sen-material: comparison slides/slides05.tex

equal deleted inserted replaced

-:0d491b5654f9
+:9cf486aea756
 \item card readers (you cannot trust the terminals)
 \item RFID (passports)
 \item car transponders
 \end{itemize}\medskip\pause
-The point is that we cannot control the network:
+The point is that we cannot control the network: An attacker
-An attacker can install a packet sniffer, inject packets,
+can install a packet sniffer, inject packets, modify packets,
-modify packets, replay messages.
+replay messages\ldots{}fake pretty much everything.
 \end{frame}
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 \begin{frame}[c]
 \quad
 \includegraphics[scale=0.25]{../pics/phone-signal.jpg}
 \end{center}
 \begin{itemize}
-\item I am sitting at Starbuck. How can I be sure I am
+\item I am sitting at Starbuck. How can I be sure I am really
-really visiting Barclays? I have no control of the access
+visiting Barclays? I have no control of the access
 point.
-\item How can I achieve that a secret key is established
+\item How can I achieve that a secret key is established in
-in order to encrypt my conversation? I have no control over
+order to encrypt my mobile conversation? I have no
-the access point.
+control over the access points.
 \end{itemize}
 \end{frame}
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 Alice:  & Hello server!\\
 Server: & I heard you\\
 Alice:  & Thanks
 \end{tabular}
 \end{column}
-\end{columns}\pause
+\end{columns}
+\onslide<2->{
 \begin{center}
 \begin{tabular}{rl}
 \bl{$A \rightarrow S$}: & \bl{SYN}\\
 \bl{$S \rightarrow A$}: & \bl{SYN-ACK}\\
 \bl{$A \rightarrow S$}: & \bl{ACK}\\
 \end{tabular}
-\end{center}
+\end{center}}
-\only<2>{
+\only<3>{
 \begin{textblock}{3}(11,5)
 \begin{bubble}[3.2cm]
 SYNflood attacks:\medskip\\
 \includegraphics[scale=0.4]{../pics/synflood.png}
 \end{bubble}
 \frametitle{Authentication Protocols}
 Alice (\bl{$A$}) and Bob (\bl{$B$}) share a secret key
 \bl{$K_{AB}$}\bigskip
-Passwords:
+Password transmission:
 \begin{center}
 \bl{$A \rightarrow B: K_{AB}$}
 \end{center}\pause\bigskip
 \frametitle{Authentication Protocols}
 Alice (\bl{$A$}) and Bob (\bl{$B$}) share a secret key
 \bl{$K_{AB}$}\bigskip
-Simple Challenge Response:
+Simple Challenge Response (solving the replay problem):
 \begin{center}
 \begin{tabular}{lll}
 \bl{$A \rightarrow B:$} & \bl{Hi I am A}\\
 \bl{$B \rightarrow A:$} & \bl{$N$} & (challenge)\\
 \bl{$A \rightarrow B:$} & \bl{$\{N\}_{K_{AB}}$}\\
 \end{tabular}
 \end{center}\pause
 \begin{itemize}
-\item cannot replay since next time will be another challenge
+\item cannot be replayed since next time will be another
-\item \bl{$B$} authenticates \bl{$A$}, but \bl{$A$} does not
+challenge \bl{$N$}
-authenticate \bl{$B$} (be Eve in the middle, intercept
+\item \bl{$B$} authenticates \bl{$A$}, but \bl{$A$} does not
-messages from \bl{$A$} and ignore last)
+authenticate \bl{$B$} (Eve can intercept
+messages from \bl{$A$}, send random challenge
+and ignore last)
 \end{itemize}
 \end{frame}
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 \begin{tabular}{ll}
 \bl{$A \rightarrow B:$} & \bl{$N_A$}\\
 \bl{$B \rightarrow A:$} & \bl{$\{N_A, N_B\}_{K_{AB}}$}\\
 \bl{$A \rightarrow B:$} & \bl{$N_B$}\\
 \end{tabular}
-\end{center}
+\end{center}\pause
+But requires shared secret key.
 \end{frame}
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 \end{center}
 \end{frame}}
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
-%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
-\mode<presentation>{
-\begin{frame}[c]
-\frametitle{Protocol Attacks}
-\begin{itemize}
-\item replay attacks
-\item reflection attacks
-\item man-in-the-middle attacks
-\item timing attacks
-\item parallel session attacks
-\item binding attacks (public key protocols)
-\item changing environment / changing assumptions\bigskip
-\item (social engineering attacks)
-\end{itemize}
-\end{frame}}
-%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 \mode<presentation>{
 \begin{frame}[c]
 \frametitle{Public-Key Infrastructure}
 \frametitle{Person-in-the-Middle}
 Attack:
 \begin{itemize}
-\item \bl{$A$} sends public key  to \bl{$B$}  --- \bl{$C$} intercepts this message and send his own public key
+\item \bl{$A$} sends public key  to \bl{$B$}  --- \bl{$C$}
-\item \bl{$B$} sends public key  to \bl{$A$} --- \bl{$C$} intercepts this message and send his own public key
+intercepts this message and send his own public key to
+\bl{$B$}
+\item \bl{$B$} sends public key  to \bl{$A$} --- \bl{$C$}
+intercepts this message and send his own public key
+\bl{$A$}
 \item \bl{$A$} sends message encrypted with \bl{$C$}'s public key, \bl{$C$} decrypts it
 with its private key, re-encrypts with \bl{$B$}'s public key
-\item similar
+\item similar the other way
 \end{itemize}
 \end{frame}}
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 Prevention:
 \begin{itemize}
 \item \bl{$A$} sends public key  to \bl{$B$}
 \item \bl{$B$} sends public key  to \bl{$A$}
-\item \bl{$A$} encrypts message with \bl{$B$}'s public key, send's {\bf half} of the message
+\item \bl{$A$} encrypts message with \bl{$B$}'s public key,
-\item \bl{$B$} encrypts message with \bl{$A$}'s public key, send's {\bf half} of the message
+send's {\bf half} of the message to \bl{$B$}
-\item \bl{$A$} sends other half, \bl{$B$} can now decrypt entire message
+\item \bl{$B$} encrypts message with \bl{$A$}'s public key,
-\item \bl{$B$} sends other half, \bl{$A$} can now decrypt entire message
+send's {\bf half} of the message back to \bl{$A$}
+\item \bl{$A$} sends other half, \bl{$B$} can now decrypt
+entire message
+\item \bl{$B$} sends other half, \bl{$A$} can now decrypt
+entire message
 \end{itemize}\pause
 \bl{$C$} would have to invent a totally new message
 \end{frame}
 \end{enumerate}\pause
 \small
 This process means that the transponder believes the car knows
 the key \bl{$K$}, and the car believes the transponder knows
-the key \bl{$K$}. They should have authenticated themselves
+the key \bl{$K$}. They have authenticated themselves
 to each other.
 \end{frame}
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 \end{itemize}
 \hfill\footnotesize\url{http://www.renesys.com/2013/11/mitm-internet-hijacking/}
 \end{frame}
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
+%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
+\mode<presentation>{
+\begin{frame}[c]
+\frametitle{Protocol Attacks}
+\begin{itemize}
+\item replay attacks
+\item reflection attacks
+\item man-in-the-middle attacks
+\item timing attacks
+\item parallel session attacks
+\item binding attacks (public key protocols)
+\item changing environment / changing assumptions\bigskip
+\item (social engineering attacks)
+\end{itemize}
+\end{frame}}
+%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 %%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
 \mode<presentation>{
 \begin{frame}[c]
 \frametitle{Best Practices}

changeset 255	9cf486aea756
parent 254	0d491b5654f9
child 256	e272713e34ff