Virtual Datacenter Infection: Attacking VDI from the Endpoint

Post on 27-Aug-2014

345 views 5 download

Preview:

Click to see full reader

Tags:

Report this document
SHARE

description

Many organizations have implemented VDI as a solution to desktop manageability and security concerns, believing that running desktops on a central server will improve security. However, VDI encourages end users to access their secure desktops from uncontrolled and unsecured clients. In this session, we will demonstrate an actual attack that works on all major VDI products whereby an infected endpoint can remotely compromise a VDI instance upon initial authentication, completely unbeknownst to the user. We will also discuss techniques to guard against these types of attacks. Topics include: • The security properties of VDI offerings from major VDI vendors • Real and theoretical attacks against VDI • A methodology for evaluating the security of a VDI solution • Best practices for securing VDI

Transcript of Virtual Datacenter Infection: Attacking VDI from the Endpoint

Virtual Datacenter Infection:Attacking VDI from the Endpoint

John Whaley, Geoffrey Thomas@joewhaley, @geofft

7/20/2014

Not business information:

Not business information:

Not business information:

NOTHING IS LEAVING THE DATA CENTER

Citrix DaaS

https://www.youtube.com/watch?v=Ig3MKZjyCAM&cc_load_policy=1#t=106

DEMO

The Hoff Says...

https://github.com/joewhaley/VirtualRubberDucky

Virtual Rubber Ducky

https://github.com/joewhaley/VirtualRubberDucky

Rubber Ducky Attacks

Input Injection / Logging

Pasty Attacks

Stealing Data via QR code

DEMO

Secret Channel via Image Steganography

Secret Channel via Audio

pwn the browser

Side-Channel Attacks

Keystroke timings are predictable

…and easy to extract with a packet trace

DEMO

Side-channel attacks on the server

Defending Against Rubber Ducky Attacks

Securing the Client

Doesn’t help:●Password policies●Multifactor authentication

Defense in Depth

Security vs Usability

Host Assessment Check(Malware Scan)

Dumb Terminal(a.k.a. “thin client”)

Locked-Down Environment

Weak Defenses

Run Local, Not Remote

VDI Security

Implementation Challenges

• PCoIP input issues– Drops/reorders keystrokes– Key repeat issues– Happens even with fast typing ☹

• VMware: no accessibility support

• QR code not optimized for screenshots

• RDP sound cuts out too much for modem

7/20/2014

Conclusions

1. There is no defense against a sophisticated, malicious user.

2. There are fundamental architectural limitations to hosted desktops.

3. There are some good reasons to do VDI. Security is not one of them.

Top related

VA-1110-FP-DESIGN—FlexPod Datacenter with … 12) VDI best practices. .....52 LIST OF FIGURES Figure 1) FlexPod component families. .....7 ... Cisco UCS Manager: HTML5 client. .....13
 Documents
Dell Wyse Datacenter for Microsoft VDI and vWorkspace RAi.dell.com/sites/doccontent/business/solutions/engineering-docs/zh/... · 2 Dell Wyse Datacenter for Microsoft VDI and vWorkspace
 Documents
Attacking soccer
 Sports
TECHNOLOGY EXPERT, TEAM LEAD VDI & CITRIX TECHNOLOGIES ... · PDF fileBringing your datacenter to the ... TECHNOLOGY EXPERT, TEAM LEAD VDI & CITRIX TECHNOLOGIES. Intro ... NetScaler
 Documents
VDI Architecture Chris House, VCP Senior Network Analyst DataCenter Team.
 Documents
Attacking & Defending Two versus two each player attacking ...
 Documents
VMworld 2013: VMware Virsto Technical Overview:Optimizing Your SAN Infrastructure for VDI and Virtual Datacenter Environments
 Technology
Attacking 3G
 Documents
Lebanon National Datacenter - Properties.com.lb Datacenter Detecon.pdf · The datacenter conceptual architecture defines the pillars of the datacenter facility and infrastructure
 Documents
Proactive VDI Performance Monitoring - Goliath …goliathtechnologies.com/.../Goliath-Technologies-VDI-Screenshots.pdf · Proactive VDI Performance Monitoring Goliath Performance
 Documents
Nasuni Cloud File Services - LB-systems Datacenter & Healthcare … · 2019-05-28 · device. But VDI only addresses desktop mobility. How would USAA provide the same anywhere, anytime
 Documents
Attacking VPN's
 Internet
Attacking BaseStations
 Documents
Attacking RSA
 Documents
Attacking SMS
 Documents
VDI USER GUIDE - University of Arizonaloke.as.arizona.edu/~ckulesa/binaries/supercam/frontend/VDI340-360... · VDI assumes the customer is familiar with VDI products, and VDI is not
 Documents
20 ATTACKING DRILLS - Association de soccer de - · PDF file20 ATTACKING DRILLS ... 20 Soccer Attacking Drills ... speed. 20 ATTACKING DRILLS . 20 ATTACKING DRILLS
 Documents
Attacking HTML5
 Technology
VDI ExtensionModules InstallationandQuickStartGuidevadiodes.com/VDI/pdf/vdi-707.5 vdi vna extender setup on pna pnax.pdf · VDI!ExtensionModules! InstallationandQuickStartGuide! Virginia’Diodes,’Inc.’!
 Documents
Attacking Php
 Documents

Copyright © 2022 FDOCUMENTS