sen-material: slides02.tex@b4ddddbb14cc (annotated)

16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	1	\documentclass[dvipsnames,14pt,t]{beamer}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	2	\usepackage{beamerthemeplainculight}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	3	\usepackage[T1]{fontenc}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	4	\usepackage[latin1]{inputenc}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	5	\usepackage{mathpartir}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	6	\usepackage[absolute,overlay]{textpos}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	7	\usepackage{ifthen}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	8	\usepackage{tikz}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	9	\usepackage{pgf}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	10	\usepackage{calc}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	11	\usepackage{ulem}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	12	\usepackage{courier}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	13	\usepackage{listings}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	14	\renewcommand{\uline}[1]{#1}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	15	\usetikzlibrary{arrows}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	16	\usetikzlibrary{automata}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	17	\usetikzlibrary{shapes}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	18	\usetikzlibrary{shadows}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	19	\usetikzlibrary{positioning}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	20	\usetikzlibrary{calc}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	21	\usepackage{graphicx}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	22
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	23	\definecolor{javared}{rgb}{0.6,0,0} % for strings
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	24	\definecolor{javagreen}{rgb}{0.25,0.5,0.35} % comments
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	25	\definecolor{javapurple}{rgb}{0.5,0,0.35} % keywords
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	26	\definecolor{javadocblue}{rgb}{0.25,0.35,0.75} % javadoc
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	27
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	28	\lstset{language=Java,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	29	basicstyle=\ttfamily,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	30	keywordstyle=\color{javapurple}\bfseries,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	31	stringstyle=\color{javagreen},
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	32	commentstyle=\color{javagreen},
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	33	morecomment=[s][\color{javadocblue}]{/*}{/},
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	34	numbers=left,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	35	numberstyle=\tiny\color{black},
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	36	stepnumber=1,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	37	numbersep=10pt,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	38	tabsize=2,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	39	showspaces=false,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	40	showstringspaces=false}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	41
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	42	\lstdefinelanguage{scala}{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	43	morekeywords={abstract,case,catch,class,def,%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	44	do,else,extends,false,final,finally,%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	45	for,if,implicit,import,match,mixin,%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	46	new,null,object,override,package,%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	47	private,protected,requires,return,sealed,%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	48	super,this,throw,trait,true,try,%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	49	type,val,var,while,with,yield},
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	50	otherkeywords={=>,<-,<\%,<:,>:,\#,@},
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	51	sensitive=true,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	52	morecomment=[l]{//},
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	53	morecomment=[n]{/}{/},
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	54	morestring=[b]",
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	55	morestring=[b]',
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	56	morestring=[b]"""
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	57	}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	58
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	59	\lstset{language=Scala,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	60	basicstyle=\ttfamily,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	61	keywordstyle=\color{javapurple}\bfseries,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	62	stringstyle=\color{javagreen},
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	63	commentstyle=\color{javagreen},
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	64	morecomment=[s][\color{javadocblue}]{/*}{/},
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	65	numbers=left,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	66	numberstyle=\tiny\color{black},
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	67	stepnumber=1,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	68	numbersep=10pt,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	69	tabsize=2,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	70	showspaces=false,
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	71	showstringspaces=false}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	72
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	73	% beamer stuff
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	74	\renewcommand{\slidecaption}{APP 02, King's College London, 2 October 2012}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	75
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	76
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	77	\begin{document}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	78
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	79	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	80	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	81	\begin{frame}<1>[t]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	82	\frametitle{%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	83	\begin{tabular}{@ {}c@ {}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	84	\\
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	85	\LARGE Access Control and \\[-3mm]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	86	\LARGE Privacy Policies (2)\\[-6mm]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	87	\end{tabular}}\bigskip\bigskip\bigskip
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	88
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	89	%\begin{center}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	90	%\includegraphics[scale=1.3]{pics/barrier.jpg}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	91	%\end{center}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	92
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	93	\normalsize
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	94	\begin{center}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	95	\begin{tabular}{ll}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	96	Email: & christian.urban at kcl.ac.uk\\
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	97	Of$\!$fice: & S1.27 (1st floor Strand Building)\\
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	98	Slides: & KEATS (also home work is there)
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	99	\end{tabular}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	100	\end{center}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	101
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	102
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	103	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	104	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	105
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	106	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	107	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	108	\begin{frame}[c]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	109	\frametitle{\begin{tabular}{c}Homework\end{tabular}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	110
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	111
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	112	\ldots{} I have a question about the homework.\\[3mm]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	113	Is it required to submit the homework before\\
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	114	the next lecture?\\[5mm]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	115
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	116	Thank you!\\
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	117	Anonymous
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	118
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	119	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	120	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	121
20 b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	122	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	123	\mode<presentation>{
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	124	\begin{frame}[c]
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	125
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	126	\begin{center}
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	127	\begin{tabular}[t]{c}
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	128	\includegraphics[scale=1.2]{pics/barrier.jpg}\\
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	129	future lectures
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	130	\end{tabular}\;\;\;
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	131	\onslide<2>{
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	132	\begin{tabular}[t]{c}
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	133	\includegraphics[scale=0.32]{pics/trainwreck.jpg}\\
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	134	today
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	135	\end{tabular}
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	136	}
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	137	\end{center}
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	138
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	139
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	140	\end{frame}}
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	141	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	142
16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	143
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	144	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	145	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	146	\begin{frame}[c]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	147	\frametitle{\begin{tabular}{@ {}c@ {}}SmartWater\end{tabular}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	148
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	149	\begin{textblock}{1}(1,3)
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	150	\begin{tabular}{c}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	151	\includegraphics[scale=0.15]{pics/SmartWater}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	152	\end{tabular}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	153	\end{textblock}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	154
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	155
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	156	\begin{textblock}{8.5}(7,3)
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	157	\begin{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	158	\item seems helpful for preventing cable theft\medskip
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	159	\item wouldn't be helpful to make your property safe, because of possible abuse\medskip
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	160
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	161	\item security is always a tradeoff
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	162	\end{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	163	\end{textblock}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	164
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	165	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	166	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	167
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	168	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	169	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	170	\begin{frame}[c]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	171	\frametitle{\begin{tabular}{@ {}c@ {}}Plaintext Passwords from IEEE\end{tabular}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	172
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	173	\small\textcolor{gray}{On 25 September 2012, a report on a data breach at IEEE:}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	174
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	175
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	176	\begin{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	177	\item IEEE is a standards organisation (not for profit)
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	178	\item many standards in CS are by IEEE\medskip
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	179	\item 100k plain-text passwords were recorded in logs
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	180	\item the logs were openly accessible on their FTP server
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	181	\end{itemize}\bigskip
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	182
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	183	\begin{flushright}\small
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	184	\textcolor{gray}{\url{http://ieeelog.com}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	185	\end{flushright}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	186
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	187	\only<2>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	188	\begin{textblock}{11}(3,2)
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	189	\begin{tikzpicture}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	190	\draw (0,0) node[inner sep=2mm,fill=white, ultra thick, draw=red, rounded corners=2mm]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	191	{\normalsize\color{darkgray}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	192	\begin{minipage}{7.5cm}\raggedright\small
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	193	\includegraphics[scale=0.6]{pics/IEEElog.jpg}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	194	\end{minipage}};
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	195	\end{tikzpicture}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	196	\end{textblock}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	197
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	198	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	199	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	200
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	201
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	202	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	203	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	204	\begin{frame}[c]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	205	\frametitle{\begin{tabular}{@ {}c@ {}}Virgin Mobile (USA)\end{tabular}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	206
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	207	\begin{flushright}\small
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	208	\textcolor{gray}{\url{http://arstechnica.com/security/2012/09/virgin-mobile-password-crack-risk/}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	209	\end{flushright}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	210
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	211	\begin{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	212	\item for online accounts passwords must be 6 digits
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	213	\item you must cycle through 1M combinations (online)\pause\bigskip
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	214
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	215	\item he limited the attack on his own account to 1 guess per second, \alert{\bf and}
18 ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	216	\item wrote a script that cleared the cookie set after each guess\pause
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	217	\item has been fixed now
16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	218	\end{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	219
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	220
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	221
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	222	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	223	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	224
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	225
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	226	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	227	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	228	\begin{frame}[c]
18 ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	229	\frametitle{\begin{tabular}{@ {}c@ {}}Smash the Stack for Fun \ldots\end{tabular}}
16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	230
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	231	\begin{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	232	\item ``smashing the stack attacks'' or ``buffer overflow attacks''
18 ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	233	\item one of the most popular attacks;\\ attack of the (last) decade\\ ($>$ 50\% of security incidents reported at CERT are related to buffer overflows)
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	234	\begin{flushright}\small
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	235	\textcolor{gray}{\url{http://www.kb.cert.org/vuls}}
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	236	\end{flushright}
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	237	\medskip
16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	238	\item made popular in an article by Elias Levy\\ (also known as Aleph One):\\
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	239	\begin{center}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	240	{\bf ``Smashing The Stack For Fun and Profit''}
18 ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	241	\end{center}\medskip
16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	242
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	243	\begin{flushright}
18 ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	244	\small\textcolor{gray}{\url{http://www.phrack.org}, Issue 49, Article 14}
16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	245	\end{flushright}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	246
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	247	\end{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	248
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	249
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	250	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	251	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	252
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	253	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	254	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	255	\begin{frame}[c]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	256	\frametitle{\begin{tabular}{c}The Problem\end{tabular}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	257
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	258	\begin{itemize}
18 ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	259	\item The basic problem is that library routines in C look as follows:
16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	260	\begin{center}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	261	{\lstset{language=Java}\fontsize{8}{10}\selectfont%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	262	\texttt{\lstinputlisting{app5.c}}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	263	\end{center}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	264	\item the resulting problems are often remotely exploitable
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	265	\item can be used to circumvents all access control
18 ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	266	(botnets for further attacks)
16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	267	\end{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	268
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	269	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	270	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	271
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	272	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	273	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	274	\begin{frame}[c]
18 ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	275	\frametitle{\begin{tabular}{c}Variants\end{tabular}}
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	276
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	277	There are many variants:
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	278
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	279	\begin{itemize}
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	280	\item return-to-lib-C attacks
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	281	\item heap-smashing attacks\\
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	282	\textcolor{gray}{\small(Slammer Worm in 2003 infected 90\% of vulnerable systems within 10 minutes)}\bigskip
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	283
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	284	\item ``zero-days-attacks'' (new unknown vulnerability)
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	285	\end{itemize}
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	286
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	287	\end{frame}}
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	288	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	289
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	290
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	291
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	292	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	293	\mode<presentation>{
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	294	\begin{frame}[c]
16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	295
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	296	\small
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	297	\texttt{my\_float} is printed twice:\bigskip
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	298
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	299	{\lstset{language=Java}\fontsize{8}{10}\selectfont%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	300	\texttt{\lstinputlisting{C1.c}}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	301
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	302
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	303	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	304	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	305
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	306	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	307	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	308	\begin{frame}[c]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	309
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	310	\begin{center}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	311	\onslide<1->{\includegraphics[scale=0.5]{pics/stack1}\;\;}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	312	\onslide<2->{\includegraphics[scale=0.5]{pics/stack2}\;\;}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	313	\onslide<3->{\includegraphics[scale=0.5]{pics/stack3}\;\;}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	314	\end{center}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	315
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	316
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	317	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	318	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	319
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	320	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	321	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	322	\begin{frame}[c]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	323
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	324	{\lstset{language=Java}\fontsize{8}{10}\selectfont%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	325	\texttt{\lstinputlisting{C2.c}}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	326
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	327
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	328	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	329	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	330
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	331	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	332	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	333	\begin{frame}[c]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	334
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	335	\small
20 b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	336	A programmer might be careful, but still introduce vulnerabilities:\bigskip
16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	337
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	338	{\lstset{language=Java}\fontsize{8}{10}\selectfont%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	339	\texttt{\lstinputlisting{C2a.c}}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	340
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	341
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	342	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	343	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	344
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	345	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	346	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	347	\begin{frame}[c]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	348	\frametitle{\begin{tabular}{c}Payloads\end{tabular}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	349
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	350	\begin{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	351	\item the idea is you store some code as part to the buffer
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	352	\item you then override the return address to execute this payload\medskip
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	353	\item normally you start a root-shell\pause
20 b4ddddbb14cc tuned Christian Urban <urbanc@in.tum.de> parents: 19 diff changeset	354	\item difficulty is to guess the right place where to ``jump''
16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	355	\end{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	356
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	357	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	358	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	359
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	360	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	361	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	362	\begin{frame}[c]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	363	\frametitle{\begin{tabular}{c}Payloads (2)\end{tabular}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	364
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	365	\begin{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	366	\item another difficulty is that the code is not allowed to contain \texttt{$\backslash$x00}:
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	367
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	368	\begin{center}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	369	\texttt{xorl \%eax, \%eax}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	370	\end{center}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	371	\end{itemize}\bigskip\bigskip
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	372
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	373	{\lstset{language=Java}\fontsize{8}{10}\selectfont%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	374	\texttt{\lstinputlisting{app5.c}}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	375
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	376	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	377	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	378
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	379
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	380	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	381	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	382	\begin{frame}[c]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	383	\frametitle{\begin{tabular}{c}Format String Vulnerability\end{tabular}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	384
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	385	\small
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	386	\texttt{string} is nowhere used:\bigskip
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	387
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	388	{\lstset{language=Java}\fontsize{8}{10}\selectfont%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	389	\texttt{\lstinputlisting{C6.c}}}\bigskip
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	390
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	391	this vulnerability can be used to read out the stack
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	392
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	393	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	394	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	395
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	396	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	397	\mode<presentation>{
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	398	\begin{frame}[c]
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	399	\frametitle{\begin{tabular}{c}Protections against BO Attacks\end{tabular}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	400
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	401	\begin{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	402	\item use safe library functions
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	403	\item ensure stack data is not executable (can be defeated)
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	404	\item address space randomisation (makes one-size-fits-all more difficult)
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	405	\item choice of programming language (one of the selling points of Java)
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	406
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	407	\end{itemize}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	408
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	409	\end{frame}}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	410	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	411
17 ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	412	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	413	\mode<presentation>{
ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	414	\begin{frame}[c]
18 ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	415	\frametitle{\begin{tabular}{c}Security Goals\end{tabular}}
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	416
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	417	\begin{itemize}
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	418	\item Prevent common vulnerabilities from occurring (e.g. buffer overflows)\pause
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	419	\item Recover from attacks (traceability and auditing of security-relevant actions)\pause
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	420	\item Monitoring (detect attacks)\pause
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	421	\item Privacy, confidentiality, anonymity (to protect secrets)\pause
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	422	\item Authenticity (eeded for access control)\pause
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	423	\item Integrity (prevent unwanted modification or tampering)\pause
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	424	\item Availability and reliability (reduce the risk of DoS attacks)
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	425	\end{itemize}
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	426
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	427	\end{frame}}
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	428	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	429
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	430
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	431
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	432	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	433	\mode<presentation>{
ad7ef5a7a63c tuned Christian Urban <urbanc@in.tum.de> parents: 17 diff changeset	434	\begin{frame}[c]
17 ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	435	\frametitle{\begin{tabular}{c}Homework\end{tabular}}
ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	436
ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	437	\begin{itemize}
ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	438	\item Assume format string attacks allow you to read out the stack. What can you do
19 3a15c73d51e2 tuned Christian Urban <urbanc@in.tum.de> parents: 18 diff changeset	439	with this information?\bigskip
17 ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	440
ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	441	\item Assume you can crash a program remotely. Why is this a problem?
ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	442	\end{itemize}
ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	443
ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	444	\end{frame}}
ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	445	%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
ba6999806dee tuned Christian Urban <urbanc@in.tum.de> parents: 16 diff changeset	446
16 d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	447
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	448	\end{document}
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	449
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	450	%%% Local Variables:
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	451	%%% mode: latex
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	452	%%% TeX-master: t
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	453	%%% End:
d627d9bc15c8 new slides Christian Urban <urbanc@in.tum.de> parents: diff changeset	454

author	Christian Urban <urbanc@in.tum.de>
	Tue, 02 Oct 2012 14:34:18 +0100
changeset 20	b4ddddbb14cc
parent 19	3a15c73d51e2
child 21	526b244ec26d
permissions	-rw-r--r--