slides/slides06.tex
author Christian Urban <urbanc@in.tum.de>
Sat, 23 Sep 2017 19:56:45 +0100
changeset 524 579e821a4d1d
parent 518 e1fcfba63a31
child 556 e6e87d5839c0
permissions -rw-r--r--
updated
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
     1
\PassOptionsToPackage{bookmarks=false}{hyperref}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
     2
\documentclass[dvipsnames,14pt,t,hyperref={bookmarks=false}]{beamer}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
     3
\usepackage{../style}
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
     4
\usepackage{../slides}
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
     5
\usepackage{../graphics}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
     6
\usepackage{../langs}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
     7
\usepackage{../data}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
     8
\usetikzlibrary{arrows}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
     9
\usetikzlibrary{shapes}
59
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    10
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
    11
\setmonofont[Scale=.88]{Consolas}
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
    12
\newfontfamily{\consolas}{Consolas}
59
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    13
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
    14
\hfuzz=220pt 
126
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 90
diff changeset
    15
59
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    16
% beamer stuff 
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
    17
\newcommand{\bl}[1]{\textcolor{blue}{#1}}  
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    18
\renewcommand{\slidecaption}{SEN 05, King's College London}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    19
59
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    20
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    21
\begin{document}
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    22
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    23
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
    24
\begin{frame}[t]
59
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    25
\frametitle{%
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    26
  \begin{tabular}{@ {}c@ {}}
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    27
  \\
381
036a762b02cf updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 370
diff changeset
    28
  \LARGE Security Engineering (6)\\[-3mm] 
59
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    29
  \end{tabular}}\bigskip\bigskip\bigskip
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    30
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
    31
  \normalsize
59
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    32
  \begin{center}
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    33
  \begin{tabular}{ll}
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    34
  Email:  & christian.urban at kcl.ac.uk\\
518
e1fcfba63a31 updated
Christian Urban <urbanc@in.tum.de>
parents: 495
diff changeset
    35
  Office: & N7.07 (North Wing, Bush House)\\
59
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    36
  Slides: & KEATS (also homework is there)\\
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    37
  \end{tabular}
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    38
  \end{center}
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
    39
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
    40
\end{frame}
279
5616e664c020 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 278
diff changeset
    41
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%     
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
    42
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    43
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    44
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    45
\frametitle{Topical Slide}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    46
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    47
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    48
\item DoS attack agains some US webpages (hijacked IoT devives, like
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    49
  cameras,\ldots)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    50
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    51
\item funny cow attack (privilege escalation attack) 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    52
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    53
  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    54
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    55
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
280
b732a63c17b8 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 279
diff changeset
    56
b732a63c17b8 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 279
diff changeset
    57
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
b732a63c17b8 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 279
diff changeset
    58
\begin{frame}[c]
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    59
\frametitle{Protocols}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    60
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    61
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    62
\includegraphics[scale=0.11]{../pics/keyfob.jpg}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    63
\quad
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    64
\includegraphics[scale=0.3025]{../pics/startstop.jpg}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    65
\end{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    66
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    67
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    68
\item Other examples: Wifi, Http-request, TCP-request,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    69
card readers, RFID (passports)\ldots\medskip\pause
280
b732a63c17b8 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 279
diff changeset
    70
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    71
\item The point is that we cannot control the network: An attacker
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    72
can install a packet sniffer, inject packets, modify packets,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    73
replay messages\ldots{}fake pretty much everything.
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    74
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    75
  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    76
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    77
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    78
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    79
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    80
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    81
\frametitle{Keyless Car Transponders}
279
5616e664c020 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 278
diff changeset
    82
5616e664c020 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 278
diff changeset
    83
\begin{center}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    84
\includegraphics[scale=0.1]{../pics/keyfob.jpg}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    85
\quad
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    86
\includegraphics[scale=0.27]{../pics/startstop.jpg}
279
5616e664c020 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 278
diff changeset
    87
\end{center}
5616e664c020 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 278
diff changeset
    88
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    89
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    90
\item There are two security mechanisms: one remote central 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    91
locking system and one passive RFID tag (engine immobiliser).
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    92
\item How can I get in? How can thieves be kept out? 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    93
How to avoid MITM attacks?
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    94
\end{itemize}\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    95
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    96
\footnotesize
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    97
\hfill Papers: Gone in 360 Seconds: Hijacking with Hitag2,\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    98
\hfill Dismantling Megamos Crypto: Wirelessly Lockpicking\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
    99
\hfill a Vehicle Immobilizer
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   100
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   101
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   102
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%% 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   103
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   104
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   105
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   106
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   107
\frametitle{Public-Key Infrastructure}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   108
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   109
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   110
\item the idea is to have a certificate authority (CA)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   111
\item you go to the CA to identify yourself
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   112
\item CA: ``I, the CA, have verified that public key \bl{$P^{pub}_{Bob}$} belongs to Bob''\bigskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   113
\item CA must be trusted by everybody
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   114
\item What happens if CA issues a false certificate? Who pays in case of loss? (VeriSign 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   115
explicitly limits liability to \$100.)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   116
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   117
279
5616e664c020 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 278
diff changeset
   118
\end{frame}
5616e664c020 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 278
diff changeset
   119
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
5616e664c020 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 278
diff changeset
   120
5616e664c020 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 278
diff changeset
   121
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   122
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   123
\frametitle{Man-in-the-Middle}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   124
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   125
``Normal'' protocol run:\bigskip
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   126
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   127
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   128
\item \bl{$A$} sends public key  to \bl{$B$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   129
\item \bl{$B$} sends public key  to \bl{$A$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   130
\item \bl{$A$} sends message encrypted with \bl{$B$}'s public key, \bl{$B$} decrypts it
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   131
with its private key
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   132
\item \bl{$B$} sends message encrypted with \bl{$A$}'s public key, \bl{$A$} decrypts it
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   133
with its private key
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   134
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   135
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   136
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   137
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
126
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 90
diff changeset
   138
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   139
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   140
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   141
\frametitle{Man-in-the-Middle}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   142
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   143
Attack:
126
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 90
diff changeset
   144
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   145
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   146
\item \bl{$A$} sends public key  to \bl{$B$}  --- \bl{$C$} intercepts this message and send his own public key
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   147
\item \bl{$B$} sends public key  to \bl{$A$} --- \bl{$C$} intercepts this message and send his own public key
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   148
\item \bl{$A$} sends message encrypted with \bl{$C$}'s public key, \bl{$C$} decrypts it
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   149
with its private key, re-encrypts with \bl{$B$}'s public key 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   150
\item similar for other direction
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   151
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   152
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   153
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   154
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   155
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   156
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   157
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   158
\frametitle{Man-in-the-Middle}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   159
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   160
Potential Prevention?
126
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 90
diff changeset
   161
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
   162
\begin{itemize}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   163
\item \bl{$A$} sends public key  to \bl{$B$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   164
\item \bl{$B$} sends public key  to \bl{$A$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   165
\item \bl{$A$} encrypts message with \bl{$B$}'s public key, send's {\bf half} of the message
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   166
\item \bl{$B$} encrypts message with \bl{$A$}'s public key, send's {\bf half} of the message
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   167
\item \bl{$A$} sends other half, \bl{$B$} can now decrypt entire message
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   168
\item \bl{$B$} sends other half, \bl{$A$} can now decrypt entire message
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   169
\end{itemize}\pause
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   170
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   171
%\bl{$C$} would have to invent a totally new message
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   172
\alert{Under which circumstances does this protocol prevent
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   173
MiM-attacks, or does it?}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   174
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   175
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   176
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   177
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   178
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   179
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   180
\frametitle{Car Transponder (HiTag2)}
126
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 90
diff changeset
   181
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   182
\begin{enumerate}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   183
\item \bl{$C$} generates a random number \bl{$N$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   184
\item \bl{$C$} calculates \bl{$(F,G) = \{N\}_K$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   185
\item \bl{$C \to T$}: \bl{$N, F$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   186
\item \bl{$T$} calculates \bl{$(F',G') = \{N\}_K$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   187
\item \bl{$T$} checks that \bl{$F = F'$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   188
\item \bl{$T \to C$}: \bl{$N, G'$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   189
\item \bl{$C$} checks that \bl{$G = G'$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   190
\end{enumerate}\pause
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   191
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   192
\small
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   193
This process means that the transponder believes the car knows
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   194
the key \bl{$K$}, and the car believes the transponder knows
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   195
the key \bl{$K$}. They have authenticated themselves
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   196
to each other, or have they?
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   197
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   198
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   199
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   200
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   201
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   202
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   203
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   204
A Man-in-the-middle attack in real life:
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   205
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   206
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   207
\item the card only says yes to the terminal if the PIN is correct
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   208
\item trick the card in thinking transaction is verified by signature
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   209
\item trick the terminal in thinking the transaction was verified by PIN
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   210
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   211
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   212
\begin{minipage}{1.1\textwidth}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   213
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   214
\mbox{}\hspace{-6mm}\includegraphics[scale=0.5]{../pics/chip-attack.png}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   215
\includegraphics[scale=0.3]{../pics/chipnpinflaw.png}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   216
\end{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   217
\end{minipage}
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   218
279
5616e664c020 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 278
diff changeset
   219
\end{frame}
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   220
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   221
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   222
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   223
\begin{frame}[c]
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   224
\frametitle{Problems with EMV}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   225
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   226
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   227
\item it is a wrapper for many protocols
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   228
\item specification by consensus (resulted unmanageable complexity)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   229
\item its specification is 700 pages in English plus 2000+ pages for testing, additionally some 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   230
further parts are secret
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   231
\item other attacks have been found
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   232
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   233
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   234
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   235
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   236
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   237
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   238
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   239
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   240
\frametitle{Protocols are Difficult}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   241
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   242
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   243
\item even the systems designed by experts regularly fail\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   244
\item the one who can fix a system should also be liable for the losses\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   245
\item cryptography is often not the problem\bigskip\bigskip  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   246
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   247
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   248
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   249
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   250
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   251
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   252
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   253
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   254
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   255
\frametitle{A Simple PK Protocol}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   256
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   257
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   258
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   259
\begin{tabular}{ll@{\hspace{2mm}}l}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   260
1. & \bl{$A \to B :$} & \bl{$K^{pub}_A$}\smallskip\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   261
2. & \bl{$B \to A :$} & \bl{$K^{pub}_B$}\smallskip\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   262
3. & \bl{$A \to B :$} & \bl{$\{A,m\}_{K^{pub}_B}$}\smallskip\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   263
4. & \bl{$B \to A :$} & \bl{$\{B,m'\}_{K^{pub}_A}$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   264
\end{tabular}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   265
\end{center}\pause\bigskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   266
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   267
unfortunately there is a simple man-in-the- middle-attack
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   268
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   269
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   270
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   271
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   272
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   273
\frametitle{A MITM Attack}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   274
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   275
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   276
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   277
\begin{tabular}{ll@{\hspace{2mm}}l}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   278
1. & \bl{$A \to E :$} & \bl{$K^{pub}_A$}\smallskip\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   279
2. & \bl{$E \to B :$} & \bl{$K^{pub}_E$}\smallskip\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   280
3. & \bl{$B \to E :$} & \bl{$K^{pub}_B$}\smallskip\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   281
4. & \bl{$E \to A :$} & \bl{$K^{pub}_E$}\smallskip\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   282
5. & \bl{$A \to E :$} & \bl{$\{A,m\}_{K^{pub}_E}$}\smallskip\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   283
6. & \bl{$E \to B :$} & \bl{$\{E,m\}_{K^{pub}_B}$}\smallskip\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   284
7. & \bl{$B \to E :$} & \bl{$\{B,m'\}_{K^{pub}_E}$}\smallskip\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   285
8. & \bl{$E \to A :$} & \bl{$\{E,m'\}_{K^{pub}_A}$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   286
\end{tabular}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   287
\end{center}\pause\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   288
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   289
and \bl{$A$} and \bl{$B$} have no chance to detect it
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   290
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   291
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   292
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   293
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   294
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   295
\frametitle{Interlock Protocol}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   296
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   297
The interlock protocol (``best bet'' against MITM):
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   298
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   299
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   300
\begin{tabular}{ll@{\hspace{2mm}}l}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   301
1. & \bl{$A \to B :$} & \bl{$K^{pub}_A$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   302
2. & \bl{$B \to A :$} & \bl{$K^{pub}_B$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   303
3. & & \bl{$\{A,m\}_{K^{pub}_B} \;\mapsto\; H_1,H_2$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   304
   & & \bl{$\{B,m'\}_{K^{pub}_A} \;\mapsto\; M_1,M_2$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   305
4. & \bl{$A \to B :$} & \bl{$H_1$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   306
5. & \bl{$B \to A :$} & \bl{$\{H_1, M_1\}_{K^{pub}_A}$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   307
6. & \bl{$A \to B :$} & \bl{$\{H_2, M_1\}_{K^{pub}_B}$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   308
7. & \bl{$B \to A :$} & \bl{$M_2$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   309
\end{tabular}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   310
\end{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   311
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   312
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   313
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   314
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   315
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   316
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   317
\frametitle{Splitting Messages}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   318
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   319
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   320
$\underbrace{\texttt{\Grid{0X1peUVTGJK+H70mMjAM8p}}}_{\bl{\{A,m\}_{K^{pub}_B}}}$
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   321
\end{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   322
 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   323
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   324
$\underbrace{\texttt{\Grid{0X1peUVTGJK}}}_{\bl{H_1}}$\quad
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   325
$\underbrace{\texttt{\Grid{+H70mMjAM8p}}}_{\bl{H_2}}$
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   326
\end{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   327
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   328
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   329
\item you can also use the even and odd bytes
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   330
\item the point is you cannot decrypt the halves, even if you
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   331
      have the key 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   332
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   333
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   334
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   335
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   336
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   337
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   338
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   339
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   340
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   341
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   342
\begin{tabular}{l@{\hspace{9mm}}l}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   343
\begin{tabular}[t]{@{}l@{}}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   344
\bl{$A \to C : K^{pub}_A$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   345
\bl{$C \to B : K^{pub}_C$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   346
\bl{$B \to C : K^{pub}_B$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   347
\bl{$C \to A : K^{pub}_C$}\medskip\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   348
\bl{$\{A,m\}_{K^{pub}_C} \;\mapsto\; H_1,H_2$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   349
\bl{$\{B,m'\}_{K^{pub}_C} \;\mapsto\; M_1,M_2$}\bigskip\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   350
\bl{$\{C,a\}_{K^{pub}_B} \;\mapsto\; C_1,C_2$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   351
\bl{$\{C,b\}_{K^{pub}_A} \;\mapsto\; D_1,D_2$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   352
\end{tabular} &
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   353
\begin{tabular}[t]{@{}l@{}}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   354
\bl{$A \to C : H_1$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   355
\bl{$C \to B : C_1$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   356
\bl{$B \to C : \{C_1, M_1\}_{K^{pub}_C}$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   357
\bl{$C \to A : \{H_1, D_1\}_{K^{pub}_A}$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   358
\bl{$A \to C : \{H_2, D_1\}_{K^{pub}_C}$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   359
\bl{$C \to B : \{C_2, M_1\}_{K^{pub}_B}$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   360
\bl{$B \to C : M_2$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   361
\bl{$C \to A : D_2$}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   362
\end{tabular}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   363
\end{tabular}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   364
\end{center}\pause
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   365
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   366
\footnotesize
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   367
\bl{$m$} = How is your grandmother? \bl{$m'$} = How is the
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   368
weather today in London?
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   369
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   370
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   371
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   372
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   373
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   374
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   375
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   376
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   377
\item you have to ask something that cannot be imitated 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   378
  (requires \bl{$A$} and \bl{$B$} know each other)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   379
\item what happens if \bl{$m$} and \bl{$m'$} are voice
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   380
  messages?\bigskip\pause
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   381
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   382
\item So \bl{$C$} can either leave the communication unchanged,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   383
      or invent a complete new conversation
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   384
      
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   385
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   386
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   387
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   388
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   389
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   390
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   391
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   392
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   393
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   394
\item the moral: establishing a secure connection from
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   395
      ``zero'' is almost impossible---you need to rely on some
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   396
      established trust\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   397
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   398
\item that is why PKI relies on certificates, which however are
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   399
      badly, badly realised
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   400
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   401
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   402
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   403
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   404
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   405
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   406
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   407
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   408
\frametitle{Trusted Third Parties}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   409
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   410
Simple protocol for establishing a secure connection via a
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   411
mutually trusted 3rd party (server):
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   412
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   413
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   414
\begin{tabular}{r@ {\hspace{1mm}}l}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   415
\bl{$A \rightarrow S :$} & \bl{$A, B$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   416
\bl{$S \rightarrow A :$} & \bl{$\{K_{AB}, \{K_{AB}\}_{K_{BS}} \}_{K_{AS}}$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   417
\bl{$A \rightarrow B :$} & \bl{$\{K_{AB}\}_{K_{BS}} $}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   418
\bl{$A \rightarrow B :$} & \bl{$\{m\}_{K_{AB}}$}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   419
\end{tabular}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   420
\end{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   421
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   422
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   423
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   424
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   425
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   426
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   427
\frametitle{PKI: The Main Idea}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   428
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   429
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   430
\item the idea is to have a certificate authority (CA)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   431
\item you go to the CA to identify yourself
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   432
\item CA: ``I, the CA, have verified that public key 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   433
  \bl{$P^{pub}_{Bob}$} belongs to Bob''\bigskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   434
\item CA must be trusted by everybody\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   435
\item certificates are time limited, and can be revoked
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   436
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   437
\item What happens if CA issues a false certificate? Who pays in case of loss? (VeriSign 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   438
explicitly limits liability to \$100.)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   439
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   440
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   441
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   442
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   443
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   444
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   445
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   446
\frametitle{PKI: Chains of Trust}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   447
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   448
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   449
  \begin{tikzpicture}[scale=1,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   450
                      node/.style={
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   451
                      rectangle,rounded corners=3mm,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   452
                      very thick,draw=black!50,minimum height=18mm, minimum width=23mm,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   453
                      top color=white,bottom color=black!20}]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   454
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   455
  \node (A) at (0,0)  [node] {};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   456
  \node [below right] at (A.north west) 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   457
  {\small\begin{tabular}{@{}l}CA\\Root Cert.\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   458
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   459
  \node (B) at (4,0)  [node] {};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   460
  \node [below right=1mm] at (B.north west) 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   461
 {\mbox{}\hspace{-1mm}\small
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   462
  \begin{tabular}{@{}l}Subordinate\\ CA\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   463
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   464
  \node (C) at (8,0)  [node] {};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   465
  \node [below right] at (C.north west) 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   466
  {\small\begin{tabular}{@{}l}Server\\ Bank.com\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   467
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   468
  \draw [->,line width=4mm] (A) -- (B); 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   469
  \draw [->,line width=4mm] (B) -- (C); 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   470
  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   471
  \node (D) at (6,-3)  [node] {};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   472
  \node [below right] at (D.north west) 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   473
  {\small\begin{tabular}{@{}l}Browser\\ Root Store\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   474
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   475
  \node (E) at (2,-3)  [node] {};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   476
  \node [below right] at (E.north west) 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   477
  {\small\begin{tabular}{@{}l}Browser\\ Vendor\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   478
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   479
  \draw [->,line width=4mm] (E) -- (D); 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   480
  \end{tikzpicture}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   481
\end{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   482
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   483
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   484
\item CAs make almost no money anymore, because of stiff
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   485
  competition
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   486
\item browser companies are not really interested in security;
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   487
  only in market share
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   488
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   489
  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   490
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   491
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   492
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   493
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   494
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   495
\frametitle{PKI: Weaknesses}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   496
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   497
CAs just cannot win (make any profit):\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   498
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   499
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   500
\item there are hundreds of CAs, which issue millions of
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   501
      certificates and the error rate is small
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   502
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   503
\item users (servers) do not want to pay or pay as little as
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   504
      possible\bigskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   505
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   506
\item a CA can issue a certificate for any domain not needing
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   507
      any permission (CAs are meant to undergo audits,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   508
      but\ldots DigiNotar)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   509
      
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   510
\item if a CA has issued many certificates, it ``becomes too
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   511
      big to fail'' 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   512
  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   513
\item Can we be sure CAs are not just frontends of some 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   514
      government organisation?  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   515
       
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   516
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   517
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   518
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   519
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   520
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   521
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   522
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   523
\frametitle{PKI: Weaknesses}
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   524
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
   525
\begin{itemize}
280
b732a63c17b8 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 279
diff changeset
   526
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   527
\item many certificates are issued via Whois, whether you own
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   528
      the domain\ldots if you hijacked a domain, it is easy to
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   529
      obtain certificates\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   530
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   531
\item the revocation mechanism does not work (Chrome has given
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   532
      up on general revocation lists)\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   533
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   534
\item lax approach to validation of certificates 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   535
  (Have you ever bypassed certification warnings?)\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   536
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   537
\item sometimes you want to actually install invalid
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   538
      certificates (self-signed)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   539
   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   540
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   541
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   542
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   543
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   544
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   545
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   546
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   547
\frametitle{PKI: Attacks}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   548
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   549
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   550
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   551
\item Go directly after root certificates 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   552
  \begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   553
  \item governments can demand private keys\smallskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   554
  \item 10 years ago it was estimated that breaking a 1024 bit
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   555
        key takes one year and costs 10 - 30 Mio \$; this is now
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   556
        reduced to 1 Mio \$
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   557
   \end{itemize} 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   558
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   559
\item Go after buggy implementations of certificate
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   560
      validation\smallskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   561
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   562
\item Social Engineering 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   563
  \begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   564
    \item in 2001 somebody pretended to be 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   565
    from Microsoft and asked for two code-signing 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   566
    certificates
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   567
    \end{itemize}\bigskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   568
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   569
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   570
\small The eco-system is completely broken (it relies on
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   571
thousands of entities to do the right thing). Maybe DNSSEC
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   572
where keys can be attached to domain names is a way out.
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   573
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   574
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   575
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   576
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   577
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   578
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   579
\frametitle{Real Attacks}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   580
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   581
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   582
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   583
\item In 2011, DigiNotar (Dutch company) was the first CA that
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   584
      got compromised comprehensively, and where many
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   585
      fraudulent certificates were issued to the wild. It
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   586
      included approximately 300,000 IP addresses, mostly
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   587
      located in Iran. The attackers (in Iran?) were likely
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   588
      interested ``only'' in collecting gmail passwords.\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   589
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   590
\item The Flame malware piggy-bagged on this attack by
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   591
      advertising malicious Windows updates to some targeted
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   592
      systems (mostly in Iran, Israel, Sudan).
280
b732a63c17b8 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 279
diff changeset
   593
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
   594
\end{itemize}
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   595
279
5616e664c020 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 278
diff changeset
   596
\end{frame}
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
   597
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   598
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   599
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
280
b732a63c17b8 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 279
diff changeset
   600
\begin{frame}[c]
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   601
\frametitle{PKI is Broken}
280
b732a63c17b8 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 279
diff changeset
   602
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   603
\begin{itemize}
281
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   604
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   605
\item PKI and certificates are meant to protect you against
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   606
      MITM attacks, but if the attack occurs your are 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   607
      presented with a warning and you need to decide whether
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   608
      you are under attack.\medskip
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   609
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   610
\item Webcontent gets often loaded from 3rd-party servers,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   611
      which might not be secured\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   612
     
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   613
\item Misaligned incentives: browser vendors are not
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   614
      interested in breaking webpages with invalid
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   615
      certificates     
129
10526c967679 added slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 128
diff changeset
   616
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   617
\end{itemize}
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   618
280
b732a63c17b8 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 279
diff changeset
   619
\end{frame}
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   620
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   621
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   622
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   623
\begin{frame}[c]
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   624
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   625
Why are there so many invalid certificates?\bigskip
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   626
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
   627
\begin{itemize}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   628
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   629
\item insufficient name coverage (www.example.com should
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   630
include example.com)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   631
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   632
\item IoT: many appliances have web-based admin interfaces; 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   633
  the manufacturer cannot know under which IP and domain name
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   634
  the appliances are run (so cannot install a valid certificate)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   635
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   636
\item expired certificates, or incomplete chains of trust
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   637
      (servers are supposed to supply them)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   638
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   639
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   640
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   641
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   642
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
281
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   643
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   644
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   645
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   646
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   647
%\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   648
%\frametitle{Best Practices}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   649
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   650
%{\bf Principle 1:} Every message should say what it means: the
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   651
%interpretation of a message should not depend on the
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   652
%context.\bigskip\pause
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   653
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   654
%{\bf Principle 2:} If the identity of a principal is essential
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   655
%to the meaning of a message, it is prudent to mention the
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   656
%principal’s name explicitly in the message (though
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   657
%difficult).\bigskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   658
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   659
%\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   660
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   661
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   662
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   663
%\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   664
%\frametitle{Best Practices}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   665
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   666
%{\bf Principle 3:} Be clear about why encryption is being
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   667
%done. Encryption is not wholly cheap, and not asking precisely
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   668
%why it is being done can lead to redundancy. Encryption is not
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   669
%synonymous with security.
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   670
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   671
%\small
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   672
%\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   673
%Possible Uses of Encryption
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   674
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   675
%\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   676
%\item Preservation of confidentiality: \bl{$\{X\}_K$} only those that have \bl{$K$} may recover \bl{$X$}.
%\item Guarantee authenticity: The partner is indeed some particular principal.
%\item Guarantee confidentiality and authenticity: binds two parts of a message --- 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   677
%\bl{$\{X,Y\}_K$} is not the same as \bl{$\{X\}_K$} and \bl{$\{Y\}_K$}.
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   678
%\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   679
%\end{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   680
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   681
%\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   682
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   683
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   684
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   685
%\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   686
%\frametitle{Best Practices}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   687
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   688
%{\bf Principle 4:} The protocol designers should know which
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   689
%trust relations their protocol depends on, and why the
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   690
%dependence is necessary. The reasons for particular trust
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   691
%relations being acceptable should be explicit though they will
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   692
%be founded on judgment and policy rather than on
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   693
%logic.\bigskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   694
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   695
%
%Example Certification Authorities: CAs are trusted to certify
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   696
%a key only after proper steps have been taken to identify the
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   697
%principal that owns it.
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   698
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   699
%\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   700
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   701
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   702
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   703
%\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   704
%\frametitle{Formal Methods}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   705
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   706
%Ross Anderson about the use of Logic:\bigskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   707
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   708
%\begin{quote}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   709
%Formal methods can be an excellent way of finding 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   710
%bugs in security protocol designs as they force the designer 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   711
%to make everything explicit and thus confront difficult design 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   712
%choices that might otherwise be fudged. 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   713
%\end{quote}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   714
%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   715
%\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   716
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   717
%
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   718
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   719
\begin{frame}[c]
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   720
\frametitle{Mid-Term}
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   721
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
   722
\begin{itemize}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   723
\item homework, handouts, programs\ldots
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   724
\end{itemize}\bigskip\bigskip\bigskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   725
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   726
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   727
{\huge\bf\alert{Any Questions?}}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   728
\end{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   729
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   730
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   731
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
281
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   732
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   733
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   734
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   735
\frametitle{Security Engineering}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   736
  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   737
  \begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   738
  \begin{tabular}{cc}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   739
  \raisebox{-0.8mm}{\includegraphics[scale=0.28]{../pics/flight.jpg}} &
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   740
  \includegraphics[scale=0.31]{../pics/airbus.jpg}\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   741
  \small Wright brothers, 1901 & \small Airbus, 2005 \\ 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   742
  \end{tabular}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   743
  \end{center}
281
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   744
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   745
  \end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   746
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
126
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 90
diff changeset
   747
60
Christian Urban <urbanc@in.tum.de>
parents: 59
diff changeset
   748
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
Christian Urban <urbanc@in.tum.de>
parents: 59
diff changeset
   749
\begin{frame}[c]
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   750
\frametitle{1st Lecture}
60
Christian Urban <urbanc@in.tum.de>
parents: 59
diff changeset
   751
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   752
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   753
\item chip-and-pin, banks vs.~customers
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   754
\begin{quote}\small\rm
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   755
 the one who can improve security should also be 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   756
 liable for the losses 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   757
\end{quote}\pause\bigskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   758
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   759
\item hashes and salts to guarantee data integrity\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   760
\item storing passwords (you should know the difference between
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   761
brute force attacks and dictionary attacks; how do salts help?)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   762
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   763
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   764
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   765
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
282
4a0071e26cb5 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 281
diff changeset
   766
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   767
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   768
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   769
\frametitle{1st Lecture: Cookies}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   770
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   771
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   772
\item good uses of cookies?\medskip
60
Christian Urban <urbanc@in.tum.de>
parents: 59
diff changeset
   773
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   774
\item bad uses of cookies: snooping, tracking, profiling\ldots
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   775
      the ``disadvantage'' is that the user is in
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   776
      \alert{control}, because you can delete them 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   777
          
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   778
          \begin{center} ``Please track me using cookies.''
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   779
          \end{center}\bigskip\pause
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   780
                 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   781
\item fingerprinting beyond browser cookies
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   782
  \begin{quote}\small\rm
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   783
  Pixel Perfect: Fingerprinting Canvas in HTML5\\ 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   784
  (a research paper from 2012)\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   785
  \footnotesize
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   786
  \url{http://cseweb.ucsd.edu/~hovav/papers/ms12.html}      
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   787
  \end{quote}      
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   788
\end{itemize}
281
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   789
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   790
\end{frame}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   791
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   792
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   793
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   794
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   795
\frametitle{1st Lecture: Cookies}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   796
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   797
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   798
\item a bit of JavaScript and HTML5 + canvas\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   799
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   800
\begin{tabular}{cc}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   801
Firefox & Safari\\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   802
\includegraphics[scale=0.31]{../pics/firefox1.png} &
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   803
\includegraphics[scale=0.31]{../pics/safari1.png} \\
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   804
\tiny
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   805
\pcode{55b2257ad0f20ecbf927fb66a15c61981f7ed8fc} &
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   806
\tiny
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   807
\pcode{17bc79f8111e345f572a4f87d6cd780b445625d3}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   808
\end{tabular}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   809
\end{center}\bigskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   810
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   811
\item\small no actual drawing needed\pause
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   812
\item\small in May 2014 a crawl of 100,000 popular 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   813
webpages revealed 5.5\% already use canvas 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   814
fingerprinting\smallskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   815
\begin{center}\scriptsize
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   816
\url{https://securehomes.esat.kuleuven.be/~gacar/persistent/the_web_never_forgets.pdf}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   817
\end{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   818
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   819
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   820
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   821
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   822
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   823
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   824
\begin{frame}[c]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   825
\frametitle{1st Lecture: Cookies}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   826
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   827
Remember the small web-app I showed you where a cookie 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   828
protected a counter?\bigskip 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   829
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   830
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   831
\item NYT, the cookie looks the ``resource'' - harm\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   832
\item imaginary discount unlocked by cookie - no harm
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   833
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   834
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   835
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   836
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
130
4e8482e50590 more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 129
diff changeset
   837
282
4a0071e26cb5 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 281
diff changeset
   838
4a0071e26cb5 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 281
diff changeset
   839
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   840
\begin{frame}[t]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   841
\frametitle{2nd Lecture: E-Voting}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   842
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   843
Where are paper ballots better than voice voting?\bigskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   844
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   845
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   846
\item Integrity 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   847
\item \alert{Ballot Secrecy}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   848
\item Voter Authentication
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   849
\item Enfranchisement
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   850
\item Availability
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   851
\end{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   852
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   853
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   854
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   855
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   856
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   857
\begin{frame}[t]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   858
\frametitle{2nd Lecture: E-Voting}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   859
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   860
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   861
\item recently an Australian parliamentary committee 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   862
found: e-voting is highly vulnerable to hacking and Australia 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   863
will not use it any time soon\bigskip\pause
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   864
\item Alex Halderman, Washington D.C.~hack
282
4a0071e26cb5 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 281
diff changeset
   865
\begin{center}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   866
\scriptsize
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   867
\url{https://jhalderm.com/pub/papers/dcvoting-fc12.pdf}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   868
\end{center}\medskip
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   869
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   870
\item PDF-ballot tampering at the wireless router (the modification 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   871
is nearly undetectable and leaves no traces; MITM attack with firmware 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   872
updating)
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   873
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   874
\scriptsize
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   875
\url{http://galois.com/wp-content/uploads/2014/11/technical-hack-a-pdf.pdf}
282
4a0071e26cb5 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 281
diff changeset
   876
\end{center}
4a0071e26cb5 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 281
diff changeset
   877
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   878
\end{itemize}
282
4a0071e26cb5 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 281
diff changeset
   879
4a0071e26cb5 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 281
diff changeset
   880
\end{frame}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   881
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
282
4a0071e26cb5 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 281
diff changeset
   882
4a0071e26cb5 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 281
diff changeset
   883
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
   884
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   885
\tikzset{alt/.code args={<#1>#2#3#4}{%
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   886
  \alt<#1>{\pgfkeysalso{#2}}{\pgfkeysalso{#3}} % \pgfkeysalso doesn't change the path
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   887
}}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   888
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   889
\begin{frame}[t]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   890
\frametitle{\begin{tabular}{c}3rd Lecture:\\ Buffer Overflow Attacks\end{tabular}}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   891
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   892
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   893
\item the problem arises from the way C/C++ organises its function calls\\[-8mm]\mbox{}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   894
\end{itemize}
130
4e8482e50590 more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 129
diff changeset
   895
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   896
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   897
\begin{tikzpicture}[scale=1]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   898
%\draw[black!10,step=2mm] (0,0) grid (9,4);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   899
%\draw[black!10,thick,step=10mm] (0,0) grid (9,4);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   900
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   901
\node at (0.5,4.5) {\small\begin{tabular}{l}main\\[-2mm] prog.\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   902
\draw[line width=0mm, white, alt=<2->{fill=red}{fill=blue}] (0,2.5) rectangle (1,3.8);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   903
\draw[line width=0mm, white, alt=<9->{fill=red}{fill=blue}] (0,0.2) rectangle (1,0.5);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   904
\draw[line width=1mm, alt=<3->{fill=yellow}{fill=blue}] (0,2.0) rectangle (1,2.5);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   905
\draw[line width=1mm, alt=<6->{fill=red}{fill=blue}] (0,1.0) rectangle (1,2.0);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   906
\draw[line width=1mm, alt=<7->{fill=yellow}{fill=blue}] (0,0.5) rectangle (1,1.0);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   907
\draw[line width=1mm] (0,0) -- (0,4);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   908
\draw[line width=1mm] (1,0) -- (1,4);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   909
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   910
\node at (3.5,3.5) {\small\begin{tabular}{l}fact(n)\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   911
\draw[line width=1mm, alt=<{4-5,8}>{fill=red}{fill=blue}] (3,1.0) rectangle (4,3.0);
130
4e8482e50590 more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 129
diff changeset
   912
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   913
\onslide<3-4>{\draw[->, line width=1mm,red] (1,2.3) to node [above,sloped,midway] {n=4} (3,3);}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   914
\onslide<5>{\draw[<-, line width=1mm,red] (1,2.3) to node [above,sloped,midway] {res=24} (3,1);}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   915
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   916
\onslide<7-8>{\draw[->, line width=1mm,red] (1,0.8) to node [above,sloped,midway] {n=3} (3,3);}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   917
\onslide<9>{\draw[<-, line width=1mm,red] (1,0.8) to node [above,sloped,midway] {res=6} (3,1);}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   918
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   919
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   920
\node at (7.75,3.9) {\small\begin{tabular}{l}stack\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   921
\draw[line width=1mm] (7,3.5) -- (7,0.5) -- (8.5,0.5) -- (8.5,3.5);
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
   922
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   923
\onslide<3,4,7,8>{
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   924
\node at (7.75, 1.4) {ret};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   925
\draw[line width=1mm] (7,1.1) -- (8.5,1.1);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   926
\node at (7.75, 2.0) {sp};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   927
\draw[line width=1mm] (7,2.3) -- (8.5,2.3);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   928
}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   929
\onslide<3,4>{
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   930
\node at (7.75, 0.8) {4};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   931
\draw[line width=1mm] (7,1.7) -- (8.5,1.7);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   932
}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   933
\onslide<7,8>{
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   934
\node at (7.75, 0.8) {3};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   935
\draw[line width=1mm] (7,1.7) -- (8.5,1.7);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   936
}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   937
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   938
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   939
\end{tikzpicture}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   940
\end{center}
130
4e8482e50590 more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 129
diff changeset
   941
281
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   942
\end{frame}
130
4e8482e50590 more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 129
diff changeset
   943
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
   944
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
281
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   945
\begin{frame}[t]
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   946
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   947
\begin{center}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   948
\begin{tikzpicture}[scale=1]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   949
%\draw[black!10,step=2mm] (0,0) grid (9,4);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   950
%\draw[black!10,thick,step=10mm] (0,0) grid (9,4);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   951
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   952
\node at (0.5,4.5) {\small\begin{tabular}{l}main\\[-2mm] prog.\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   953
\draw[line width=0mm, white, alt=<2->{fill=red}{fill=blue}] (0,2.5) rectangle (1,3.8);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   954
\draw[line width=1mm, white, fill=blue] (0,1.0) rectangle (1,2.0);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   955
\draw[line width=1mm, alt=<3->{fill=yellow}{fill=blue}] (0,2.0) rectangle (1,2.5);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   956
\draw[line width=1mm] (0,0) -- (0,4);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   957
\draw[line width=1mm] (1,0) -- (1,4);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   958
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   959
\node at (3.5,3.5) {\small\begin{tabular}{l}fact(n)\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   960
\draw[line width=0mm, alt=<{4-}>{red, fill=red}{blue, fill=blue}] (3,2.8) rectangle (4,3.0);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   961
\draw[line width=0mm, alt=<{5-}>{red, fill=red}{blue, fill=blue}] (3,2.8) rectangle (4,2.0);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   962
\draw[line width=0mm, alt=<{7-}>{red, fill=red}{blue, fill=blue}] (3,2.0) rectangle (4,1.0);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   963
\draw[line width=1mm] (3,1.0) rectangle (4,3.0);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   964
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   965
\onslide<3->{\draw[->, line width=1mm,red] (1,2.3) to node [above,sloped,midway] {n=4} (3,3);}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   966
\onslide<5->{\draw[<-, line width=2mm,red] (4,2) to node [above,sloped,midway] 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   967
{\begin{tabular}{l}user\\[-1mm] input\end{tabular}} (6,2);}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   968
\onslide<8->{\draw[<-, line width=1mm,red] (1,-2) to (3,1);}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   969
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   970
\node at (7.75,3.9) {\small\begin{tabular}{l}stack\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   971
\draw[line width=1mm] (7,3.5) -- (7,-0.1) -- (8.5,-0.1) -- (8.5,3.5);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   972
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   973
\onslide<3->{
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   974
\node at (7.75, 0.2) {4};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   975
\draw[line width=1mm,alt=<6->{fill=red}{fill=white}] (7,0.5) rectangle (8.5,1.1);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   976
\node at (7.75, 0.8) {\alt<6->{@a\#}{ret}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   977
\draw[line width=1mm,alt=<6->{fill=red}{fill=white}] (7,1.1) rectangle (8.5,1.7);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   978
\node at (7.75, 1.4) {\alt<6->{!?w;}sp};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   979
}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   980
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   981
\onslide<4->{
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   982
\draw[line width=1mm,fill=red] (7,1.7) rectangle (8.5,3.0);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   983
\node[white] at (7.75, 2.4) {buffer};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   984
}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   985
281
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   986
\end{tikzpicture}
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   987
\end{center}
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   988
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   989
\end{frame}
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   990
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   991
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
   992
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   993
\begin{frame}[t]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   994
\frametitle{\begin{tabular}{c}3rd Lecture:\\[-3mm] 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   995
Buffer Overflow Attacks\end{tabular}}
130
4e8482e50590 more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 129
diff changeset
   996
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   997
US National Vulnerability Database\\ 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
   998
\small(636 out of 6675 in 2014)
60
Christian Urban <urbanc@in.tum.de>
parents: 59
diff changeset
   999
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1000
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1001
\begin{tikzpicture}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1002
\begin{axis}[
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1003
    xlabel={year},
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1004
    ylabel={\% of total attacks},
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1005
    ylabel style={yshift=0em},
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1006
    enlargelimits=false,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1007
    xtick={1997,1999,...,2015},
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1008
    xmin=1996.5,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1009
    xmax=2016,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1010
    ymax=21,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1011
    ytick={0,5,...,20},
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1012
    scaled ticks=false,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1013
    axis lines=left,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1014
    width=11cm,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1015
    height=5cm,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1016
    ybar,
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1017
    nodes near coords=
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1018
     {\footnotesize
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1019
      $\pgfmathprintnumber[fixed,fixed zerofill,precision=1,use comma]{\pgfkeysvalueof{/data point/y}}$},
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1020
    x tick label style={font=\scriptsize,/pgf/number format/1000 sep={}}]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1021
\addplot
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1022
  table [x=Year,y=Percentage] {../handouts/bufferoverflows.data};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1023
\end{axis}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1024
\end{tikzpicture}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1025
\end{center}
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
  1026
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1027
\scriptsize
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1028
\url{http://web.nvd.nist.gov/view/vuln/statistics}
281
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
  1029
\end{frame}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1030
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
130
4e8482e50590 more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 129
diff changeset
  1031
281
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
  1032
130
4e8482e50590 more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 129
diff changeset
  1033
4e8482e50590 more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 129
diff changeset
  1034
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1035
\begin{frame}[t]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1036
\frametitle{\begin{tabular}{c}4th Lecture:\\ Unix Access Control\end{tabular}}
130
4e8482e50590 more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 129
diff changeset
  1037
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
  1038
\begin{itemize}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1039
\item privileges are specified by file access permissions (``everything is a file'') 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1040
\end{itemize}\medskip
130
4e8482e50590 more slides
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 129
diff changeset
  1041
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1042
\begin{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1043
  \begin{tikzpicture}[scale=1]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1044
  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1045
  \draw[line width=1mm] (-.3, 0) rectangle (1.5,2);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1046
  \draw (4.7,1) node {Internet};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1047
  \draw (-2.7,1.7) node {\footnotesize Application};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1048
  \draw (0.6,1.7) node {\footnotesize Interface};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1049
  \draw (0.6,-0.4) node {\footnotesize \begin{tabular}{c}unprivileged\\[-1mm] process\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1050
  \draw (-2.7,-0.4) node {\footnotesize \begin{tabular}{c}privileged\\[-1mm] process\end{tabular}};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1051
  
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1052
  \draw[line width=1mm] (-1.8, 0) rectangle (-3.6,2);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1053
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1054
  \draw[white] (1.7,1) node (X) {};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1055
  \draw[white] (3.7,1) node (Y) {};
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1056
  \draw[red, <->, line width = 2mm] (X) -- (Y);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1057
 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1058
  \draw[red, <->, line width = 1mm] (-0.6,1) -- (-1.6,1);
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1059
  \end{tikzpicture}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1060
\end{center}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1061
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1062
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1063
\item the idea is to make the attack surface smaller and 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1064
mitigate the consequences of an attack
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
  1065
\end{itemize}
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
  1066
294
5e8ffb58bdaa updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 283
diff changeset
  1067
\end{frame}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1068
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%   
61
Christian Urban <urbanc@in.tum.de>
parents: 60
diff changeset
  1069
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
  1070
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1071
\begin{frame}[fragile,t]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1072
\frametitle{\begin{tabular}{c}4th Lecture:\\ Unix Access Control\end{tabular}}
61
Christian Urban <urbanc@in.tum.de>
parents: 60
diff changeset
  1073
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1074
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1075
\item when a file with setuid is executed, the resulting process will assume the 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1076
UID given to the owner of the file
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1077
\end{itemize}
61
Christian Urban <urbanc@in.tum.de>
parents: 60
diff changeset
  1078
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1079
\footnotesize\tt
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
  1080
\begin{center}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1081
\begin{verbatim}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1082
$ ls -ld . * */*
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1083
drwxr-xr-x 1 ping staff  32768 Apr  2 2010 .
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1084
-rw----r-- 1 ping students  31359 Jul 24 2011 manual.txt
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1085
-r--rw--w- 1 bob students    4359 Jul 24 2011 report.txt
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1086
-rwsr--r-x 1 bob students  141359 Jun  1 2013 microedit
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1087
dr--r-xr-x 1 bob staff      32768 Jul 23 2011 src
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1088
-rw-r--r-- 1 bob staff      81359 Feb 28 2012 src/code.c
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1089
-r--rw---- 1 emma students    959 Jan 23 2012 src/code.h
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1090
\end{verbatim}
277
d6dc6f0e3556 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 135
diff changeset
  1091
\end{center}
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
  1092
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
  1093
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1094
\end{frame}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1095
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
  1096
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
  1097
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1098
\begin{frame}[t]
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1099
\frametitle{\begin{tabular}{c}4th Lecture:\\ Unix Access Control\end{tabular}}
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
  1100
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1101
\begin{itemize}
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1102
\item Alice wants to have her files readable, 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1103
\alert{except} for her office mates.\bigskip
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
  1104
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1105
\item make sure you understand the setuid and setgid bits; 
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1106
  why are they necessary for login and passwd
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1107
\end{itemize}
128
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 126
diff changeset
  1108
281
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
  1109
98403100cea7 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 280
diff changeset
  1110
\end{frame}
495
f5172bb6cf45 updated
Christian Urban <urbanc@in.tum.de>
parents: 423
diff changeset
  1111
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%  
423
11b46fa92a85 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 422
diff changeset
  1112
11b46fa92a85 updated
Christian Urban <christian dot urban at kcl dot ac dot uk>
parents: 422
diff changeset
  1113
59
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
  1114
\end{document}
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
  1115
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
  1116
%%% Local Variables:  
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
  1117
%%% mode: latex
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
  1118
%%% TeX-master: t
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
  1119
%%% End: 
8b44bd114292 added slides
Christian Urban <urbanc@in.tum.de>
parents:
diff changeset
  1120