be paranoid or not to be aliz e penel
play

BE PARANOID OR NOT TO BE ? Alize PENEL Linux and Android System - PowerPoint PPT Presentation

Oct 10, 2022 •234 likes •584 views

BE PARANOID OR NOT TO BE ? Alize PENEL Linux and Android System Developer Dev Team Member Agenda 02 03 01 Network Security Internet socket in Aspects Permission in Android OS Marshmallow INTERNET PERMISSION IN MARSHMALLOW

  1. BE PARANOID OR NOT TO BE ?

  2. Alizée PENEL Linux and Android System Developer Dev Team Member

  3. Agenda 02 03 01 Network Security Internet socket in Aspects Permission in Android OS Marshmallow

  4. INTERNET PERMISSION IN MARSHMALLOW

  5. INTERNET PERMISSION DECLARATION AndroidManifest.xml htups:/ /github.com/vx/connectbot from VX Solutjons

  6. INTERNET PERMISSION DEFINITION frameworks/base/core/AndroidManifest.xml

  7. MARSHMALLOW PERMISSIONS Permission are automatjcally granted at install tjme - UI shows permissions details - UI from Google Play, not from the system Dangerous permissions are granted at runtjme

  8. INTERNET PERMISSION INTERNALS On device : /system/etc/permissions/platgorm.xml system/core/include/private/android_fjlesystem_confjg.h root@genymotion:/ cat /data/system/packages.list

  9. MAPPING GID PROCESS

  10. That’s all ? Anything is checked at the runtjme ?

  11. NETWORK SOCKETS IN ANDROID OS

  12. THE BASICS

  13. JAVA.NET.SOCKET CLASS Any applicatjon can directly instantjate this class Even the framework uses it Packed in Android Java core library : core-libart.jar Source fjle : libcore/luni/src/main/java/net/Socket.java

  15. ANY PERMISSION CHECKED !?

  16. SOCKET SYSCALL IN BIONIC bionic/libc/bionic/socket.cpp Same type of declaratjon for connect and accept syscalls NetdClientDispath , C structure of 4 functjon pointers on 3 syscalls ( __socket, __connect, __accept4) & 1 functjon (fallBackNetIdForResolv)

  17. WHAT HAPPENING IN BIONIC ? As soon as bionic is loaded, the functjon __libc_preinit() is called by the dynamic linker In __libc_preinit() , call to netdClientInit() functjon The libnetd_client.so library is loaded by dlopen()

  18. WHAT HAPPENING IN BIONIC ? From libnetd_client.so library, bionic retrieves 4 functjon symbols : netdClientInitSocket() - netdClientInitConnect() - netdClientInitAccept4() - netdClientInitNetIdForResolv() - Call them, one by one, with their respectjve syscall as a parameter.

  19. NETDCLIENT LIBRARY

  20. IMPACTS ON NETDCLIENTDISPATCH STRUCTURE NetdClientDispatch structure does not contain the syscalls anymore It points on libnetd_client library functjons : netdClientSocket() - netdClientConnect() - netdClientAccept4() - getNetworkForResolv() -

  22. WHAT !?

  23. ANDROID KERNEL Android kernels have many modifjcatjons Every Android kernel has a network optjon actjvated : Paranoid

  24. PARANOID KERNEL OPTION It restricts access to some networking features depending on the group of the calling process include/linux/android_aids.h

  25. SOCKET CREATION IN THE KERNEL In net/ipv4/af_inet.c & net/ipv6/af_inet6.c, the process group is checked before creatjng the socket If not allowed, return EACCES

  26. SUMMARY

  27. INTEREST OF NETDCLIENT LIBRARY AND BIONIC TRICK Firewall marks in netd Networks packets are fmagged through a fwmark client/server mechanism Allow packets going through iptable rules, set by the OS In a “system case”, fwmark server checks also the permission of the process

  28. SECURITY ASPECTS

  29. DISCLAIMER I am NOT a Security developer Consider just the architectural aspect of the implementatjon

  30. HOW TO BREAK THE SYSTEM ? Internet permission Paranoid optjon Rooted devices

  31. HOW TO BREAK THE SYSTEM ? sharedUserId - A way to share permissions between packages - Permissions state is propagated to all packages upon changes Other applicatjons

  32. Thanks for your atuentjon ! PENEL Alizée apenel@genymobile.com www.genymobile.com

  33. QUESTIONS ?

Recommend

Jerry: Linda, do you think Im paranoid? Linda: Youre not really paranoid if

Jerry: Linda, do you think Im paranoid? Linda: Youre not really paranoid if

Jerry: Linda, do you think Im paranoid? Linda: Youre not really paranoid if everyone really is after you, Jerry. Jerry: Maybe all security people are crazy! Linda: No, theyre just insecure. Everything You

444 views • 17 slides
Becoming Paranoid Or how I learned to start worrying and fear the Internet George V.

Becoming Paranoid Or how I learned to start worrying and fear the Internet George V.

Becoming Paranoid Or how I learned to start worrying and fear the Internet George V. Neville-Neil www.neville-neil.com Why This Talk? To make all of you more paranoid Give people a grounding in current problems with securing internet

659 views • 33 slides
IBT Online W ebs ite Loc aliz ation and Inter national Online Mar k eting 2 8 Ma r c h 2 0 1 8

IBT Online W ebs ite Loc aliz ation and Inter national Online Mar k eting 2 8 Ma r c h 2 0 1 8

Go Global IBT Online W ebs ite Loc aliz ation and Inter national Online Mar k eting 2 8 Ma r c h 2 0 1 8 F o r : T h e V i r g i n i a I n t e r n a t i o n a l B u s i n e s s C o u n c i l , I n c HELL HE LLO! O! John Worthington

844 views • 36 slides
How to be a paranoid Dates of birth or just think like one Exposure to identity theft

How to be a paranoid Dates of birth or just think like one Exposure to identity theft

Leaking information Stealing 26.5 million veteran s data Pro rotection a and S d Securi rity Data on laptop stolen from employee s home (5/06) Veterans names Social Security numbers How to be a paranoid Dates of birth or

337 views • 5 slides
101 - Vi Visu sual aliz izat atio ion Vis is10 Lecture 6: The Visualization Alphabet:

101 - Vi Visu sual aliz izat atio ion Vis is10 Lecture 6: The Visualization Alphabet:

101 - Vi Visu sual aliz izat atio ion Vis is10 Lecture 6: The Visualization Alphabet: Marks and Channels This Week Homework 1! Lecture 5: Lecture 6: Section 2: Reading: No Device Policy Last Week Terms Dataset Types Data Types

861 views • 69 slides
How to be a paranoid or just think like one 1 2 Leaking information Stealing 26.5 million

How to be a paranoid or just think like one 1 2 Leaking information Stealing 26.5 million

Pro rotection a and S d Securi rity How to be a paranoid or just think like one 1 2 Leaking information Stealing 26.5 million veteran s data Data on laptop stolen from employee s home (5/06) Veterans names Social Security

580 views • 30 slides
How to be a paranoid or just think like one 1 2 Leaking information Stealing 26.5 million

How to be a paranoid or just think like one 1 2 Leaking information Stealing 26.5 million

Protection tion and Se Secur urity ity How to be a paranoid or just think like one 1 2 Leaking information Stealing 26.5 million veterans data Data on laptop stolen from employees home (5/06) Veterans names Social Security

619 views • 27 slides
Practical CFL conditions for MUSCL schemes solving Euler equations Yohan Penel 1 1 LRC Manon

Practical CFL conditions for MUSCL schemes solving Euler equations Yohan Penel 1 1 LRC Manon

Practical CFL conditions for MUSCL schemes solving Euler equations Yohan Penel 1 1 LRC Manon UPMC-LJLL, Univ. Paris 6 Joint work with C. Calgaro & E. Creus e (Univ. Lille 1, INRIA Lille) T. Goudon (INRIA Sophia-Antipolis) 14th

412 views • 29 slides
On the road to Navier-Stokes Yohan Penel Team ANGE (CEREMA, Inria, UPMC, CNRS) Project leader:

On the road to Navier-Stokes Yohan Penel Team ANGE (CEREMA, Inria, UPMC, CNRS) Project leader:

On the road to Navier-Stokes Yohan Penel Team ANGE (CEREMA, Inria, UPMC, CNRS) Project leader: Cindy Guichard (UPMC) COmplex Rheology SURface Flows Carg` ese June, 1st. 2017 1. Project 2. Settings 3. Derivation of the hierarchy of

760 views • 45 slides
Infrastructure Design For The Professionally Paranoid Or: Ticking The Boxes For Fun And Profit

Infrastructure Design For The Professionally Paranoid Or: Ticking The Boxes For Fun And Profit

Infrastructure Design For The Professionally Paranoid Or: Ticking The Boxes For Fun And Profit Mika Bostrm <mika.bostrom@smarkets.com> Infrastructure Engineer, Information Security Officer[], semi-professional interviewer, Systems

411 views • 19 slides
Intro to Networking for the Insufficiently Paranoid Mihai Christodorescu CS 642 Spring 2007

Intro to Networking for the Insufficiently Paranoid Mihai Christodorescu CS 642 Spring 2007

Intro to Networking for the Insufficiently Paranoid Mihai Christodorescu CS 642 Spring 2007 mihai@cs.wisc.edu Original slides by Jonathon Giffin Internet: Attack and Defenses Makes communication easier and faster Makes attacks

1.05k views • 66 slides
Agility UNC COMP 523 October 5, 2020 Jeff Terrell 1 / 49 Announcements music: Paranoid Android

Agility UNC COMP 523 October 5, 2020 Jeff Terrell 1 / 49 Announcements music: Paranoid Android

Agility UNC COMP 523 October 5, 2020 Jeff Terrell 1 / 49 Announcements music: Paranoid Android by Radiohead, who exhibit great musical agility IMO please join our class on OpenClass.ai before Q4 on Wednesday see Piazza for a link Q1

883 views • 49 slides
Cryptography for the paranoid Daniel J. Bernstein (University of Illinois at Chicago, Technische

Cryptography for the paranoid Daniel J. Bernstein (University of Illinois at Chicago, Technische

Cryptography for the paranoid Daniel J. Bernstein (University of Illinois at Chicago, Technische Universiteit Eindhoven) Based on joint work with: Tanja Lange (Technische Universiteit Eindhoven) Christiane Peters (Danmarks Tekniske

1.12k views • 89 slides
Cybercrime Threats and Future Dark Musings from a Professional Paranoid Alex Stamos, Partner

Cybercrime Threats and Future Dark Musings from a Professional Paranoid Alex Stamos, Partner

Cybercrime Threats and Future Dark Musings from a Professional Paranoid Alex Stamos, Partner March 31 st , 2009 https://www.isecpartners.com Our Discussion Today Where are we today? Notes from the security front Recent incidents

754 views • 44 slides
Security Basics - Lessons From a Paranoid Stuart Larsen Yahoo! Paranoids - Pentest

Security Basics - Lessons From a Paranoid Stuart Larsen Yahoo! Paranoids - Pentest

Security Basics - Lessons From a Paranoid Stuart Larsen Yahoo! Paranoids - Pentest Overview Threat Modeling - Common Web Vulnerabilities - Automated Tooling - Modern Attacks - whoami Threat Modeling Analyzing the security of an

558 views • 44 slides
Paranoid Habits Part 1: Security Tips Denis Rechkunov @pragmader / pragmader.me Whats this

Paranoid Habits Part 1: Security Tips Denis Rechkunov @pragmader / pragmader.me Whats this

Paranoid Habits Part 1: Security Tips Denis Rechkunov @pragmader / pragmader.me Whats this about? Topics: Authentication Phishing PGP SSH USB Networking Can I trust you, Denis? Trust no one,

531 views • 41 slides
Success breeds complacency. Complacency breeds failure. Only the paranoid survive. Andy Grove,

Success breeds complacency. Complacency breeds failure. Only the paranoid survive. Andy Grove,

Success breeds complacency. Complacency breeds failure. Only the paranoid survive. Andy Grove, former Intel CEO Success breeds complacency. Complacency breeds failure. Only the paranoid survive. Andy Grove, former Intel CEO Success breeds

1.78k views • 146 slides
Annual Conference Sales, brands, and business grow globally with website localization and

Annual Conference Sales, brands, and business grow globally with website localization and

Annual Conference Sales, brands, and business grow globally with website localization and international online marketing Go Global IBT Online W ebs ite Loc aliz ation and Inter national Online Mar k eting Go Good od af afterno ernoon!

857 views • 63 slides
A class of finite volume schemes for the 2D shallow water equations with Coriolis force E. Audusse

A class of finite volume schemes for the 2D shallow water equations with Coriolis force E. Audusse

A class of finite volume schemes for the 2D shallow water equations with Coriolis force E. Audusse 1 , V. Dubos 2 , A. Duran 3 , N. Gaveau 4 , Y. Nasseri 5 , Y.Penel 2 1 Universit Paris 13, LAGA, CNRS, UMR 7539, Institut Galile Villetaneuse,

443 views • 22 slides
Homework 5.4 Recall the following theorem from the overconfidence versus paranoia

Homework 5.4 Recall the following theorem from the overconfidence versus paranoia

Homework 5.4 Recall the following theorem from the overconfidence versus paranoia lecture: Theorem . In a zero-sum perfect-information game, both the paranoid and overconfident models will lead you to choose the same strategy s 1 *

860 views • 9 slides
with schizophrenia. Arkhipov Andrei Y. Kudryashov P. Nurbekov M. Strelets V.B. Maslennikova A.

with schizophrenia. Arkhipov Andrei Y. Kudryashov P. Nurbekov M. Strelets V.B. Maslennikova A.

Complex study of hallucinatory- paranoid syndrome in patients with schizophrenia. Arkhipov Andrei Y. Kudryashov P. Nurbekov M. Strelets V.B. Maslennikova A. Comprehensive research method Biochemistry Psycho- Anatomy Physiology

814 views • 28 slides
Agility Practices UNC COMP 523 October 7, 2020 Jeff Terrell 1 / 26 Announcements music:

Agility Practices UNC COMP 523 October 7, 2020 Jeff Terrell 1 / 26 Announcements music:

Agility Practices UNC COMP 523 October 7, 2020 Jeff Terrell 1 / 26 Announcements music: Paranoid Android (try 2) by Radiohead, who exhibit great musical agility IMO using Sakai for the quiz today reminder: if stressed, consider seeking help,

494 views • 26 slides
Crypto Wont Save You Either Peter Gutmann University of Auckland Sound Advice from the USG

Crypto Wont Save You Either Peter Gutmann University of Auckland Sound Advice from the USG

Crypto Wont Save You Either Peter Gutmann University of Auckland Sound Advice from the USG Saw Something, Said Something Saw Something, Said Something (ctd) Youre not paranoid, they really are out to get you BULLRUN Funded to the tune

976 views • 71 slides

More recommend