security for operating systems cryptography
play

Security for Operating Systems: Cryptography, Authentication, and - PowerPoint PPT Presentation

Dec 20, 2022 •434 likes •1.06k views

Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111 Operating Systems Peter Reiher Lecture 18 CS 111 Page 1 Spring 2015 Outline Basic concepts in computer security Design principles for

  1. Security for Operating Systems: Cryptography, Authentication, and Protecting OS Resources CS 111 Operating Systems Peter Reiher Lecture 18 CS 111 Page 1 Spring 2015

  2. Outline • Basic concepts in computer security • Design principles for security • Important security tools for operating systems • Access control • Cryptography and operating systems • Authentication and operating systems • Protecting operating system resources Lecture 18 CS 111 Page 2 Spring 2015

  3. Cryptography • Much of computer security is about keeping secrets • One method of doing so is to make it hard for others to read the secrets • While (usually) making it simple for authorized parties to read them • That’s what cryptography is all about Lecture 18 CS 111 Page 3 Spring 2015

  4. What Is Encryption? • Encryption is the process of hiding information in plain sight • Transform the secret data into something else • Even if the attacker can see the transformed data, he can’t understand the underlying secret • Usually, someone you want to understand it can Lecture 18 CS 111 Page 4 Spring 2015

  5. Cryptography Terminology • Typically described in terms of sending a message – Though it’s used for many other purposes • The sender is S • The receiver is R • Encryption is the process of making message unreadable/unalterable by anyone but R • Decryption is the process of making the encrypted message readable by R • A system performing these transformations is a cryptosystem – Rules for transformation sometimes called a cipher Lecture 18 CS 111 Page 5 Spring 2015

  6. Plaintext and Ciphertext • Plaintext is the original Transfer $100 form of the message to my savings account (often referred to as P ) • Ciphertext is the Sqzmredq encrypted form of the #099 sn lx rzuhmfr message (often referred zbbntms to as C ) Lecture 18 CS 111 Page 6 Spring 2015

  7. Cryptographic Keys • Most cryptographic algorithms use a key to perform encryption and decryption – Referred to as K • The key is a secret • Without the key, decryption is hard • With the key, decryption is easy • Reduces the secrecy problem from your (long) message to the (short) key – But there’s still a secret Lecture 18 CS 111 Page 7 Spring 2015

  8. More Terminology • The encryption algorithm is referred to as E() • C = E(K,P) • The decryption algorithm is referred to as D() • The decryption algorithm also has a key • The combination of the two algorithms are often called a cryptosystem Lecture 18 CS 111 Page 8 Spring 2015

  9. Symmetric and Asymmetric Cryptosystems • Symmetric cryptosystems use the same keys for E and D : P = D(K, C) – Expanding, P = D(K, E(K,P)) • Asymmetric cryptosystems use different keys for E and D: C = E(K E ,P) P = D(K D ,C) – Expanding, P = D(K D , E(K E ,P)) Lecture 18 CS 111 Page 9 Spring 2015

  10. Desirable Characteristics of Keyed Cryptosystems • If you change only the key, a given plaintext encrypts to a different ciphertext • Same applies to decryption • Changes in the key ideally should cause unpredictable changes in the ciphertext • Decryption should be hard without knowing the key • The less a given key is used, the better (in security terms) Lecture 18 CS 111 Page 10 Spring 2015

  11. Cryptography and Operating Systems • What does cryptography have to offer operating systems? • Which hard security problems in operating systems can we solve with cryptography? • Where doesn’t it help? Lecture 18 CS 111 Page 11 Spring 2015

  12. Cryptography and Secrecy • Pretty obvious for networks • Only those knowing the proper keys can decrypt an encrypted message – Thus preserving secrecy • Used cleverly, it can provide other forms of secrecy • Clear where we’d use this for distributed systems • Where does it make sense in a single machine? Lecture 18 CS 111 Page 12 Spring 2015

  13. Cryptography and Authentication • How can I prove to you that I created a piece of data? • What if I give you the data in encrypted form? – Using a key only you and I know • Then only you or I could have created it – Unless one of us told someone else the key . . . – Or one of us is trying to screw the other Lecture 18 CS 111 Page 13 Spring 2015

  14. Cryptography and Integrity • Changing one bit of a piece of ciphertext completely garbles it – For many forms of cryptography • If a checksum is part of encrypted data, that’s detectable • If you don’t need secrecy, can get the same effect – By encrypting only the checksum Lecture 18 CS 111 Page 14 Spring 2015

  15. Symmetric Cryptosystems • C = E(K,P) • P = D(K,C) • E() and D() are not necessarily the same operations Lecture 18 CS 111 Page 15 Spring 2015

  16. Advantages of Symmetric Cryptosystems + Encryption and authentication performed in a single operation + Well-known (and trusted) ones perform much faster than asymmetric key systems + No centralized authority required • Though key servers help a lot Lecture 18 CS 111 Page 16 Spring 2015

  17. Disadvantages of Symmetric Cryptosystems – Encryption and authentication performed in a single operation • Makes signature more difficult – Non-repudiation hard without servers – Key distribution can be a problem – Scaling – Especially for Internet use Lecture 18 CS 111 Page 17 Spring 2015

  18. Some Popular Symmetric Ciphers • The Data Encryption Standard (DES) – The old US encryption standard – Still fairly widely used, due to legacy – Weak by modern standards • The Advanced Encryption Standard (AES) – The current US encryption standard – Probably the most widely used cipher • Blowfish • There are many, many others Lecture 18 CS 111 Page 18 Spring 2015

  19. Symmetric Ciphers and Brute Force Attacks • If your symmetric cipher has no flaws, how can attackers crack it? • Brute force – try every possible key until one works • The cost of brute force attacks depends on key length – Assuming random choice of key – For N possible keys, attack must try N/2 keys, on average, before finding the right one Lecture 18 CS 111 Page 19 Spring 2015

  20. How Long Are the Keys? • DES used 56 bit keys – Brute force attacks on that require a lot of time and resources – But they are demonstrably possible – Attackers can thus crack DES, if they really care • AES uses either 128 bit or 256 bit keys – Even the shorter key length is beyond the powers of brute force today – 2 127 decryption attempts is still a lot, by any standard Lecture 18 CS 111 Page 20 Spring 2015

  21. Asymmetric Cryptosystems • Often called public key cryptography – Or PK, for short • The encrypter and decrypter have different keys – C = E(K E ,P) – P = D(K D ,C) • Often works the other way, too – C ’ = E(K D ,P) – P = D(K E ,C ’ ) Lecture 18 CS 111 Page 21 Spring 2015

  22. Using Public Key Cryptography • Keys are created in pairs • One key is kept secret by the owner • The other is made public to the world – Hence the name • If you want to send an encrypted message to someone, encrypt with his public key – Only he has private key to decrypt Lecture 18 CS 111 Page 22 Spring 2015

  23. Authentication With Public Keys • If I want to “sign” a message, encrypt it with my private key • Only I know private key, so no one else could create that message • Everyone knows my public key, so everyone can check my claim directly • Much better than with symmetric crypto – The receiver could not have created the message – Only the sender could have Lecture 18 CS 111 Page 23 Spring 2015

  24. PK Key Management • To communicate via shared key cryptography, key must be distributed – In trusted fashion • To communicate via public key cryptography, need to find out each other’s public key – “Simply publish public keys” • Not really that simple, for most cases Lecture 18 CS 111 Page 24 Spring 2015

  25. Issues With PK Key Distribution • Security of public key cryptography depends on using the right public key • If I am fooled into using wrong one, that key’s owner reads my message • Need high assurance that a given key belongs to a particular person – Either a key distribution infrastructure – Or use of certificates • Both are problematic, at high scale and in the real world Lecture 18 CS 111 Page 25 Spring 2015

  26. The Nature of PK Algorithms • Usually based on some problem in mathematics – Like factoring extremely large numbers • Security less dependent on brute force • More on the complexity of the underlying problem Lecture 18 CS 111 Page 26 Spring 2015

  27. Choosing Keys for Asymmetric Ciphers • For symmetric ciphers, the key can be any random number of the right size – You can’t do that for asymmetric ciphers • Only some public/private key pairs “work” – Generally, finding a usable pair takes a fair amount of time – E.g., for RSA you perform operations on 100-200 digit prime numbers to get keys • You thus tend to use one public/private key pair for a long time – Issues of PK key distribution and typical usage also suggest long lifetimes for these keys Lecture 18 CS 111 Page 27 Spring 2015

  28. Example Public Key Ciphers • RSA – The most popular public key algorithm – Used on pretty much everyone’s computer, nowadays • Elliptic curve cryptography – An alternative to RSA – Tends to have better performance – Not as widely used or studied Lecture 18 CS 111 Page 28 Spring 2015

Recommend

Security and Privacy 12A. Operating Systems Security Operating Systems Principles 12B.

Security and Privacy 12A. Operating Systems Security Operating Systems Principles 12B.

5/18/2016 Security and Privacy 12A. Operating Systems Security Operating Systems Principles 12B. Authentication 12C. Authorization Security and Privacy 12D. Trust 12E. At-Rest Encryption Mark Kampe (markk@cs.ucla.edu) Security and Privacy

116 views • 8 slides
Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1

Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1

Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1 Spring 2015 Outline Basic concepts in computer security Design principles for security Important security tools for operating systems

844 views • 56 slides
Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1

Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1

Operating System Security CS 111 Operating Systems Peter Reiher Lecture 17 CS 111 Page 1 Fall 2015 Outline Basic concepts in computer security Design principles for security Important security tools for operating systems

1.15k views • 64 slides
CSE 513 I ntroduction to Operating Systems Class 10 - Security J onat han Walpole Dept . of

CSE 513 I ntroduction to Operating Systems Class 10 - Security J onat han Walpole Dept . of

CSE 513 I ntroduction to Operating Systems Class 10 - Security J onat han Walpole Dept . of Comp. Sci. and Eng. Oregon Healt h and Science Universit y Overview I ntro to cryptography tools one-way f unct ions, public vs pr ivat e key

1.1k views • 90 slides
OpenKeychain: An Architecture for Cryptography with Smart Cards and NFC Rings on Android Dominik

OpenKeychain: An Architecture for Cryptography with Smart Cards and NFC Rings on Android Dominik

Institute of Operating Systems and Computer Networks Operating System Email Crypto Provider binds to API key management secret key creation access control Security Token PIN/password caching per client operating system with IM NFC

704 views • 27 slides
Security in an Operating System Operating systems need to protect against two types of security

Security in an Operating System Operating systems need to protect against two types of security

H Security Security in an Operating System Operating systems need to protect against two types of security violations: Accidental security violations, e.g.: a program accidentally overwrites a file; a user issues rm -rf *,

6.18k views • 28 slides
Security and Privacy Why Security is Difficult 12A. Operating Systems and Security complexity

Security and Privacy Why Security is Difficult 12A. Operating Systems and Security complexity

5/24/2017 Security and Privacy Why Security is Difficult 12A. Operating Systems and Security complexity of our software and systems 12B. Authentication millions of lines of code, thousands of developers rich and powerful protocols

533 views • 14 slides
Security and Privacy Why Security is Difficult 12A. Operating Systems and Security complexity

Security and Privacy Why Security is Difficult 12A. Operating Systems and Security complexity

5/18/2018 Security and Privacy Why Security is Difficult 12A. Operating Systems and Security complexity of our software and systems 12B. Authentication millions of lines of code, thousands of developers rich and powerful protocols

374 views • 9 slides
Security Overview Security Goals The Attack Space Security Mechanisms

Security Overview Security Goals The Attack Space Security Mechanisms

CPSC 410/611 Operating Systems Security Security Overview Security Goals The Attack Space Security Mechanisms Introduction to Cryptography Authentication Authorization Confidentiality Case Studies

419 views • 19 slides
CS 134: Operating Systems Security 1 / 29 Overview CS134 Overview 2014-04-22 Introduction

CS 134: Operating Systems Security 1 / 29 Overview CS134 Overview 2014-04-22 Introduction

CS134 2014-04-22 CS 134: Operating Systems Security CS 134: Operating Systems Security 1 / 29 Overview CS134 Overview 2014-04-22 Introduction to Security Classification Cryptography Overview Attacks Introduction to Security

574 views • 38 slides
Security in Distributed Systems Introduction Cryptography Authentication Key

Security in Distributed Systems Introduction Cryptography Authentication Key

Security in Distributed Systems Introduction Cryptography Authentication Key exchange Computer Science Lecture 18, page 1 Network Security Intruder may eavesdrop remove, modify, and/or insert messages read and

361 views • 11 slides
CS5460: Operating Systems Lecture 24: Security CS 5460: Operating Systems Once upon a time,

CS5460: Operating Systems Lecture 24: Security CS 5460: Operating Systems Once upon a time,

CS5460: Operating Systems Lecture 24: Security CS 5460: Operating Systems Once upon a time, this patch was made to Linuxs wait4() system call: + if ((options == (__WCLONE|__WALL)) && (current->uid = 0)) +

550 views • 33 slides
T-79.159 Cryptography and Data Security Lecture 11: Security systems using public keys 11.1 PGP

T-79.159 Cryptography and Data Security Lecture 11: Security systems using public keys 11.1 PGP

T-79.159 Cryptography and Data Security Lecture 11: Security systems using public keys 11.1 PGP Kaufman et al: Ch 17, 11.2 SSL/TLS 18, 19 11.3 IPSEC Stallings: Ch 16,17 1 Pretty Good Privacy Email encryption program

566 views • 8 slides
1 Cryptography basics Secret-key encryption Algorithms (E, D) are widely known Also

1 Cryptography basics Secret-key encryption Algorithms (E, D) are widely known Also

Security The security environment Basics of cryptography User authentication Chapter 9: Security Attacks from inside the system Attacks from outside the system Protection mechanisms Trusted systems CS 1550, cs.pitt.edu

538 views • 11 slides
Security 2 CS 4410 Operating Systems [E. Birrell, A. Bracy, F. B. Schneider, E. Sirer, R. Van

Security 2 CS 4410 Operating Systems [E. Birrell, A. Bracy, F. B. Schneider, E. Sirer, R. Van

Security 2 CS 4410 Operating Systems [E. Birrell, A. Bracy, F. B. Schneider, E. Sirer, R. Van Renesse] References: Security Introduction and Access Control by Fred B. Schneider Security in Computer Systems Gold (Au) Standard for Security

610 views • 24 slides
1 Symmetric algorithm Public key algorithm Secret key public key and private key C 1 = E

1 Symmetric algorithm Public key algorithm Secret key public key and private key C 1 = E

Cryptography security Cryptography may be a component of a secure system Cryptographic Systems Adding cryptography may not make a Authentication & Communication system secure Protocols Paul Krzyzanowski Distributed Systems

753 views • 23 slides
Security CS 4410 Operating Systems References: Security Introduction and Access Control by Fred

Security CS 4410 Operating Systems References: Security Introduction and Access Control by Fred

Security CS 4410 Operating Systems References: Security Introduction and Access Control by Fred Schneider Historical Context 1961 1969 1960s OSes begin to be shared. Enter: Communication Synchronization Protection Security:

1.16k views • 53 slides
Chapter 9: Security Security The security environment Basics of cryptography User

Chapter 9: Security Security The security environment Basics of cryptography User

Chapter 9: Security Security The security environment Basics of cryptography User authentication Attacks from inside the system Attacks from outside the system Protection mechanisms Trusted systems Chapter 9: Security

801 views • 65 slides
Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is

Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is

Cryptography Basics Network Security Instructor: Haojin Zhu 1 Cryptography What is cryptography? Related fields: Cryptography ("secret writing"): Making secret messages Turning plaintext (an ordinary readable message)

1.2k views • 57 slides
Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security

PQCRYPTO Summer School on Post-Quantum Cryptography 2017 Stefan Klbl June 19th, 2017 DTU Compute, Technical University of Denmark Symmetric Key Cryptography Introduction to Symmetric Key Cryptography Myth Where does security fail?

758 views • 72 slides
Security of Communications What Can Cryptography Guarantee? One ever wanted to exchange

Security of Communications What Can Cryptography Guarantee? One ever wanted to exchange

Cryptography Provable Security Encryption Assumptions Security of Communications What Can Cryptography Guarantee? One ever wanted to exchange information securely Que peut nous garantir la cryptographie ? With the all-digital world, security

190 views • 4 slides
Python Cryptography & Security Jos Manuel Ortega | @jmortegac

Python Cryptography & Security Jos Manuel Ortega | @jmortegac

Python Cryptography & Security Jos Manuel Ortega | @jmortegac https://speakerdeck.com/jmortega Security Conferences INDEX 1 Introduction to cryptography 2 PyCrypto and other libraries 3 Django Security 4 OWASP & Best Practices 5

881 views • 61 slides
Chapter 10: Case Studies So what happens in a real operating system? Operating systems in the real

Chapter 10: Case Studies So what happens in a real operating system? Operating systems in the real

Chapter 10: Case Studies So what happens in a real operating system? Operating systems in the real world Studied mechanisms used by operating systems Processes & scheduling Memory management File systems Security How are

408 views • 22 slides
Software Security By Hunter Stevenson Khalid Alharbi CSCI 5828 Foundations of Software

Software Security By Hunter Stevenson Khalid Alharbi CSCI 5828 Foundations of Software

Software Security By Hunter Stevenson Khalid Alharbi CSCI 5828 Foundations of Software Engineering Spring 2012 What is the talk NOT about? Cryptography. Database security. Operating Systems security. Network security.

1.37k views • 121 slides

More recommend