Strengthening Password-based Authentication · • Users trust that servers salt+hash before...

12
Strengthening Password-based Authentication SCOTT RUOTI JEFF ANDERSEN KENT SEAMONS BRIGHAM YOUNG UNIVERSITY

Transcript of Strengthening Password-based Authentication · • Users trust that servers salt+hash before...

Page 1: Strengthening Password-based Authentication · • Users trust that servers salt+hash before storage • Many servers are vulnerable to password theft • Web pages have access to

StrengtheningPassword-basedAuthentication

SCOTTRUOTI JEFFANDERSENKENTSEAMONSBRIGHAMYOUNGUNIVERSITY

Page 2: Strengthening Password-based Authentication · • Users trust that servers salt+hash before storage • Many servers are vulnerable to password theft • Web pages have access to
Page 3: Strengthening Password-based Authentication · • Users trust that servers salt+hash before storage • Many servers are vulnerable to password theft • Web pages have access to

ProblemswithPasswords

•  Servershaveaccesstopasswordplaintext

•  Userstrustthatserverssalt+hashbeforestorage

•  Manyserversarevulnerabletopasswordtheft

•  Webpageshaveaccesstopasswordplaintext

•  Phishersimpersonatelegitimatesite

•  Credentialsimmediatelyvulnerable

POORSECURITYATTHESERVER VULNERABILITYTOPHISHING

Passwordre-usecompoundsbothproblems

Page 4: Strengthening Password-based Authentication · • Users trust that servers salt+hash before storage • Many servers are vulnerable to password theft • Web pages have access to

Whatcanbedone?

STRONGPASSWORDPROTOCOLS

SAFEPASSWORDENTRY

Page 5: Strengthening Password-based Authentication · • Users trust that servers salt+hash before storage • Many servers are vulnerable to password theft • Web pages have access to

HTML+JS

HTTPS

RemoteServer

ClientPassword

Field

HTML+JS

HTTPS

RemoteServer

PasswordHandshake

Password“Handshake”

StrongPasswordProtocols

Page 6: Strengthening Password-based Authentication · • Users trust that servers salt+hash before storage • Many servers are vulnerable to password theft • Web pages have access to

•  Spoof-resilientpassword-entryinterfaces

•  Interfacesthatindicatetheyareprivileged•  Positiononscreen•  OSfeatures

•  SiteKey

SafePasswordEntry

Page 7: Strengthening Password-based Authentication · • Users trust that servers salt+hash before storage • Many servers are vulnerable to password theft • Web pages have access to

DynamicSecuritySkins,Dhamija[2005]

•  Over500citations •  Strongpasswordprotocol

•  SiteKey •  Visualhashesprovidesiteauthentication

Page 8: Strengthening Password-based Authentication · • Users trust that servers salt+hash before storage • Many servers are vulnerable to password theft • Web pages have access to

•  SafePasswordEntry•  Browserchrome

•  Operatingsystemprompt

• SiteAuthentication•  Browserdetectshandshakefailure

OurIdeas

Page 9: Strengthening Password-based Authentication · • Users trust that servers salt+hash before storage • Many servers are vulnerable to password theft • Web pages have access to

NextSteps

1.  Buildoursystems

2.  Testthem NogoodmethodologiesDesignauserstudy

Page 10: Strengthening Password-based Authentication · • Users trust that servers salt+hash before storage • Many servers are vulnerable to password theft • Web pages have access to

ImprovingUserStudies

PRESENTMETHODOLOGY

•  Tooshort•  Occursinalab

•  Participantsareprimed

•  Lab-assignedcredentials

PROPOSEDMETHODOLOGY

•  Long-term

•  “Take-home”

•  Deception

•  Personalcredentials

Page 11: Strengthening Password-based Authentication · • Users trust that servers salt+hash before storage • Many servers are vulnerable to password theft • Web pages have access to

PreliminaryStudyDesign

•  Assignusertoonesafepasswordentrytool

•  Playtestinganewgamesuite•  AccessviaBYUSingleSign-On

•  Dailytesting,over10-dayperiod•  Gamelinksdeliveredoveremail

•  Onday7,usersarephishedfortheirSSOpassword

WorkNeeded•  Introducesafepasswordentrywithoutprimingforsecurity

•  Ensurestudyissafeforparticipants

Page 12: Strengthening Password-based Authentication · • Users trust that servers salt+hash before storage • Many servers are vulnerable to password theft • Web pages have access to

PointsofDiscussion

• Whereshouldsafepasswordentrybeimplemented?•  Browserwindow,browserchrome,oroperatingsystem

• Howcansafepasswordentryeffectivenessbeaccuratelyevaluated?•  Ensuringbothdeceptionandsafetyforusers


When file encryption helps password cracking - PHDays V$ ./john pass.txt Loaded 1 password hash (eCryptfs [65536x SHA-512]) Will run 4 OpenMP threads Press ’q’ or Ctrl-C to abort,

When file encryption helps password cracking - PHDays V$ ./john pass.txt Loaded 1 password hash (eCryptfs [65536x SHA-512]) Will run 4 OpenMP threads Press ’q’ or Ctrl-C to abort,

Hash Crack: Password Cracking Manual (v2.0)

Hash Crack: Password Cracking Manual (v2.0)

Chapter 5 Hash Functions What is a Hash Function? The Birthday Problem Tiger Hash Uses of Hash Functions.

Chapter 5 Hash Functions What is a Hash Function? The Birthday Problem Tiger Hash Uses of Hash Functions.

Security with noisy Data - Organisation - TU Braunschweig · The hash of the password is usually stored to /etc/passwd When a user picks a password, it is encoded with a randomly

Security with noisy Data - Organisation - TU Braunschweig · The hash of the password is usually stored to /etc/passwd When a user picks a password, it is encoded with a randomly

CRYPTOGRAPHY - École Normale Supérieurenitulesc/files/slides/ESOF.pdf · 9. . . Password Protected Secret Sharing stores the secret into N servers using a password retrieves her

CRYPTOGRAPHY - École Normale Supérieurenitulesc/files/slides/ESOF.pdf · 9. . . Password Protected Secret Sharing stores the secret into N servers using a password retrieves her

Unleash The Kraken - Zach Grace › Unleash_the_Kraken.pdf · What's a hash? A hash is a one-way cryptographic algorithm. Common algorithms: MD5 SHA1 NTLM Example: md5('password')

Unleash The Kraken - Zach Grace › Unleash_the_Kraken.pdf · What's a hash? A hash is a one-way cryptographic algorithm. Common algorithms: MD5 SHA1 NTLM Example: md5('password')

Xavier Boyen - Stanford Universitycrypto.stanford.edu/~xb/security07/hkdf.pdf1. By letting password owners choose the hash iteration count, we gain operational flexibility and eliminate

Xavier Boyen - Stanford Universitycrypto.stanford.edu/~xb/security07/hkdf.pdf1. By letting password owners choose the hash iteration count, we gain operational flexibility and eliminate

Plugwise Template Engine - gpmerkx.nlgpmerkx.nl/doc/Plugwise_Source_Template_Engine.pdf · Plugwise Template Engine ... Web server is now multi threaded ... MD5 hash of the password

Plugwise Template Engine - gpmerkx.nlgpmerkx.nl/doc/Plugwise_Source_Template_Engine.pdf · Plugwise Template Engine ... Web server is now multi threaded ... MD5 hash of the password

Be smart. Think open source. - Adfinis SyGroup · File Edit View Search Terminal Help grub2-mkpasswd-pbkdf2 Enter password: Reenter password: PBKDF2 hash of your password is grub.pbkdf2.sha512.1eeee.5494E9F63E77F2EB8E73489

Be smart. Think open source. - Adfinis SyGroup · File Edit View Search Terminal Help grub2-mkpasswd-pbkdf2 Enter password: Reenter password: PBKDF2 hash of your password is grub.pbkdf2.sha512.1eeee.5494E9F63E77F2EB8E73489

Hashing & Hash TablesHashing & Hash Tablesananth/CptS223/Lectures/hashing.pdf · Hash table: Main components key value Hash index e “john” key h(“john”) TableSiz Hash function

Hashing & Hash TablesHashing & Hash Tablesananth/CptS223/Lectures/hashing.pdf · Hash table: Main components key value Hash index e “john” key h(“john”) TableSiz Hash function

Password Authentication J. Mitchell CS 259. Password fileUser exrygbzyf kgnosfix ggjoklbsz … kiwifruit hash function.

Password Authentication J. Mitchell CS 259. Password fileUser exrygbzyf kgnosfix ggjoklbsz … kiwifruit hash function.

Hash Functions 1 Hash Functions Hash Functions 2 Cryptographic Hash Function Crypto hash function h(x) must provide o Compression output length is.

Hash Functions 1 Hash Functions Hash Functions 2 Cryptographic Hash Function Crypto hash function h(x) must provide o Compression output length is.

Password(Cracking(gencyber.ialab.dsu.edu/2015/Electives/Password... · Rainbow(Tables(• Precomputed(table(for(reversing(cryptographic(hash(funcHons,(usually(for(cracking(password(hashes(•

Password(Cracking(gencyber.ialab.dsu.edu/2015/Electives/Password... · Rainbow(Tables(• Precomputed(table(for(reversing(cryptographic(hash(funcHons,(usually(for(cracking(password(hashes(•

SAP Password Vulnerabilities and Access to Sensitive ...€¢ Irreversible—It should not be feasible to take a given hash and find the original block of data. ... SAP Password Vulnerabilities

SAP Password Vulnerabilities and Access to Sensitive ...€¢ Irreversible—It should not be feasible to take a given hash and find the original block of data. ... SAP Password Vulnerabilities

Hacking Exposed LIVE - RSA Conference · PDF fileLocal Pass the Hash Password dumping (pwdump, cachedump, fgdump, quarkspwdump, creddump, WCE, gsecdump, mimikatz) MSHTA and Windows

Hacking Exposed LIVE - RSA Conference · PDF fileLocal Pass the Hash Password dumping (pwdump, cachedump, fgdump, quarkspwdump, creddump, WCE, gsecdump, mimikatz) MSHTA and Windows

Multi-Hash: A Family of Cryptographic Hash Algorithm ... · Multi-Hash: A Family of Cryptographic Hash Algorithm Extensions 5 Definition of Multi-Hash We define Multi-Hash extensions

Multi-Hash: A Family of Cryptographic Hash Algorithm ... · Multi-Hash: A Family of Cryptographic Hash Algorithm Extensions 5 Definition of Multi-Hash We define Multi-Hash extensions

Stoneware SB Portal Use your district username and password. District E-Mail (OWA) District Servers including SAN Folder.

Stoneware SB Portal Use your district username and password. District E-Mail (OWA) District Servers including SAN Folder.

Applied Cryptography - samsclass.info Cryptography.pdf · 2017-12-14 · Step 3 –Expensive hash it with salt! • Get password • Store random || PBKDF2(random|| password) •

Applied Cryptography - samsclass.info Cryptography.pdf · 2017-12-14 · Step 3 –Expensive hash it with salt! • Get password • Store random || PBKDF2(random|| password) •

Password Cracking and Live CDsweb.cse.msstate.edu/.../Basic/Password_Cracking.pdf · password authentication) accepts a password from a user and applies some hash algorithm to store

Password Cracking and Live CDsweb.cse.msstate.edu/.../Basic/Password_Cracking.pdf · password authentication) accepts a password from a user and applies some hash algorithm to store

Password Management 201 - City of Phoenix, AZ...Passwords are commonly hashed Password files actually contain hash of your password – not the password itself When you log in, the

Password Management 201 - City of Phoenix, AZ...Passwords are commonly hashed Password files actually contain hash of your password – not the password itself When you log in, the