Successfully reported this slideshow.
Your SlideShare is downloading. ×

illusoryTLS: Impersonate, Tamper, and Exploit

Jun. 09, 2015
0 likes 421 views
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Ad
Upcoming SlideShare
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit
Loading in …3
×

Check these out next

Hacking and its types
Rishab Gupta
ethical hacking report
Akhilesh Patel
ethical hacking
samprada123
POST-QUANTUM CRYPTOGRAPHY
Pavithra Muthu
Ethi mini - ethical hacking
Being Uniq Sonu
Ethical hacking
AKSHAY KHATRI
61370436 main-case-study
homeworkping4
Discovery of Compromised Machines
Anton Chuvakin
1 of 174 Ad

illusoryTLS: Impersonate, Tamper, and Exploit

Jun. 09, 2015
0 likes 421 views

Download to read offline

Software

The entire X.509 PKI security architecture falls apart, if a single CA certificate with a secretly embedded backdoor enters the certificate store of relying parties. Have we sufficient assurance that this did not happen already? This talk explores this scenario from both an experimental and speculative point of view.

From the experimental standpoint, the talk reports on illusoryTLS, an entry to the first Underhanded Crypto Contest. illusoryTLS is an instance of the Young and Yung elliptic curve asymmetric backdoor in RSA key generation. It targets a Certification Authority public-key certificate imported in the certificate store of a pretty standard HTTPS client and TLS server. The security outcome is the worst possible outcome, because the backdoor completely perverts the security guarantees provided by the TLS protocol, allowing the attacker to impersonate the endpoints (i.e., authentication failure), tamper with their messages (i.e., integrity erosion), and actively eavesdrop their communications (i.e., confidentiality loss).

illusoryTLS has been shortlisted to the final rounds of the contest, which is still ongoing. Being the backdoored public-key indistinguishable (under the ECDDH assumption) to all probabilistic polynomial time algorithms from genuine public-keys, illusoryTLS is expected to withstand the review and scrutiny of contest judges.

In the Internet X.509 PKI the security impact of such backdoor would extend further; the presence of a single CA certificate with a secretly embedded backdoor in the certificate store renders the entire TLS security fictional. In fact, the current practice of universal implicit cross-certification makes the whole X.509 PKI as weak as its weakest link.

Therefore, when dealing with this class of attacks in the context of X.509 PKIs, it might be not sufficient to avoid outsourcing the key generation. It becomes essential also to have assurance about the security of each implementation of vulnerable key-generation algorithms employed by trusted credential issuers. Have we sufficient assurance about the tens or hundreds CA certificate we daily entrust our business upon?

Full source code and design of illusoryTLS will be made available at HITBSecConf 2015 Amsterdam.

The entire X.509 PKI security architecture falls apart, if a single CA certificate with a secretly embedded backdoor enters the certificate store of relying parties. Have we sufficient assurance that this did not happen already? This talk explores this scenario from both an experimental and speculative point of view.

From the experimental standpoint, the talk reports on illusoryTLS, an entry to the first Underhanded Crypto Contest. illusoryTLS is an instance of the Young and Yung elliptic curve asymmetric backdoor in RSA key generation. It targets a Certification Authority public-key certificate imported in the certificate store of a pretty standard HTTPS client and TLS server. The security outcome is the worst possible outcome, because the backdoor completely perverts the security guarantees provided by the TLS protocol, allowing the attacker to impersonate the endpoints (i.e., authentication failure), tamper with their messages (i.e., integrity erosion), and actively eavesdrop their communications (i.e., confidentiality loss).

illusoryTLS has been shortlisted to the final rounds of the contest, which is still ongoing. Being the backdoored public-key indistinguishable (under the ECDDH assumption) to all probabilistic polynomial time algorithms from genuine public-keys, illusoryTLS is expected to withstand the review and scrutiny of contest judges.

In the Internet X.509 PKI the security impact of such backdoor would extend further; the presence of a single CA certificate with a secretly embedded backdoor in the certificate store renders the entire TLS security fictional. In fact, the current practice of universal implicit cross-certification makes the whole X.509 PKI as weak as its weakest link.

Therefore, when dealing with this class of attacks in the context of X.509 PKIs, it might be not sufficient to avoid outsourcing the key generation. It becomes essential also to have assurance about the security of each implementation of vulnerable key-generation algorithms employed by trusted credential issuers. Have we sufficient assurance about the tens or hundreds CA certificate we daily entrust our business upon?

Full source code and design of illusoryTLS will be made available at HITBSecConf 2015 Amsterdam.

Software
Advertisement

Recommended

illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit
a001
1.1k views
173 slides
illusoryTLS: Nobody But Us Impersonate, Tamper, Exploit (DeepSEC 2015)
a001
967 views
173 slides
Selective Opening Secure Functional Encryption
csandit
248 views
16 slides
Hacking Presentation
Animesh Behera
70 views
30 slides
Ijtra150171
International Journal of Technical Research & Application
219 views
3 slides
Cryptographysecurity 1222867498937700-9
muthulx
296 views
21 slides
Paper id 311201535
IJRAT
123 views
4 slides
Encryption
vasanthimuniasamy
5.1k views
16 slides
Advertisement

More Related Content

Similar to illusoryTLS: Impersonate, Tamper, and Exploit (20)

Hacking and its types
Rishab Gupta
670 views
ethical hacking report
Akhilesh Patel
404 views
ethical hacking
samprada123
2k views
POST-QUANTUM CRYPTOGRAPHY
Pavithra Muthu
75 views
Ethi mini - ethical hacking
Being Uniq Sonu
696 views
Ethical hacking
AKSHAY KHATRI
678 views
61370436 main-case-study
homeworkping4
957 views
Discovery of Compromised Machines
Anton Chuvakin
840 views
Super1
neelakanteswarreddy
717 views
One Time Pad Journal
Amirul Wiramuda
735 views
How to be come a hacker slide for 2600 laos
Outhai SAIOUDOM
210 views
Module 3 (scanning)
Wail Hassan
578 views
my new HACKING
BABATUNDE OLANREWAJU GEORGE
535 views
Hacking
Paidi Dinesh
282 views
Network Security
Puneet Abichandani
870 views
Fundamental of ethical hacking
Waseem Rauf
150 views
Ethical hacking
Prabhat kumar Suman
541 views
How to hide your browser 0-day @ Disobey
Zoltan Balazs
457 views
Ethical Hacking
aashish2cool4u
15.2k views
Hacking
SahilGothoskar
43 views
Hacking and its types
Rishab Gupta
670 views
38 slides
ethical hacking report
Akhilesh Patel
404 views
25 slides
ethical hacking
samprada123
2k views
34 slides
POST-QUANTUM CRYPTOGRAPHY
Pavithra Muthu
75 views
8 slides
Ethi mini - ethical hacking
Being Uniq Sonu
696 views
17 slides
Ethical hacking
AKSHAY KHATRI
678 views
25 slides

More from a001 (9)

Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...
a001
206 views
The Vulnerability Supply Chain - HackIT Ukraine 2016, Kharkiv
a001
162 views
The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion...
a001
233 views
Andy, the Polluters, Rick Deckard, and Other Bounty Hunters
Vulnerabilities a...
a001
70 views
Vulnerabilities and their Surrounding Ethical Questions: A Code of Ethics for...
a001
263 views
The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion...
a001
537 views
Auscert20150daymarket
a001
226 views
The Bazaar, the Maharaja's Ultimatum, and the Shadow of the Future: Extortion...
a001
350 views
Cryptographic Key Reliable Lifetimes - Bounding the Risk of Key Exposure in t...
a001
418 views
Deliberately Un-Dependable Applications: the Role of Dependability Metrics in...
a001
206 views
48 slides
The Vulnerability Supply Chain - HackIT Ukraine 2016, Kharkiv
a001
162 views
143 slides
The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion...
a001
233 views
170 slides
Andy, the Polluters, Rick Deckard, and Other Bounty Hunters
Vulnerabilities a...
a001
70 views
114 slides
Vulnerabilities and their Surrounding Ethical Questions: A Code of Ethics for...
a001
263 views
123 slides
The Bazaar, the Maharaja’s Ultimatum, and the Shadow of the Future: Extortion...
a001
537 views
171 slides
Advertisement

Recently uploaded (20)

SPSS Statistics - Customising Toolbars.pptx
Version 1 Analytics
0 views
Dan GreinerIBMTarihçe.ppt
ssuser0f411f
0 views
Boosting Personalization In SaaS Using Machine Learning
Glorium Tech
0 views
emilio.ppt
Mohit Joshi
3 views
Little Women
mitchellclayton1
0 views
Cpp Study Jam
MuhammadHaseeb53015
15 views
Natural language Processing.pptx
ShoaibNajeeb
1 view
Netsuite User Friendly and easy to navigate
Cinntra NetSuite
0 views
Fix.pptx
YasmenAhmedKamalMoha
2 views
REST.ppt
Mohit Joshi
4 views
angular-tesla-home.pdf
Riccardo Vettore
0 views
java01.ppt
priyanshugautam46
2 views
Angular Best Practices To Build Clean and Performant Web Applications
Albiorix Technology
0 views
Concept of Keys in DBMS.pptx
DeependraKumarShukla
2 views
Firewalls in cryptography
T7Unknown
1 view
Infraguard Access Management
Infraguard
0 views
SOFTWARE PROTOTYPING.ppt
KavithaNair28
0 views
Quarter-2-CH-1.ppt
TanTan622589
1 view
OOP.pptx
saifnasir3
0 views
3 Setting Up Cash Management.ppt
SaleemAhmed20707
2 views
SPSS Statistics - Customising Toolbars.pptx
Version 1 Analytics
0 views
8 slides
Dan GreinerIBMTarihçe.ppt
ssuser0f411f
0 views
43 slides
Boosting Personalization In SaaS Using Machine Learning
Glorium Tech
0 views
21 slides
emilio.ppt
Mohit Joshi
3 views
23 slides
Little Women
mitchellclayton1
0 views
1 slide
Cpp Study Jam
MuhammadHaseeb53015
15 views
13 slides

illusoryTLS: Impersonate, Tamper, and Exploit

  1. 1. ... Impersonate, Tamper, and Exploit .. Alfonso De Gregorio . Founder, BeeWise .. HITBSecConf 2015, Amsterdam, May 26th-29th, 2015 ..
  2. 2. ... Web PKI is Fragile . 1/104 WebPKIisFragile
  3. 3. ..
  4. 4. ..
  5. 5. ..
  6. 6. ..
  7. 7. .. Discuss . Web PKI is Fragile . 6/104 /me @secYOUre #illusoryTLS #HITB2015AMS
  8. 8. .. First times are... . Web PKI is Fragile . 7/104 ..
  9. 9. ... Web PKI is Fragile . 8/104 If only we could notice them
  10. 10. .. Web PKI is Fragile . Web PKI is Fragile . 9/104 ... Web PKI is Fragile
  11. 11. .. PKI Dramas . Web PKI is Fragile . 10/104 . China Internet Network Information Center (CNNIC), 2015 . Lenovo, 2015 . National Informatics Centre of India, 2014 . ANSSI, 2013 . Trustwave, 2012 . Türktrust, 2011-2013 . DigiNotar, 2011 . Comodo, 2011 . Verisign, 2010
  12. 12. .. Unsuspecting Users . Web PKI is Fragile . 11/104 ..
  13. 13. .. Remaining oblivious . Web PKI is Fragile . 12/104 ..
  14. 14. .. Silent Failure . Web PKI is Fragile . 13/104 ..
  15. 15. ..
  16. 16. .. /me . Web PKI is Fragile . 15/104 At the intersection of so ware security and security so ware, exploring, and trying to contain, the space of unanticipated state.
  17. 17. .. Secure Backdoor . Web PKI is Fragile . 16/104 Almost safe
  18. 18. .. Agenda . Web PKI is Fragile . 17/104 1. Web PKI is Fragile The sorrow state of the infrastructure we daily entrust our business upon 2. illusoryTLS Nobody But Us Impersonate, Tamper, and Exploit 3. The Impact Or, why one rotten apple spoils the whole barrel 4. A Backdoor Embedding Algorithm Elligator turned to evil 5. Conclusions The misery of our times
  19. 19. .. Perspective . Web PKI is Fragile . 18/104 . Timely topic o en debated as matter for a government to legislate on
  20. 20. .. Perspective . Web PKI is Fragile . 18/104 . Timely topic o en debated as matter for a government to legislate on . A space that some entities might have practically explored regardless of the policy framework
  21. 21. .. Perspective . Web PKI is Fragile . 18/104 . Timely topic o en debated as matter for a government to legislate on . A space that some entities might have practically explored regardless of the policy framework . Would we be able to notice if our communications were being exploited?
  22. 22. .. Poll . Web PKI is Fragile . 19/104 ... Poll
  23. 23. .. Poll . Web PKI is Fragile . 20/104 How many of you think that backdoors can be asymmetric?
  24. 24. .. Poll . Web PKI is Fragile . 21/104 How many of you think that backdoors can be planted in data?
  25. 25. .. Common View . Web PKI is Fragile . 22/104 . Backdoors are symmetric . Malicious logic in the target system code base . Everyone with knowledge about the internals of the backdoor can exploit it . Given enough skills and effort, code review can spot their presence
  26. 26. .. Yet . Web PKI is Fragile . 23/104 . Backdoors can be asymmetric. Their complete code does not enable anyone, except those with access to the key-recovery system, to exploit the backdoor
  27. 27. .. Yet . Web PKI is Fragile . 23/104 . Backdoors can be asymmetric. Their complete code does not enable anyone, except those with access to the key-recovery system, to exploit the backdoor . Backdoors can be planted in data
  28. 28. ... Web PKI is Fragile . 24/104 Backdoor is data, data is backdoor
  29. 29. ... Web PKI is Fragile . 25/104 .. “ The illusion that your program is manipulating its data is powerful. But it is an illusion: The data is controlling your program. Taylor Hornby.. ”
  30. 30. .. Scenario . Web PKI is Fragile . 26/104 . The entire X.509 Web PKI security architecture falls apart, if a single CA certificate with a secretly embedded backdoor enters the certificate store of relying parties
  31. 31. .. Scenario . Web PKI is Fragile . 26/104 . . The entire X.509 Web PKI security architecture falls apart, if a single CA certificate with a secretly embedded backdoor enters the certificate store of relying parties Have we sufficient assurance that this did not happen already?
  32. 32. ... illusoryTLS . 27/104 illusoryTLS
  33. 33. .. Underhanded Crypto Contest . illusoryTLS . 28/104 . .. .. “ The Underhanded Crypto Contest is a competition to write or modify crypto code that appears to be secure, but actually does something evil .. ”
  34. 34. .. illusoryTLS . illusoryTLS . 29/104 . An instance of the Young and Yung elliptic curve asymmetric backdoor in RSA key generation
  35. 35. .. Security Outcome . illusoryTLS . 30/104 The backdoor completely perverts the security guarantees provided by the TLS protocol, allowing the attacker to: . Impersonate the endpoints (i.e., authentication failure)
  36. 36. .. Security Outcome . illusoryTLS . 30/104 The backdoor completely perverts the security guarantees provided by the TLS protocol, allowing the attacker to: . Impersonate the endpoints (i.e., authentication failure) . Tamper with their messages (i.e., integrity erosion)
  37. 37. .. Security Outcome . illusoryTLS . 30/104 The backdoor completely perverts the security guarantees provided by the TLS protocol, allowing the attacker to: . Impersonate the endpoints (i.e., authentication failure) . Tamper with their messages (i.e., integrity erosion) . Actively eavesdrop their communications (i.e., confidentiality loss)
  38. 38. .. Threat Model . illusoryTLS . 31/104 The backdoor designer can: . “Insert vulnerabilities into commercial encryption systems, IT systems, networks and endpoint communications devices used by targets.”
  39. 39. .. Threat Model . illusoryTLS . 31/104 The backdoor designer can: . “Insert vulnerabilities into commercial encryption systems, IT systems, networks and endpoint communications devices used by targets.” . “influence policies, standard and specifications for commercial public key technologies.”
  40. 40. .. Threat Model . illusoryTLS . 31/104 The backdoor designer can: . “Insert vulnerabilities into commercial encryption systems, IT systems, networks and endpoint communications devices used by targets.” . “influence policies, standard and specifications for commercial public key technologies.” . Interfere with the supply-chain
  41. 41. .. Threat Model . illusoryTLS . 31/104 The backdoor designer can: . “Insert vulnerabilities into commercial encryption systems, IT systems, networks and endpoint communications devices used by targets.” . “influence policies, standard and specifications for commercial public key technologies.” . Interfere with the supply-chain . Disregard everything about policy
  42. 42. .. Threat Model . illusoryTLS . 31/104 The backdoor designer can: . “Insert vulnerabilities into commercial encryption systems, IT systems, networks and endpoint communications devices used by targets.” . “influence policies, standard and specifications for commercial public key technologies.” . Interfere with the supply-chain . Disregard everything about policy . Or, she is simply in the position to build the security module used by the Certification Authority for generating the key material
  43. 43. .. Three Modules . illusoryTLS . 32/104 ..
  44. 44. .. network-simple-tls . illusoryTLS . 33/104 ..
  45. 45. .. Echo service over TLS . illusoryTLS . 34/104 ..
  46. 46. .. Where is the backdoor? . illusoryTLS . 35/104 If the client and server code is contributed by an open-source project and it is used as-is, where is the backdoor?
  47. 47. .. Where is the backdoor? . illusoryTLS . 36/104 ..
  48. 48. .. A Covert Channel . illusoryTLS . 37/104 . The upper order bits of the RSA modulus encode the asymmetric encryption of a seed generated at random
  49. 49. .. A Covert Channel . illusoryTLS . 37/104 . The upper order bits of the RSA modulus encode the asymmetric encryption of a seed generated at random . The same seed was used to generate one of the RSA primes of the CA public-key modulus
  50. 50. .. A Covert Channel . illusoryTLS . 37/104 . The upper order bits of the RSA modulus encode the asymmetric encryption of a seed generated at random . The same seed was used to generate one of the RSA primes of the CA public-key modulus . The RSA modulus is at the same time a RSA public-key and an ciphertext that gives to the backdoor designer the ability to factor with ease the modulus
  51. 51. .. Where the backdoor is not . illusoryTLS . 38/104 No backdoor was slipped into the cryptographic credentials issued to the communicating endpoints
  52. 52. .. SETUP Attacks . illusoryTLS . 39/104 .. . Notion introduced by Adam Young and Moti Yung at Crypto ’96 . Young and Yung elliptic-curve asymmetric backdoor in RSA key generation . Expands on ‘A Space Efficient Backdoor in RSA and its Applications’, Selected Areas in Cryptography ’05 . A working implementation at http://cryptovirology.com
  53. 53. .. NOBUS . illusoryTLS . 40/104 .. . The exploitation requires access to resources not embedded in the backdoor itself . e.g., elliptic-curve private key . The vulnerability can be exploited by the backdoor designer and by whoever gains access to the associated key-recovery system
  54. 54. ... illusoryTLS . 41/104 How many of you believe that it is possible to forbid an enemy intelligence organization from gaining access to a private key?
  55. 55. .. Indistinguishability . illusoryTLS . 42/104 .. . Assuming ECDDH holds . The backdoor key pairs appear to all probabilistic polynomial time algorithms like genuine RSA key pairs . Black-box access to the key-generator does not allow detection
  56. 56. .. Forward Secrecy . illusoryTLS . 43/104 .. . If a reverse-engineer breaches the key-generator, then the previously stolen information remains confidential
  57. 57. .. Reusability . illusoryTLS . 44/104 .. . The backdoor can be used multiple times and against multiple targets
  58. 58. ... Impact . 45/104 Impact
  59. 59. .. A Subtle Attack . Impact . 46/104 .. . Break TLS security guarantees at will
  60. 60. .. A Subtle Attack . Impact . 46/104 .. . Break TLS security guarantees at will . Impersonation (e.g., authentication failure)
  61. 61. .. A Subtle Attack . Impact . 46/104 .. . Break TLS security guarantees at will . Impersonation (e.g., authentication failure) . Message tampering (e.g., integrity erosion)
  62. 62. .. A Subtle Attack . Impact . 46/104 .. . Break TLS security guarantees at will . Impersonation (e.g., authentication failure) . Message tampering (e.g., integrity erosion) . Active eavesdropping of encrypted communications (e.g., confidentiality loss)
  63. 63. .. A Subtle Attack . Impact . 46/104 .. . Break TLS security guarantees at will . Impersonation (e.g., authentication failure) . Message tampering (e.g., integrity erosion) . Active eavesdropping of encrypted communications (e.g., confidentiality loss) . No need to have access to any private key used by system actors
  64. 64. .. A Subtle Attack . Impact . 46/104 .. . Break TLS security guarantees at will . Impersonation (e.g., authentication failure) . Message tampering (e.g., integrity erosion) . Active eavesdropping of encrypted communications (e.g., confidentiality loss) . No need to have access to any private key used by system actors . No need to tamper with the communicating endpoints
  65. 65. .. A Subtle Attack . Impact . 46/104 .. . Break TLS security guarantees at will . Impersonation (e.g., authentication failure) . Message tampering (e.g., integrity erosion) . Active eavesdropping of encrypted communications (e.g., confidentiality loss) . No need to have access to any private key used by system actors . No need to tamper with the communicating endpoints . Need to retain control over the key-generation of the target RSA modulus
  66. 66. ... Impact . 47/104 Is the malicious implementer a threat mitigated by IT product security certifications?
  67. 67. .. Fictional Security . Impact . 48/104 ... A single CA certificate with a secretly embedded backdoor renders the entire TLS security fictional
  68. 68. .. One Rotten Apple... . Impact . 49/104 ... One rotten apple...
  69. 69. .. ... spoils the whole barrel . Impact . 50/104 ... ... spoils the whole barrel
  70. 70. .. Ethylene . Impact . 51/104 ..
  71. 71. ... Impact . 52/104 Universal implicit cross-certification is the ethylene of trust
  72. 72. .. C2H4 . Impact . 53/104 ..
  73. 73. .. Cross Certification . Impact . 54/104 ..
  74. 74. .. Cross Certification . Impact . 55/104 .. . Cross certification enables entities in one public key infrastructure to trust entities in another PKI
  75. 75. .. Cross Certification . Impact . 55/104 .. . Cross certification enables entities in one public key infrastructure to trust entities in another PKI . This mutual trust relationship should be typically supported by a cross-certification agreement between the CAs in each PKI
  76. 76. .. Cross Certification . Impact . 55/104 .. . Cross certification enables entities in one public key infrastructure to trust entities in another PKI . This mutual trust relationship should be typically supported by a cross-certification agreement between the CAs in each PKI . The agreement establishes the responsabilities and liability of each party
  77. 77. .. Explicit Cross Certification . Impact . 56/104 .. . Each CA is required to issue a certificate to the other to establish a relationship in both directions
  78. 78. .. Explicit Cross Certification . Impact . 56/104 .. . Each CA is required to issue a certificate to the other to establish a relationship in both directions . The path of trust is not hierarchical, although the separate PKIs may be certificate hierarchies
  79. 79. .. Explicit Cross Certification . Impact . 56/104 .. . Each CA is required to issue a certificate to the other to establish a relationship in both directions . The path of trust is not hierarchical, although the separate PKIs may be certificate hierarchies . A er two CAs have established and specified the terms of trust and issued the certificates to each other, entities within the separate PKIs can interact subject to the policies specified in the certificates
  80. 80. ... But this is just in theory...
  81. 81. ... In practice:
  82. 82. .. Implicit Cross Certification . Impact . 59/104 .. . Most current PKI so ware employs a form of implicit cross certification in which all root CAs are equally trusted
  83. 83. .. Implicit Cross Certification . Impact . 59/104 .. . Most current PKI so ware employs a form of implicit cross certification in which all root CAs are equally trusted . Equivalent to unbounded cross certification among all CAs
  84. 84. .. Implicit Cross Certification . Impact . 59/104 .. . Most current PKI so ware employs a form of implicit cross certification in which all root CAs are equally trusted . Equivalent to unbounded cross certification among all CAs . Any certificate can be trivially replaced by a masquereder’s certificate from another CA
  85. 85. .. Implicit Cross Certification . Impact . 59/104 .. . Most current PKI so ware employs a form of implicit cross certification in which all root CAs are equally trusted . Equivalent to unbounded cross certification among all CAs . Any certificate can be trivially replaced by a masquereder’s certificate from another CA . The security of any certificate is reduced to that of the least trustworthy CA, who can issue bogus certificate to usurp the legitimate one, at the same level of trust
  86. 86. .. CA Certificate in a MitM Proxy . Impact . 60/104 ..
  87. 87. .. Superfish Adware . Impact . 61/104 ..
  88. 88. .. PKI is Not Dead, Just Resting . Impact . 62/104 ..
  89. 89. ... Universal implicit cross-certification
  90. 90. ... Security
  91. 91. ... Ethylene
  92. 92. ... Rotting fruit
  93. 93. ... As weak as the weakest link
  94. 94. ... Multiple attackers attracted
  95. 95. ..
  96. 96. ..
  97. 97. ..
  98. 98. ... Negating any meaningful security whatsoever
  99. 99. ... Impact . 73/104 It is essential to have assurance about the security of each implementation of vulnerable key-generation algorithm employed by trusted credential issuers
  100. 100. .. Hundreds CAs . Impact . 74/104 ... 211 CA certificates installed
  101. 101. ... Impact . 75/104 Have we sufficient assurance about the hundreds CA certificates we daily entrust our business upon?
  102. 102. .. Requirements . Impact . 76/104 .. . Publicly trusted certificates to be issued in compliance with European Standard EN 319 411-3
  103. 103. .. Requirements . Impact . 76/104 .. . Publicly trusted certificates to be issued in compliance with European Standard EN 319 411-3 . CA key generation to be carried out within a device that meets the requirements identified by some approved PP
  104. 104. .. Requirements . Impact . 76/104 .. . Publicly trusted certificates to be issued in compliance with European Standard EN 319 411-3 . CA key generation to be carried out within a device that meets the requirements identified by some approved PP . CEN Workshop Agreement 14167, Part 2-3-4 are three of those PP
  105. 105. .. Requirements . Impact . 76/104 .. . Publicly trusted certificates to be issued in compliance with European Standard EN 319 411-3 . CA key generation to be carried out within a device that meets the requirements identified by some approved PP . CEN Workshop Agreement 14167, Part 2-3-4 are three of those PP . EAL4 Augmented
  106. 106. .. Requirements . Impact . 76/104 .. . Publicly trusted certificates to be issued in compliance with European Standard EN 319 411-3 . CA key generation to be carried out within a device that meets the requirements identified by some approved PP . CEN Workshop Agreement 14167, Part 2-3-4 are three of those PP . EAL4 Augmented . Augmentation from adherence to ADV_IMP.2, AVA_CCA.1, and AVA_VLA.4
  107. 107. .. ADV_IMP.2, AVA_CCA.1, and AVA_VLA.4 . Impact . 77/104 .. . Focused on assessing the vulnerabilities in the TOE
  108. 108. .. ADV_IMP.2, AVA_CCA.1, and AVA_VLA.4 . Impact . 77/104 .. . Focused on assessing the vulnerabilities in the TOE . Guaranteeing that the implementation representation is an accurate and complete instantiation of the TSF requirements
  109. 109. .. ADV_IMP.2, AVA_CCA.1, and AVA_VLA.4 . Impact . 77/104 .. . Focused on assessing the vulnerabilities in the TOE . Guaranteeing that the implementation representation is an accurate and complete instantiation of the TSF requirements . Special emphasis on identifying covert channels and estimating their capacity
  110. 110. .. ADV_IMP.2, AVA_CCA.1, and AVA_VLA.4 . Impact . 77/104 .. . Focused on assessing the vulnerabilities in the TOE . Guaranteeing that the implementation representation is an accurate and complete instantiation of the TSF requirements . Special emphasis on identifying covert channels and estimating their capacity . SETUP attacks makes use of the key-generation as a covert channel for itself
  111. 111. .. Yet . Impact . 78/104 .. . Developer is in charge for the vulnerability assessment and documentation
  112. 112. .. Yet . Impact . 78/104 .. . Developer is in charge for the vulnerability assessment and documentation . Conflicts with our threat model
  113. 113. .. Yet . Impact . 78/104 .. . Developer is in charge for the vulnerability assessment and documentation . Conflicts with our threat model . The evaluator is le with the documentation and the implementation representation to be assessed
  114. 114. .. Yet . Impact . 78/104 .. . Developer is in charge for the vulnerability assessment and documentation . Conflicts with our threat model . The evaluator is le with the documentation and the implementation representation to be assessed . Can the presence of backdoor can be ruled out at the required assurance level?
  115. 115. .. Yet . Impact . 78/104 .. . Developer is in charge for the vulnerability assessment and documentation . Conflicts with our threat model . The evaluator is le with the documentation and the implementation representation to be assessed . Can the presence of backdoor can be ruled out at the required assurance level? . Formal methods required only at the two highest levels (EAL6 and EAL7)
  116. 116. .. Yet . Impact . 78/104 .. . Developer is in charge for the vulnerability assessment and documentation . Conflicts with our threat model . The evaluator is le with the documentation and the implementation representation to be assessed . Can the presence of backdoor can be ruled out at the required assurance level? . Formal methods required only at the two highest levels (EAL6 and EAL7) . Implementation representation may render backdoor detection unlikely (e.g., HDL at design time, netlist at fabrication time)
  117. 117. .. Key Takeaway . Impact . 79/104 As long as the implementations of RSA — or, more generally, algorithms vulnerable to this class of attacks — used by trusted entities (e.g., CA) cannot be audited by relying parties (e.g., x.509 end-entities), any trust-anchor for the same trusted entities (e.g., root certificate) is to be regarded as a potential backdoor
  118. 118. .. Key Takeaway - Ctd . Impact . 80/104 As long as the implementation of algorithms adopted by CAs and vulnerable to this class of backdoors cannot be audited by relying parties, the assurance provided by illusoryTLS (i.e., none whatsoever) is not any different from the assurance provided by systems relying upon TLS and RSA certificates for origin authentication, confidentiality, and message integrity guarantees
  119. 119. .. Mitigations . Impact . 81/104 . Key Pinning, RFC 7469, Public Key Pinning Extension for HTTP (HPKP), April 2015 . Certificate Transparency, RFC 6962, June 2013 . DANE, DNS-based Authentication of Named Entities, RFC 6698, August 2012 . Tack, Trust Assertions for Certificate Keys, dra -perrin-tls-tack-02.txt, Expired . Proper explicit cross-certification
  120. 120. ... A Backdoor Embedding Algorithm . 82/104 ABackdoorEmbeddingAlgorithm
  121. 121. .. Subtleness . A Backdoor Embedding Algorithm . 83/104 The subtleness of a backdoor planted in a cryptographic credential resides in the absence of malicious logic in the system whose security it erodes.
  122. 122. .. An attack variant . A Backdoor Embedding Algorithm . 84/104 ... RyanC — https://gist.github.com/ryancdotorg/18235723e926be0afbdd
  123. 123. .. Idea . A Backdoor Embedding Algorithm . 85/104 1. Embed a Curve25519 public-key into the key-generator
  124. 124. .. Idea . A Backdoor Embedding Algorithm . 85/104 1. Embed a Curve25519 public-key into the key-generator 2. Generate an ephemeral Curve25519 key at random
  125. 125. .. Idea . A Backdoor Embedding Algorithm . 85/104 1. Embed a Curve25519 public-key into the key-generator 2. Generate an ephemeral Curve25519 key at random 3. Compute a shared secret using Elliptic Curve Diffie-Hellman
  126. 126. .. Idea . A Backdoor Embedding Algorithm . 85/104 1. Embed a Curve25519 public-key into the key-generator 2. Generate an ephemeral Curve25519 key at random 3. Compute a shared secret using Elliptic Curve Diffie-Hellman 4. Use the shared secret to seed at cryptographically secure pseudo-random number generator (CSPRNG) based on AES run in CTR mode
  127. 127. .. Idea . A Backdoor Embedding Algorithm . 85/104 1. Embed a Curve25519 public-key into the key-generator 2. Generate an ephemeral Curve25519 key at random 3. Compute a shared secret using Elliptic Curve Diffie-Hellman 4. Use the shared secret to seed at cryptographically secure pseudo-random number generator (CSPRNG) based on AES run in CTR mode 5. Generate a normal RSA key using the seeded CSPRNG
  128. 128. .. Idea . A Backdoor Embedding Algorithm . 85/104 1. Embed a Curve25519 public-key into the key-generator 2. Generate an ephemeral Curve25519 key at random 3. Compute a shared secret using Elliptic Curve Diffie-Hellman 4. Use the shared secret to seed at cryptographically secure pseudo-random number generator (CSPRNG) based on AES run in CTR mode 5. Generate a normal RSA key using the seeded CSPRNG 6. Replace 32-bytes of the generated modulus with the ephemeral Curve25519 public-key
  129. 129. .. Idea . A Backdoor Embedding Algorithm . 85/104 1. Embed a Curve25519 public-key into the key-generator 2. Generate an ephemeral Curve25519 key at random 3. Compute a shared secret using Elliptic Curve Diffie-Hellman 4. Use the shared secret to seed at cryptographically secure pseudo-random number generator (CSPRNG) based on AES run in CTR mode 5. Generate a normal RSA key using the seeded CSPRNG 6. Replace 32-bytes of the generated modulus with the ephemeral Curve25519 public-key 7. Use the original prime factors to compute two new primes leading to a new modulus embedding the ephemeral public-key
  130. 130. .. Idea . A Backdoor Embedding Algorithm . 85/104 1. Embed a Curve25519 public-key into the key-generator 2. Generate an ephemeral Curve25519 key at random 3. Compute a shared secret using Elliptic Curve Diffie-Hellman 4. Use the shared secret to seed at cryptographically secure pseudo-random number generator (CSPRNG) based on AES run in CTR mode 5. Generate a normal RSA key using the seeded CSPRNG 6. Replace 32-bytes of the generated modulus with the ephemeral Curve25519 public-key 7. Use the original prime factors to compute two new primes leading to a new modulus embedding the ephemeral public-key 8. Output the RSA key with the secretly embedded backdoor
  131. 131. .. Key Recovery . A Backdoor Embedding Algorithm . 86/104 1. Extracts the ephemeral Curve25519 public-key from the target modulus
  132. 132. .. Key Recovery . A Backdoor Embedding Algorithm . 86/104 1. Extracts the ephemeral Curve25519 public-key from the target modulus 2. Computes the shared secret via ECDH and using the private-key associated to the public-key embedded in the key generator
  133. 133. .. Key Recovery . A Backdoor Embedding Algorithm . 86/104 1. Extracts the ephemeral Curve25519 public-key from the target modulus 2. Computes the shared secret via ECDH and using the private-key associated to the public-key embedded in the key generator 3. Uses the shared secret to seed the CSPRNG based on AES run in CTR mode
  134. 134. .. Key Recovery . A Backdoor Embedding Algorithm . 86/104 1. Extracts the ephemeral Curve25519 public-key from the target modulus 2. Computes the shared secret via ECDH and using the private-key associated to the public-key embedded in the key generator 3. Uses the shared secret to seed the CSPRNG based on AES run in CTR mode 4. Generates a normal RSA key using the seeded CSPRNG
  135. 135. .. Key Recovery . A Backdoor Embedding Algorithm . 86/104 1. Extracts the ephemeral Curve25519 public-key from the target modulus 2. Computes the shared secret via ECDH and using the private-key associated to the public-key embedded in the key generator 3. Uses the shared secret to seed the CSPRNG based on AES run in CTR mode 4. Generates a normal RSA key using the seeded CSPRNG 5. Replaces 32-bytes of the generated modulus with the ephemeral Curve25519 public-key
  136. 136. .. Key Recovery . A Backdoor Embedding Algorithm . 86/104 1. Extracts the ephemeral Curve25519 public-key from the target modulus 2. Computes the shared secret via ECDH and using the private-key associated to the public-key embedded in the key generator 3. Uses the shared secret to seed the CSPRNG based on AES run in CTR mode 4. Generates a normal RSA key using the seeded CSPRNG 5. Replaces 32-bytes of the generated modulus with the ephemeral Curve25519 public-key 6. Uses the original prime factors to compute two new primes leading to the target modulus embedding the ephmeral public-key
  137. 137. .. Key Recovery . A Backdoor Embedding Algorithm . 86/104 1. Extracts the ephemeral Curve25519 public-key from the target modulus 2. Computes the shared secret via ECDH and using the private-key associated to the public-key embedded in the key generator 3. Uses the shared secret to seed the CSPRNG based on AES run in CTR mode 4. Generates a normal RSA key using the seeded CSPRNG 5. Replaces 32-bytes of the generated modulus with the ephemeral Curve25519 public-key 6. Uses the original prime factors to compute two new primes leading to the target modulus embedding the ephmeral public-key 7. Output the recovered RSA private key
  138. 138. .. Broken . A Backdoor Embedding Algorithm . 87/104 .. . Although the idea is nice . The key pairs generated using this algorithm fall short in terms of indistiguishability . It is easy to tell backdoored certificates apart from genuine RSA certificate using only black-box access
  139. 139. ... A Backdoor Embedding Algorithm . 88/104 Does anybody see why this is the case?
  140. 140. .. Distinguishing Attack . A Backdoor Embedding Algorithm . 89/104 . A public-key embedded into an RSA modulus
  141. 141. .. Distinguishing Attack . A Backdoor Embedding Algorithm . 89/104 . A public-key embedded into an RSA modulus . Elliptic curve public-keys are points on the curve
  142. 142. .. Distinguishing Attack . A Backdoor Embedding Algorithm . 89/104 . A public-key embedded into an RSA modulus . Elliptic curve public-keys are points on the curve . And elliptic curve points are easily distinguished from uniform random strings
  143. 143. .. Distinguishing Attack . A Backdoor Embedding Algorithm . 89/104 . A public-key embedded into an RSA modulus . Elliptic curve public-keys are points on the curve . And elliptic curve points are easily distinguished from uniform random strings . A security evaluator could check if the coordinates encoded using the candidate 32-byte substrings of the modulus satisfy the elliptic curve equation
  144. 144. .. Repairing the Backdoor . A Backdoor Embedding Algorithm . 90/104 If we could make the elliptic curve points indistinguishable from random strings, then the backdoor indistinguishability would be retained
  145. 145. .. Elligator . A Backdoor Embedding Algorithm . 91/104 .. . Censorship sucks! . Daniel J. Bernstein, Anna Krasnova, Mike Hamburg, Tanja Lange . an encoding for points on a single curve as strings indistiguishable from uniform random strings . http://elligator.cr.yp.to
  146. 146. .. Inherently Dual Use . A Backdoor Embedding Algorithm . 92/104 ... All cyber security technology is inherently dual use
  147. 147. .. Undetectability for Good or Ill . A Backdoor Embedding Algorithm . 93/104 .. . Just like any and all cyber security tools . Undetectability of curve points can be used for good or ill . For censorship-circumvention or surveillance
  148. 148. .. Between Offense and Defense . A Backdoor Embedding Algorithm . 94/104 I believe we can positively contribute to the discussion and practice of information security by walking the fine line between offense and defense
  149. 149. .. Code . A Backdoor Embedding Algorithm . 95/104 . Website — http://illusorytls.com . illusoryTLS — https://github.com/secYOUre/illusoryTLS . pyelligator — https://github.com/secYOUre/pyelligator . rsaelligatorbd — https://github.com/secYOUre/rsaelligatorbd
  150. 150. .. Elligator backdoor embedding . A Backdoor Embedding Algorithm . 96/104 . Embed a Curve25519 public-key into the key-generator ..MASTER_PUB_HEX = ’525e422e42c9c662362a7326c3c5c785ac7ef52e86782c4ac3c06887583e7a6f’ master_pub = unhexlify(MASTER_PUB_HEX)
  151. 151. .. Elligator backdoor embedding . A Backdoor Embedding Algorithm . 96/104 . Generate an ephemeral Curve25519 key at random and the associated uniform representative string .. while True: private = urandom(32) (v, pub, rep) = elligator.scalarbasemult(private) if v: break
  152. 152. .. Elligator backdoor embedding . A Backdoor Embedding Algorithm . 96/104 . Compute a shared secret using ECDH . Use the shared secret to seed a CSPRNG based on AES run in CTR mode .. # combine the ECDH keys to generate the seed seed = nacl.crypto_box_beforenm(master_pub, private) prng = AESPRNG(seed)
  153. 153. .. Elligator backdoor embedding . A Backdoor Embedding Algorithm . 96/104 . Generate a normal RSA key using the seeded CSPRNG .. # deterministic key generation from seed rsa = build_key(embed=rep, pos=80, randfunc=prng.randbytes) ... def build_key(bits=2048, e=65537, embed=’’, pos=1, randfunc=None): # generate base key rsa = RSA.generate(bits, randfunc)
  154. 154. .. Elligator backdoor embedding . A Backdoor Embedding Algorithm . 96/104 . Replace 32-bytes of the generated modulus with the representative string associated to the ephemeral Curve25519 public-key .. # extract modulus as a string n_str = unhexlify(str(hex(rsa.n))[2:-1]) # embed data into the modulus n_hex = hexlify(replace_at(n_str, embed, pos)) ... # overwrite some bytes in orig at a specificed offset def replace_at(orig, replace, offset): return orig[0:offset] + replace + orig[offset+len(replace):]
  155. 155. .. Elligator backdoor embedding . A Backdoor Embedding Algorithm . 96/104 . Use the original prime factors to compute to new primes leading to a new modulus embedding the uniform representative string .. n = gmpy.mpz(n_hex, 16) p = rsa.p # compute a starting point to look for a new q value pre_q = n / p # use the next prime as the new q value q = pre_q.next_prime() n = p * q phi = (p-1) * (q-1) # compute new private exponent d = gmpy.invert(e, phi) # make sure that p is smaller than q if p > q: (p, q) = (q, p)
  156. 156. .. Elligator backdoor embedding . A Backdoor Embedding Algorithm . 96/104 . Output the backdoored RSA key ..return RSA.construct((long(n), long(e), long(d), long(p), long(q)))
  157. 157. .. Key Recovery . A Backdoor Embedding Algorithm . 97/104 . Extracts the representative string from the target modulus .. #Load an x.509 certificate from a file x509 = X509.load_cert(sys.argv[2]) # Pull the modulus out of the certificate orig_modulus = unhexlify(x509.get_pubkey().get_modulus()) (seed, rep) = recover_seed(key=sys.argv[1], modulus=orig_modulus, pos=80) ... def recover_seed(key=’’, modulus=None, pos=1): ... rep = modulus[pos:pos+32]
  158. 158. .. Key Recovery . A Backdoor Embedding Algorithm . 97/104 . Maps the representative string to the candidate ephemeral Curve25519 public-key ..pub = elligator.representativetopublic(rep)
  159. 159. .. Key Recovery . A Backdoor Embedding Algorithm . 97/104 . Computes the shared secret via ECDH and using the private-key associated to the public-key embedded in the key-generator . Uses the shared secret to seed the CSPRNG based on AES run in CTR mode .. def recover_seed(key=’’, modulus=None, pos=1): # recreate the master private key from the passphrase master = sha256(key).digest() ... # compute seed with master private and ephemeral public key return (nacl.crypto_box_beforenm(pub, master), rep) ... (seed, rep) = recover_seed(key=sys.argv[1], modulus=orig_modulus, pos=80) prng = AESPRNG(seed)
  160. 160. .. Key Recovery . A Backdoor Embedding Algorithm . 97/104 . Generates a normal RSA key using the seeded CSPRNG .. # deterministic key generation from seed rsa = build_key(embed=rep, pos=80, randfunc=prng.randbytes) ... def build_key(bits=2048, e=65537, embed=’’, pos=1, randfunc=None): # generate base key rsa = RSA.generate(bits, randfunc)
  161. 161. .. Key Recovery . A Backdoor Embedding Algorithm . 97/104 . Replaces 32-bytes of the generated modulus with the representative string found in the target modulus .. # extract modulus as a string n_str = unhexlify(str(hex(rsa.n))[2:-1]) # embed data into the modulus n_hex = hexlify(replace_at(n_str, embed, pos))
  162. 162. .. Key Recovery . A Backdoor Embedding Algorithm . 97/104 . Uses the original prime factors to compute two new primes leading to the target modulus embedding the uniform representative string .. n = gmpy.mpz(n_hex, 16) p = rsa.p # compute a starting point to look for a new q value pre_q = n / p # use the next prime as the new q value q = pre_q.next_prime() n = p * q phi = (p-1) * (q-1) # compute new private exponent d = gmpy.invert(e, phi) # make sure that p is smaller than q if p > q: (p, q) = (q, p)
  163. 163. .. Key Recovery . A Backdoor Embedding Algorithm . 97/104 . Output the recovered RSA key ..return RSA.construct((long(n), long(e), long(d), long(p), long(q))) ... print rsa.exportKey()
  164. 164. ... A Backdoor Embedding Algorithm . 98/104 Demo
  165. 165. ... Conclusions . 99/104 Conclusions
  166. 166. ..
  167. 167. .. “ Though I am o en in the depths of misery, there is still calmness, pure harmony and music inside me. Vincent van Gogh.. ”
  168. 168. .. “ Though we are o en in the depths of insecurity, there is still calmness, pure harmony and music inside us. .. ”
  169. 169. .. THANK YOU
  170. 170. Q ?
  171. 171. ... Backup . 105/104 Backup
  172. 172. .. Normal RSA Key Generation — Young and Yung . Backup . 106/104 1. Let e be the public RSA exponent (e.g., 216 + 1) 2. Choose a large number p randomly (e.g., 1024 bits long) 3. If p is composite or gcd(e, p − 1) ̸= 1 then goto to step 1 4. Choose a large number q randomly (e.g., 1024 bits long) 5. If q is composite or gcd(e, p − 1) ̸= 1 then goto to step 3 6. Output the public-key (N = pq, e) and the private-key p 7. The private exponent d is found by solving for (d, k) in ed + kϕ(n) = 1 using the extended Euclidean algorithm
  173. 173. .. RSA Encryption/Decryption — Young and Yung . Backup . 107/104 . N = p ∗ q, where p and q are large primes known to the key owner . Everyone knows N and e . Let d be a privete key exponent where ed = 1mod(p − 1)(q − 1) . To encrypt m ∈ Z∗ n (a er padding) compute: c = me modN . To decrypt the ciphertext c compute: m = cd modN . As far as we know: Only with known factorization given N and e, one can find d
  174. 174. .. Elliptic Curve Decision Diffie-Hellman Problem . Backup . 108/104 . Let C an elliptic-curve equation over the finite field Fq with prime order n . Let G be the base point of the curve . Given three point elements (xG), (yG) and (zG) . Decide whether (zG = xyG), or not . Where (x, y, z) are chosen randomly and 1 < x, y, z < n

×