how crypto fails in practice
play

HOW CRYPTO FAILS IN PRACTICE GRAD SEC OCT 31 2017 TODAYS PAPERS - PowerPoint PPT Presentation

Jan 19, 2023 •259 likes •1.6k views

HOW CRYPTO FAILS IN PRACTICE GRAD SEC OCT 31 2017 TODAYS PAPERS POOR PROGRAMING CryptoLint tool to perform static analysis on Android apps to detect how they are using crypto libraries CRYPTO MISUSE IN ANDROID APPS 15,134 apps

  1. LEAF message structure Session key 80 bits Other 
 variables The other Clipper chip also has the Global Family key Unit Key Skipjack Hash algorithm => Can decrypt the LEAF to obtain this triple 16 bits Unit ID Encrypted session key Hash Global family key Skipjack LEAF

  2. LEAF message structure Session key 80 bits Other 
 variables Unit Key Skipjack Hash algorithm 16 bits The other Clipper chip “verifies” the LEAF by making sure that 
 Unit ID Encrypted session key Hash the hash is correct Global family key Skipjack LEAF

  3. LEAF message structure Session key 80 bits Other 
 variables Law enforcement also has the Global Family Key Unit Key Skipjack Hash algorithm => Can decrypt the LEAF to obtain this triple 16 bits Unit ID Encrypted session key Hash Global family key Skipjack LEAF

  4. LEAF message structure Session key 80 bits Other 
 variables Unit Key Skipjack Hash algorithm 16 bits Unit ID Encrypted session key Hash Law enforcement does not have direct access 
 Global family key Skipjack to all unit keys; needs a warrant to get them Unit keys are split across two locations LEAF (one location gets a OTP, the other gets the XOR)

  5. LEAF: failure Session key 80 bits Other 
 variables Unit Key Skipjack Hash algorithm To verify the LEAF, 
 the otherClipper chip 
 16 bits only checks the hash Unit ID Encrypted session key Hash Clipper chips also allow you to 
 test a LEAF locally Global family key Skipjack LEAF

  6. LEAF: failure Session key 80 bits Other 
 variables Unit Key Skipjack Hash algorithm 16 bits Generate a random LEAF => 
 Unit ID Encrypted session key Hash 1/2 16 chance of a valid hash Unit ID Encrypted session key Hash Global family key Skipjack Validates at the other 
 But law enforcement will just 
 Clipper chip (so it will 
 see random ID & key LEAF decrypt messages)

  7. USEFUL TOOL: ZMAP Goal : port-scan the entire Internet 
 in less than an hour Approaches: Non-blocking, stateless ⟹ Highly parallelizable Randomize addresses ⟹ Avoid takedown notices Datasets : Rapid7, censys.io

  8. UNSAFE OPTIMIZATIONS TLS session ticket resumption Session ticket: session keys and 
 other data to resume the session Server sends an “opaque” ticket 
 (encrypted with the Session Ticket 
 Encryption Key, STEK) Client sends the encrypted session 
 ticket during handshake; server uses 
 the STEK to recover it and pick up 
 in one round-trip of communication

  9. UNSAFE OPTIMIZATIONS Incentive to hold onto STEKs (lower RTTs) But they’re holding onto them long enough 
 for nation-states to recover them

  10. UNSAFE OPTIMIZATIONS Incentive to hold onto STEKs (lower RTTs) But they’re holding onto them long enough 
 for nation-states to recover them

  15. POOR CERTIFICATE MANAGEMENT

  16. Heartbleed OpenSSL

  17. Heartbleed “hi” 2 OpenSSL

  18. Heartbleed “hi” 2 OpenSSL “hi”

  19. Heartbleed OpenSSL

  20. Heartbleed “hi” 22 OpenSSL

  21. Heartbleed “hi” 22 OpenSSL “hi” + 20B from memory < 2 16

  22. Heartbleed “hi” 22 OpenSSL “hi” + 20B from memory < 2 16 Potentially reveals user data and private keys Heartbleed exploits were undetectable

  23. Why study Heartbleed? Akamai Discovered patched Publicly announced 03/21 04/02 04/07

  24. Why study Heartbleed? Akamai Akamai Discovered Discovered patched patched Publicly announced Publicly announced 03/21 03/21 04/02 04/02 04/07 04/07 Every vulnerable website should have: Patched Revoked Reissued 1 2 3

  25. Why study Heartbleed? Akamai Akamai Discovered Discovered patched patched Publicly announced Publicly announced 03/21 03/21 04/02 04/02 04/07 04/07 Every vulnerable website should have: Patched Revoked Reissued 1 2 3 Heartbleed is a natural experiment: 
 How quickly and thoroughly do administrators act?

  26. Dataset Rapid7 data 22M certs (~ 1 /wk for 6mos)

  27. Dataset 2.8M certs Alexa 
 Top- 1 M Rapid7 filter data CAs 22M certs (~ 1 /wk for 6mos) 9k certs

  28. Dataset 2.8M certs Alexa 
 Top- 1 M Rapid7 filter Leaf Set validate data CAs 22M certs 628k certs (~ 1 /wk for 6mos) 165k domains 9k certs

  29. Dataset 2.8M certs Alexa 
 Top- 1 M Rapid7 filter Leaf Set validate data CAs 22M certs 628k certs (~ 1 /wk for 6mos) 165k domains 9k certs • Download CRLs • Detect vulnerability • Identify Heartbleed-induced reissues & revocations

  30. Dataset 2.8M certs Alexa 
 Top- 1 M Rapid7 filter Leaf Set validate data CAs 22M certs 628k certs (~ 1 /wk for 6mos) 165k domains 9k certs • Download CRLs • Detect vulnerability • Identify Heartbleed-induced reissues & revocations

  31. Prevalence and patch rates 0.6 Vulnerable to Heartbleed Was ever vulnerable Was ever vulnerable Fraction of Domains Still vulnerable Still vulnerable after 3 weeks 0.5 0.4 0.3 0.2 0.1 0 0 200000 400000 600000 800000 1e+06 Alexa Site Rank (bins of 1000)

  32. Prevalence and patch rates 0.6 Vulnerable to Heartbleed Was ever vulnerable Was ever vulnerable Fraction of Domains Still vulnerable Still vulnerable after 3 weeks 0.5 0.4 0.3 0.2 0.1 0 0 200000 400000 600000 800000 1e+06 Alexa Site Rank (bins of 1000)

  33. Prevalence and patch rates 0.6 Vulnerable to Heartbleed Was ever vulnerable Was ever vulnerable Fraction of Domains Still vulnerable Still vulnerable after 3 weeks 0.5 0.4 0.3 0.2 0.1 0 0 200000 400000 600000 800000 1e+06 Alexa Site Rank (bins of 1000) Patching rates are mostly positive 
 Only ~7% had not patched within 3 weeks

  34. How quickly were certs revoked? 1200 Number of Domains/Day 1000 800 600 400 200 0 03/01 03/08 03/15 03/22 03/29 04/05 04/12 04/19 04/26 Date

  35. How quickly were certs revoked? 1200 Number of Domains/Day 1000 800 600 400 200 0 03/01 03/08 03/15 03/22 03/29 04/05 04/12 04/19 04/26 Date Reaction ramps up quickly

  36. How quickly were certs revoked? 1200 Number of Domains/Day 1000 800 600 400 200 0 03/01 03/08 03/15 03/22 03/29 04/05 04/12 04/19 04/26 Date Reaction ramps up quickly

  37. How quickly were certs revoked? 1200 Number of Domains/Day 1000 Weekends 800 600 400 200 0 03/01 03/08 03/15 03/22 03/29 04/05 04/12 04/19 04/26 Date Reaction ramps up quickly Security takes the weekends off

  38. Certificate update rates 3 wks 1 Frac. of Vulnerable Certs not Revoked/Reissued 0.95 Not revoked 0.9 0.85 0.8 0.75 Not reissued 0.7 0.65 0.6 04/07 04/21 05/05 05/19 06/02 06/16 06/30 07/14 07/28 Date

  39. Certificate update rates 3 wks 1 Frac. of Vulnerable Certs not Revoked/Reissued 0.95 Not revoked 0.9 0.85 0.8 0.75 Not reissued 0.7 0.65 0.6 04/07 04/21 05/05 05/19 06/02 06/16 06/30 07/14 07/28 Date

  40. Certificate update rates 3 wks 1 Frac. of Vulnerable Certs not Revoked/Reissued 0.95 Not revoked 0.9 0.85 0.8 0.75 Not reissued 0.7 0.65 0.6 04/07 04/21 05/05 05/19 06/02 06/16 06/30 07/14 07/28 Date

  41. Certificate update rates 3 wks 1 Frac. of Vulnerable Certs not Revoked/Reissued 0.95 Not revoked 0.9 0.85 0.8 0.75 Not reissued 0.7 0.65 0.6 04/07 04/21 05/05 05/19 06/02 06/16 06/30 07/14 07/28 Date Similar pattern to patches: 
 Exponential drop-off, then levels out After 3 weeks: 13% Revoked 27% Reissued

  42. Reissue ⇒ New key? Reissued with the Same Key Fraction of New Certificates 0.6 0.5 0.4 0.3 0.2 0.1 All reissues Heartbleed-induced reissues 0 11/2013 12/2013 01/2014 02/2014 03/2014 04/2014 05/2014 Date of Birth

  43. Reissue ⇒ New key? Reissued with the Same Key Fraction of New Certificates 0.6 0.5 0.4 0.3 0.2 0.1 All reissues Heartbleed-induced reissues 0 11/2013 12/2013 01/2014 02/2014 03/2014 04/2014 05/2014 Date of Birth

  44. Reissue ⇒ New key? Reissued with the Same Key Fraction of New Certificates 0.6 0.5 0.4 0.3 0.2 0.1 All reissues Heartbleed-induced reissues 0 11/2013 12/2013 01/2014 02/2014 03/2014 04/2014 05/2014 Date of Birth Reissuing the same key is common practice 4.1% Heartbleed-induced

  45. Can we wait for expiration? 1 0.8 0.6 CDF 0.4 0.2 0 0 1 2 3 4 5 6 Years of Remaining Validity

  46. Can we wait for expiration? Vulnerable but not revoked 1 0.8 0.6 CDF 0.4 0.2 0 0 1 2 3 4 5 6 Years of Remaining Validity

  47. Can we wait for expiration? Vulnerable but not revoked 1 0.8 0.6 CDF ~40% did not 
 0.4 expire after 
 one year 0.2 0 0 1 2 3 4 5 6 Years of Remaining Validity

  48. Can we wait for expiration? Vulnerable but not revoked 1 0.8 ~8% of vulnerable certs still unexpired 0.6 CDF ~40% did not 
 0.4 expire after 
 one year 0.2 0 0 1 2 3 4 5 6 Years of Remaining Validity

  49. Can we wait for expiration? Vulnerable but not revoked 1 0.8 ~8% of vulnerable certs still unexpired 0.6 CDF ~40% did not 
 0.4 expire after 
 one year 0.2 0 0 1 2 3 4 5 6 Years of Remaining Validity We may be dealing with Heartbleed for years

  50. Security is an economic concern Browser Website Certificate Certificate Certificate Authority

  51. Security is an economic concern Browser Website Certificate Certificate Revoked? Certificate Authority

  52. Security is an economic concern Browser Website Certificate Certificate Revoked? Certificate Authority Browsers face tension between security and page load times CAs face tension between security and bandwidth costs

  53. OCSP Stapling Browser Website Certificate Certificate Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate

  54. OCSP Stapling Browser Website Certificate Certificate ✔ Certific Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate

  55. OCSP Stapling Browser Website Certificate Certificate ✔ Certific Certificate Authority ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate ✗ ✗ ✗ ✗ ✗ Certificate Certificate Certificate Certificate Certificate But OCSP Stapling rarely activated by admins: 
 Our scan: 3% of normal certs; 2% of EV certs

  56. Testing browser behavior • Browsers should support all major protocols Revocation 
 protocols • CRLs, OCSP , OCSP stapling • Browsers should reject certs they cannot check Availability of 
 revocation info • E.g., because the OCSP server is down • Browsers should reject a cert if any on the chain fail Chain 
 lengths • Leaf, intermediate(s), root

  57. Testing browser behavior • Browsers should support all major protocols Revocation 
 protocols • CRLs, OCSP , OCSP stapling • Browsers should reject certs they cannot check Availability of 
 revocation info • E.g., because the OCSP server is down • Browsers should reject a cert if any on the chain fail Chain 
 lengths • Leaf, intermediate(s), root Root … Intermediate Intermediate Leaf

  58. Testing browser behavior • Browsers should support all major protocols Revocation 
 protocols • CRLs, OCSP , OCSP stapling • Browsers should reject certs they cannot check Availability of 
 revocation info • E.g., because the OCSP server is down • Browsers should reject a cert if any on the chain fail Chain 
 lengths • Leaf, intermediate(s), root signs Root … Intermediate Intermediate Leaf

  59. Testing browser behavior • Browsers should support all major protocols Revocation 
 protocols • CRLs, OCSP , OCSP stapling • Browsers should reject certs they cannot check Availability of 
 revocation info • E.g., because the OCSP server is down • Browsers should reject a cert if any on the chain fail Chain 
 lengths • Leaf, intermediate(s), root signs Root … Intermediate Intermediate Leaf

  60. Testing browser behavior • Browsers should support all major protocols Revocation 
 protocols • CRLs, OCSP , OCSP stapling • Browsers should reject certs they cannot check Availability of 
 revocation info • E.g., because the OCSP server is down • Browsers should reject a cert if any on the chain fail Chain 
 lengths • Leaf, intermediate(s), root signs Root … Intermediate Intermediate Leaf

Recommend

HOW CRYPTO FAILS IN PRACTICE CMSC 414 APR 3 2018 POOR PROGRAMING CryptoLint tool to perform

HOW CRYPTO FAILS IN PRACTICE CMSC 414 APR 3 2018 POOR PROGRAMING CryptoLint tool to perform

HOW CRYPTO FAILS IN PRACTICE CMSC 414 APR 3 2018 POOR PROGRAMING CryptoLint tool to perform static analysis on Android apps to detect how they are using crypto libraries CRYPTO MISUSE IN ANDROID APPS 15,134 apps from Google play

841 views • 47 slides
Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice David Adrian, Karthikeyan

Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice David Adrian, Karthikeyan

Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice David Adrian, Karthikeyan Bhargavan, Zakir Durumeric, Pierrick Gaudry, Matthew Green, J. Alex Halderman, Nadia Heninger, Drew Springall, Emmanuel Thom e, Luke Valenta, Benjamin

1.01k views • 34 slides
CRYPTO HERE, CRYPTO THERE, CRYPTO, CRYPTO EVERYWHERE WORLD AQUATIC HEALTH CONFERENCE

CRYPTO HERE, CRYPTO THERE, CRYPTO, CRYPTO EVERYWHERE WORLD AQUATIC HEALTH CONFERENCE

CRYPTO HERE, CRYPTO THERE, CRYPTO, CRYPTO EVERYWHERE WORLD AQUATIC HEALTH CONFERENCE WILLIAMSBURG, VA THURSDAY, OCTOBER 17 TH , 2019 JOHN KELLY, PE IOWA DEPARTMENT OF PUBLIC HEALTH DISCLAIMER THIS PRESENTATION: IS INTENDED FOR

843 views • 40 slides
The LOGJAM attack Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice David Adrian,

The LOGJAM attack Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice David Adrian,

The LOGJAM attack Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice David Adrian, Karthikeyan Bhargavan, Zakir Durumeric, Pierrick Gaudry, Matthew Green, J. Alex Halderman, Nadia Heninger, Drew Springall, Emmanuel Thom e, Luke

674 views • 45 slides
10 Reasons Why Compliance Fails Sinead OConnor www.aicp.im Ten reasons why compliance fails

10 Reasons Why Compliance Fails Sinead OConnor www.aicp.im Ten reasons why compliance fails

10 Reasons Why Compliance Fails Sinead OConnor www.aicp.im Ten reasons why compliance fails Sinead OConnor Head of Regulatory &amp; Compliance services Lack of leadership Compliance comply dont they? What do the rules actually

482 views • 13 slides
Outline Crypto intro Computer Security: Secret Key Crypto Symmetric crypto Bart Jacobs

Outline Crypto intro Computer Security: Secret Key Crypto Symmetric crypto Bart Jacobs

Crypto intro Crypto intro Symmetric crypto Symmetric crypto Achieving security goals with symmetric crypto Radboud University Nijmegen Achieving security goals with symmetric crypto Radboud University Nijmegen e-Passport example

269 views • 7 slides
From theoretical crypto to practice: gloups an abominable gap Cryptie, Oblazy Cryptie, O. Blazy

From theoretical crypto to practice: gloups an abominable gap Cryptie, Oblazy Cryptie, O. Blazy

From theoretical crypto to practice: gloups an abominable gap Cryptie, Oblazy Cryptie, O. Blazy (Xlim) RMLL CC-BY-SA 4.0 1 / 35 Encryption and Signature: Just a 2 min reminder 1 Libraries 2 Funny Cryptography 3 Cryptie, O. Blazy (Xlim)

919 views • 52 slides
Ethics Issues in Opinion Practice 419 (TriBar Report), are widely accepted as setting forth

Ethics Issues in Opinion Practice 419 (TriBar Report), are widely accepted as setting forth

Ethics Issues in Opinion Practice * By Charles E. McCallum and Bruce C. Young ** A. I NTRODUCTION Lawyers giving legal opinions, like all lawyers, are subject to many duties. A law- yer who fails to meet his ethical obligations may be subject to

478 views • 10 slides
- The First Crypto Merchant - Crypto Payment Crypto Payment for online shops for retail shops

- The First Crypto Merchant - Crypto Payment Crypto Payment for online shops for retail shops

- The First Crypto Merchant - Crypto Payment Crypto Payment for online shops for retail shops Did you know? Our payment system has ZERO FEES for processing payments How it works? It takes only a few minutes to complete Merchant Initiate

269 views • 11 slides
Javascript Crypto &amp; The Case Against Crypto Reductionism Ben Adida Mozilla Workshop on

Javascript Crypto &amp; The Case Against Crypto Reductionism Ben Adida Mozilla Workshop on

Javascript Crypto &amp; The Case Against Crypto Reductionism Ben Adida Mozilla Workshop on Real-World Crypto January 2013 promote openness, innovation &amp; opportunity on the Web. previously easy to deploy easy to use privacy

610 views • 22 slides
When Knuth Bendix Completion Fails 17ai The Knuth Bendix procedure fails if an equation cannot be

When Knuth Bendix Completion Fails 17ai The Knuth Bendix procedure fails if an equation cannot be

When Knuth Bendix Completion Fails 17ai The Knuth Bendix procedure fails if an equation cannot be orientated eg x+y = y+x leads to circular rewriting as in 2+3 =&gt; 3+2 =&gt; 2+3 ..., f(x, g(z)) = f(g(z), x) leads to

246 views • 5 slides
Outline Crypto intro Computer Security: Secret Key Crypto Symmetric crypto Achieving security

Outline Crypto intro Computer Security: Secret Key Crypto Symmetric crypto Achieving security

Crypto intro Crypto intro Symmetric crypto Symmetric crypto Achieving security goals with symmetric crypto Achieving security goals with symmetric crypto Radboud University Nijmegen Radboud University Nijmegen e-Passport example

1.11k views • 12 slides
Computer Security: Secret Key Crypto B. Jacobs Institute for Computing and Information Sciences

Computer Security: Secret Key Crypto B. Jacobs Institute for Computing and Information Sciences

Crypto intro Symmetric crypto Achieving security goals with symmetric crypto Radboud University Nijmegen e-Passport example Encryption: modes of operation Computer Security: Secret Key Crypto B. Jacobs Institute for Computing and Information

856 views • 73 slides
Outline Public key crypto RSA Essentials Computer Security: Public Key Crypto Public Key Crypto

Outline Public key crypto RSA Essentials Computer Security: Public Key Crypto Public Key Crypto

Public key crypto Public key crypto RSA Essentials RSA Essentials Public Key Crypto in Java Public Key Crypto in Java Radboud University Nijmegen Radboud University Nijmegen Public key protocols Public key protocols Diffie-Hellman and El

448 views • 16 slides
w w w . a d i t u s . n e t Crypto-currencies have created a new class of a ffl uent individuals

w w w . a d i t u s . n e t Crypto-currencies have created a new class of a ffl uent individuals

Aditus Luxury Access Platform for Crypto A ffl uents Presentation 21 Nov 2017 w w w . a d i t u s . n e t Crypto-currencies have created a new class of a ffl uent individuals Crypto-currency values have been the best performing asset class

206 views • 19 slides
Algorithms, cryptography and protocols DONT EVER ROLL YOUR OWN PROTOCOL, CRYPTO ALGO, CRYPTO

Algorithms, cryptography and protocols DONT EVER ROLL YOUR OWN PROTOCOL, CRYPTO ALGO, CRYPTO

Algorithms, cryptography and protocols DONT EVER ROLL YOUR OWN PROTOCOL, CRYPTO ALGO, CRYPTO Use this space to add an image. IMPLEMENTATION, OR CRYPTO RNG Insert an image and change the scale to cover this box. ALSO, KEY MANAGEMENT IS

1.01k views • 81 slides
19 big enough? What marketing says Generate public keys 56-bit crypto: Broken. on a

19 big enough? What marketing says Generate public keys 56-bit crypto: Broken. on a

Is 2 255 19 big enough? What marketing says Generate public keys 56-bit crypto: Broken. on a strong elliptic curve 128-bit crypto: Okay. over the field Z (2 255 19). 256-bit crypto: High security! Is that safe? 512-bit

121 views • 11 slides
What do you do if a computational object fails a specification? Target ... We have

What do you do if a computational object fails a specification? Target ... We have

What do you do if a computational object fails a specification? Target ... We have studied this problem over words: 1. Regular repair of specifications, in LICS 2011. 2. The cost of traveling between languages, in ICALP

919 views • 36 slides
Ethereum and the crypto landscape Different Crypto Value Propositions Name Payment Platform

Ethereum and the crypto landscape Different Crypto Value Propositions Name Payment Platform

Ethereum and the crypto landscape Different Crypto Value Propositions Name Payment Platform Stable Coin Dapps Sum $ Bitcoin 154.00 $ Ethereum 29.00 $ XRP 18.70 $ BCH 7.70 $ EOS 7.20 $ LiteCoin 7.00 $ BNB 4.70 $ Tether

160 views • 12 slides
Getting Post-Quantum Crypto Algorithms Ready for Deployment End of ECRYPT II Event: Crypto for

Getting Post-Quantum Crypto Algorithms Ready for Deployment End of ECRYPT II Event: Crypto for

Getting Post-Quantum Crypto Algorithms Ready for Deployment End of ECRYPT II Event: Crypto for 2020 Tim Gneysu Hardware Security Group Horst Grtz Institute for IT-Security, Bochum 1/24/2013 Outline Introduction Alternative Public-Key

735 views • 55 slides
If all else fails, then do the right thing. -- Evan Kwerel, FCC 1998: Traditional spot

If all else fails, then do the right thing. -- Evan Kwerel, FCC 1998: Traditional spot

The Convergence of Market Designs for Adequate Generating Capacity Peter Cramton and Steven Stoft 22 March 2006 A tale on how (not) to design markets If all else fails, then do the right thing. -- Evan Kwerel, FCC 1998: Traditional

450 views • 10 slides
Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020, Tenerife, January 2013 Outline 1 1. Past results 2. Future challenges 1. Block ciphers 2 TEA, NOEKEON, AES, SERPENT, ICEBERG, HIGHT,

844 views • 68 slides
Communication: TLS CS 161: Computer Security Prof. David Wagner March 11, 2016 Todays Lecture

Communication: TLS CS 161: Computer Security Prof. David Wagner March 11, 2016 Todays Lecture

Securing Internet Communication: TLS CS 161: Computer Security Prof. David Wagner March 11, 2016 Todays Lecture Applying crypto technology in practice Two simple abstractions cover 80% of the use cases for crypto: Sealed blob:

1.09k views • 58 slides
Patellofemoral Arthritis How do we deal with it when all else fails?- Inlay Arthroplasty Anthony

Patellofemoral Arthritis How do we deal with it when all else fails?- Inlay Arthroplasty Anthony

Patellofemoral Arthritis How do we deal with it when all else fails?- Inlay Arthroplasty Anthony Miniaci M.D. FRCSC Professor of Surgery Cleveland Clinic Sports Health Conflicts of Interest 1. Royalties/stock/equity 3. Educational/Research

313 views • 20 slides

More recommend