEhttp://www.oracle.com/

CLIENT-SIDE ENCRYPTION

MOVE TRUST TO CLIENTS

session hijacking

unattended backupsMitM

replay attacksmisconfigured ACL

trusted element in infrastructure

P2P TRUST

system doesn’t know anything about data

encrypted containers

user-generated keys

ZERO KNOWLEDGE ARCHITECTURES

ZKA is a design principle that enables software to provide services over protected client data without having an unencrypted access to it.

e2ee clientsZKA INCLUDES:

e2ee clients

all operations are on encrypted data:

– control access to data from different users

– CRUD

– search (in encrypted data)

ZKA INCLUDES:

weak key management

algorithm weakness

user pocket

attack surface

RISKS FOR ZKA:

WHEN TO USE ZKA?

trusted client side (mobile, HSM/TPM)

ZKA is already solved for specific use-cases or in a naive ways

MESSAGING END-TO-END ENCRYPTION

AUTHENTICATION ZERO KNOWLEDGE PROOF

https://www.cossacklabs.com/zero-knowledge-protocols-without-magic.html

COLLABORATING ON DATA

– store encrypted – share with others – manage access to parties

naive approach

– duplications

– key management problems

SHARING ENCRYPTED DATA

give access to certain blocks of data to exact users

https://github.com/cossacklabs/hermes-core

OUR TAKE

– Key wrapping

storage keys user keysblocks

HOW TO BUILD IT?

HOW TO BUILD IT?– Key wrapping – Manage privileges

– Key wrapping – Manage privileges – Control requests

HOW TO BUILD IT?

shared audit logs complex docs,

spreadsheets

config files

file system

document store protection

MORE POSSIBLE USE-CASES

OTHER IMPLEMENTATIONS

HERMEShttps://github.com/cossacklabs/hermes-core

ZEROKIThttps://tresorit.com/zerokit

LAFShttps://tahoe-lafs.org/trac/tahoe-lafs

#qconlondon @vixentaelmonitor everything

monitor client side

MORE GOODIES TO THINK ABOUT

Cryptography is well implemented, if it allows to narrow attack surface, and increase control of data.

if the system has one perimeter,

it will fail!

ECHELONIZATION

..add more layers of defense

ECHELONIZATION

EXCEPT CRYPTO, YOU ALSO NEEDlog and monitor events

intrusion pattern detection

access control

firewall

https://pdos.csail.mit.edu/papers/cryptobugs:apsys14.pdf

269 CVEsfrom 2011-2014

bugs inside crypto libs

misuses of crypto libs by individual apps

THINGS TO REMEMBER1. cryptography aims to narrow the attack surface

2. choose relevant encryption scheme

3. combine crypto and classic techniques

4. there is a lib for that

https://hackernoon.com/eli5-zero-knowledge-proof-78a276db9effExplain Like I’m 5: Zero Knowledge Proof

https://medium.com/@9gunpi/devops-and-security-from-trenches-to-command-centers-466dfb58fe5b

DevOps and security: from trenches to command centers

https://medium.com/@cossacklabs/12-and-1-ideas-how-to-enhance-backend-data-security-4b8ceb5ccb88

12 and 1 ideas how to enhance backend data security

https://www.smashingmagazine.com/2018/02/gdpr-for-web-developers/How GDPR Will Change The Way You Develop

https://github.com/vixentael/my-talks

…and more

MY OTHER SECURITY SLIDES

@vixentael Product Engineer

Feel free to reach me with security questions.

I do check my inbox :)

IMAGE CREDITS

www.flaticon.com

freepik, linector, switficons, pixelperfect, smashicons, icon pond, dinosoftlabs

Authors:

ENCRYPTION WITHOUT MAGIC, RISK MANAGEMENT WITHOUT …€¦ · CRYPTOGRAPHY? AES #qconlondon...

Documents

Transcript of ENCRYPTION WITHOUT MAGIC, RISK MANAGEMENT WITHOUT …€¦ · CRYPTOGRAPHY? AES #qconlondon...

Encryption technology of voice transmission in mobile network based on 3DES … · 2020. 11. 27. · ing 3DES and ECC. 168-bit key is randomly generated and grouped according to 56

Observability, Event Sourcing and State Machines€¦ · Peter Lawrey–Chronicle Software QConLondon -2017 Observability, Event Sourcing and State Machines. Peter Lawrey Java Developer

@gmorpheme #qconlondon Thumbs/starling-bank...Starling Bank today Full UK Current Account iOS & Android Apps Debit Card Faster Payments & DDs Overdrafts In-app Support Open API Closed

3DES and Block Cipher Modes of Operation

Expediting device management in virtualized data centers · 2012-01-08 · 3DES, Advanced Encryption Standard (AES), 128-bit Secure Sockets Layer (SSL) DES, 3DES, AES, 128-bit SSL

6. 3DES, Mode of Operations, and RC4

Encryption Transaction with 3DES

Triple DES (3DES) Encryption and PGP Encryptiondataexpress.com/wp-content/uploads/2014/09/dxins_tripledes_2012.pdf · Triple DES (3DES) Encryption and PGP Encryption Encryption DataExpress

INDEX [ptgmedia.pearsoncmg.com]ptgmedia.pearsoncmg.com/images/1587201356/index/1587201356index.pdfINDEX Symbols & Numerics | (pipe), 182 3DES (Data Encryption Standard), 250 10Base2,

Deploying Remote-Access SSL & IPsec VPNs · Virtual Private Network (VPN) Overview IP security (IPsec) and SSL ... Authenticated and encrypted (RC4, 3DES, DES) Capability shipped

Using Your Super Powers to Boost Your Career Development ... · Whatever your super powers or kryptonite are, be open about them with your colleagues. @mepartoconmigo - #QConLondon

PERIPHERALS / ACCESSORIES Iron Series ...CC Certification: 3DES Crypto comply with EAL4+ Capability to connect an external 9VDC power supply Not supported Not supported 13.56MHz tags

API design for cryptography - Hack.lu 2017 · 2017-10-22 · CAST-128 Camellia GOST DES IDEA RC2 RC4 RC5 RC6 SEED 3DES Twoﬁsh. AES Blowﬁsh CAST-128 Camellia GOST DES IDEA RC2

Windows Encrypting File System · NTFS Platform Support (default) 5.0 W2K DESX XP PRO DESX, 3DES 5.1 XP PRO SP1 DESX, 3DES, AES 5.2 W2K3 DESX, 3DES, AES 6.0 Vista DESX, 3DES, AES

Improving Advanced Encryption Standard (AES) using a Novel ... · Standard (DES), Triple Data Encryption Standard (3DES), Advanced Encryption Standard (AES), International Data Encryption

System Security - Protecting Systems from Hacking and Cloning · Cryptography – Protecting Data ... Data Encryption Standard Execution Unit (DEU) • DES, 3DES • Two key (K1,

FOUNDATION: NEXT GENERATION ROUTING AND … · • Cisco SDM & IOS for set up & management • Stateful inspection firewall, IPSec 3DES or AES VPNs, IPS, Antivirus/NAC • 802.11b/g

Lucifer DES 3DES RC2 RC4 Blowfish AES... Symmetric EncryptionFunctions.

Encryption. TOPICS Objectives RC4 DES 3DES AES Objectives To understand the process of encryption and strong encryption algorithms.

Securing Wide Area Measurement Systems - US … Glossary 3DES Triple Data Encryption Standard ACA Australian Communication Authority AES Advanced encryption standard AMR Automated