the rupture api productizing tls attacks
play

The Rupture API: Productizing TLS attacks Aggelos Kiayias Eva - PowerPoint PPT Presentation

Jan 26, 2024 •250 likes •492 views

The Rupture API: Productizing TLS attacks Aggelos Kiayias Eva Sarafianou Dionysis Zindros Real World Crypto 2017 Attack Anatomy Attacker guesses part of secret Uses it in reflection Compressed/encrypted response is shorter if

  1. The Rupture API: Productizing TLS attacks Aggelos Kiayias Eva Sarafianou Dionysis Zindros Real World Crypto 2017

  2. Attack Anatomy

  3. ● Attacker guesses part of secret ● Uses it in reflection ● Compressed/encrypted response is shorter if right! Reflection Secret

  4. Adaptively choosing reflections strings can lead to full recovery. But there are challenges: 1. Noise 2. Antagonistic compression methods (Huffman coding) 3. Unrelated static content on page matching candidates

  7. Our Contributions ● Usable open-source tool ● Demonstrate attack is easy and practical via web UI ● Reusable RESTful API

  8. Demo

  22. https://github.com/dionyziz/rupture https://ruptureit.com/

  23. Thank you! Questions? https://github.com/dionyziz/rupture http://www.kiayias.com E5F2 7045 437B 168B 39AD 1BFA C876 8019 6DBB 04E0 https://esarafianou.github.io 2FA9 7528 9554 F1EB F5F8 675B E371 5849 8CD0 92EE https://dionyziz.com 45DC 00AE FDDF 5D5C B988 EC86 2DA4 50F3 AFB0 46C7

Recommend

L AB EXPERIMENTS ON GELS (T. Y AMAGUCHI ) C OMPLEXITY OF DYNAMIC RUPTURE Ripperger, Ampuero, Mai

L AB EXPERIMENTS ON GELS (T. Y AMAGUCHI ) C OMPLEXITY OF DYNAMIC RUPTURE Ripperger, Ampuero, Mai

I MAGING EARTHQUAKE RUPTURE COMPLEXITY WITH DENSE ARRAYS Pablo Ampuero (Caltech Seismolab) Simons et al (Science, 2011) Meng, Inbal and Ampuero (subm. GRL, 2011) C OMPLEXITY OF DYNAMIC RUPTURE Ripperger, Ampuero, Mai (2008) Complicated

540 views • 31 slides
Advanced ML in Google Cloud (2) Abhay Agarwal (MS Design 19) Agenda Productizing

Advanced ML in Google Cloud (2) Abhay Agarwal (MS Design 19) Agenda Productizing

CS341: Project in Mining Massive Datasets Advanced ML in Google Cloud (2) Abhay Agarwal (MS Design 19) Agenda Productizing analytics Data wrangling Data fundamentals Data studio vs datalab vs colab

687 views • 20 slides
3D rupture effects (seismogenic depth) Huihui Weng Jean-Paul Ampuero ICTP, Trieste, Italy, 2-14

3D rupture effects (seismogenic depth) Huihui Weng Jean-Paul Ampuero ICTP, Trieste, Italy, 2-14

3D rupture effects (seismogenic depth) Huihui Weng Jean-Paul Ampuero ICTP, Trieste, Italy, 2-14 Sep. Rupture speeds in 2D Modes II (strike slip) Supershear Sub-Rayleigh v R v S v E v P Rupture speed Unstable Modes III (dip slip)

1.04k views • 71 slides
Productizing Telephony and Audio in a GNU/Linux (Sailfish OS) Smartphone Martti Piirainen

Productizing Telephony and Audio in a GNU/Linux (Sailfish OS) Smartphone Martti Piirainen

Productizing Telephony and Audio in a GNU/Linux (Sailfish OS) Smartphone Martti Piirainen (martti.piirainen@tieto.com) Tieto Product Development Services Agenda Hardware / software stack overview Audio What we did and why Some

825 views • 27 slides
Goals Learn to simulate dynamic rupture model Explore the effects of fault heterogeneities

Goals Learn to simulate dynamic rupture model Explore the effects of fault heterogeneities

Practice : dynamic rupture in 2D and 2.5D Huihui Weng Jean-Paul Ampuero Goals Learn to simulate dynamic rupture model Explore the effects of fault heterogeneities on dynamic ruptures Discussion: seismology problems 2D and 2.5D

601 views • 41 slides
Aortic Rupture & Aortopulmonary fistulation in the friesian horse C.J.G.Delesalle@uu.nl

Aortic Rupture & Aortopulmonary fistulation in the friesian horse C.J.G.Delesalle@uu.nl

Aortic Rupture & Aortopulmonary fistulation in the friesian horse C.J.G.Delesalle@uu.nl Catherine.Delesalle@UGent.be lay out Friesian horse project 2008 Prof. Dr. Wim Back -Dwarfism -Hydrocephalia Aortic rupture & Aortopulmonary

498 views • 38 slides
Blunt Traumatic Aortic Rupture and the Aortic Response to High Speed Impact MARK COHEN AND

Blunt Traumatic Aortic Rupture and the Aortic Response to High Speed Impact MARK COHEN AND

Blunt Traumatic Aortic Rupture and the Aortic Response to High Speed Impact MARK COHEN AND LYES KADEM Blunt Traumatic Aortic Rupture (BTAR) In North America, approximately 19% of all auto accident fatalities are caused by BTAR. Second

684 views • 16 slides
Acute Coronary syndrome 7th Annual Pharmacotherapy Conference ACS Pathophysiology rupture or

Acute Coronary syndrome 7th Annual Pharmacotherapy Conference ACS Pathophysiology rupture or

6/2/18 Acute Coronary syndrome 7th Annual Pharmacotherapy Conference ACS Pathophysiology rupture or erosion of a vulnerable, lipid- laden, atherosclerotic coronary plaque, resulting in exposure of circulating blood to highly thrombogenic

407 views • 17 slides
Achilles Tendon Rupture: How to Make Up for the Gap James A. Nunley MD DISCLOSURES Consultant

Achilles Tendon Rupture: How to Make Up for the Gap James A. Nunley MD DISCLOSURES Consultant

Achilles Tendon Rupture: How to Make Up for the Gap James A. Nunley MD DISCLOSURES Consultant for Wright, Stryker,Tornier,Orthofix,Acumed, Exactech,DTMedSurg Royalties from Wright Fellowship support from Breg, Synthes, Integra Turndown

790 views • 31 slides
Lake Maumelle Watershed ExxonMobil Pegasus Pipeline Pipeline and Rupture Overview v

Lake Maumelle Watershed ExxonMobil Pegasus Pipeline Pipeline and Rupture Overview v

Lake Maumelle Watershed ExxonMobil Pegasus Pipeline Pipeline and Rupture Overview v Constructed 1948 v 858 miles long v Flow reversed in 2006 v Up to 4 million gallons per day v Carries Wabasca heavy crude/dilbit v

401 views • 12 slides
Soil Shearing during Earthquake Surface Fault Rupture Nicolas K. Oettle, P.E. Graduate

Soil Shearing during Earthquake Surface Fault Rupture Nicolas K. Oettle, P.E. Graduate

Soil Shearing during Earthquake Surface Fault Rupture Nicolas K. Oettle, P.E. Graduate Researcher University of California, Berkeley Advisor: Funding: Jonathan D. Bray, Ph.D., P.E. National Science Foundation Professor of Geotechnical

444 views • 11 slides
Spontaneous Rupture of the Bile Duct Associated with Pancreatitis. A Rare Presentation Mahesh K

Spontaneous Rupture of the Bile Duct Associated with Pancreatitis. A Rare Presentation Mahesh K

JOP. J Pancreas (Online) 2011 Mar 9; 12(2):149-151. CASE REPORT Spontaneous Rupture of the Bile Duct Associated with Pancreatitis. A Rare Presentation Mahesh K Goenka, Bhaswati C Acharyya, Pradeepta K Sethy, Usha Goenka Institute of

310 views • 3 slides
Rupture EVAR Formula 1 style: it is all about team training www.critical-issues-congress.com Di

Rupture EVAR Formula 1 style: it is all about team training www.critical-issues-congress.com Di

Rupture EVAR Formula 1 style: it is all about team training www.critical-issues-congress.com Di Disclosures Speaker name: Colin Bicknell. I I ha have the foll ollowing po potentia ial l conflic icts of of interest to to report:

410 views • 22 slides
NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3

NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3

CMPS122: COMPUTER SECURITY NETWORKING ATTACKS NETWORKING ATTACKS NOTICES Lab #2 extended to Feb. 17 @ 23:59 HW #3 due tonight NETWORKING ATTACKS LAST TIME TCP/IP networking stack Physical layer Data link layer Network

1.1k views • 61 slides
Bruno Gas Pipeline Rupture 6/1/11 Presentation to Washington State Citizens Committee on

Bruno Gas Pipeline Rupture 6/1/11 Presentation to Washington State Citizens Committee on

Major Public Concerns Raised by the San Bruno Gas Pipeline Rupture 6/1/11 Presentation to Washington State Citizens Committee on Pipeline Safety Richard B. Kuprewicz President, Accufacts Inc. kuprewicz@comcast.net 1 Based on Information

454 views • 14 slides
Parallel Finite Element Simulations of Dynamic Earthquake Rupture and Seismic Wave Propagation

Parallel Finite Element Simulations of Dynamic Earthquake Rupture and Seismic Wave Propagation

Parallel Finite Element Simulations of Dynamic Earthquake Rupture and Seismic Wave Propagation Benchun Duan and Dunyu Liu Department of Geology and Geophysics D r Texas A&M University Fall, 2018 1 Earth Why Do Earthquakes Happen?

316 views • 6 slides
A rare case of traumatic diaphragmatic rupture with delayed presentation Article in International

A rare case of traumatic diaphragmatic rupture with delayed presentation Article in International

See discussions, stats, and author profiles for this publication at: https://www.researchgate.net/publication/277327737 A rare case of traumatic diaphragmatic rupture with delayed presentation Article in International Journal of Biomedical Research

188 views • 4 slides
Finite-time rupture in thin films driven by non-conservative effects zoom-in 8 8 8 8 0.3

Finite-time rupture in thin films driven by non-conservative effects zoom-in 8 8 8 8 0.3

ICERM, Making a Splash workshop, March 2017 Finite-time rupture in thin films driven by non-conservative effects zoom-in 8 8 8 8 0.3 0.2 6 6 6 6 0.1 h ( x, t ) h ( x, t ) h ( x, t ) h ( x, t ) 0 40 45 50 55 60 4 4 4 4 x 2

330 views • 19 slides
UC UC SF SF Disclosures EVAR for Rupture: Royalties and research grant Trial Data and

UC UC SF SF Disclosures EVAR for Rupture: Royalties and research grant Trial Data and

UC UC SF SF Disclosures EVAR for Rupture: Royalties and research grant Trial Data and Practice support from Cook Medical, Inc. Jade S. Hiramoto, MD, MAS April 14, 2016 VASCULAR SURGERY UC SAN FRANCISCO VASCULAR SURGERY UC

237 views • 6 slides
Dynamic Rupture Simulation Methods Luis A. Dalguer Consultant at 3Q-Lab GmbH , Switzerland

Dynamic Rupture Simulation Methods Luis A. Dalguer Consultant at 3Q-Lab GmbH , Switzerland

Dynamic Rupture Simulation Methods Luis A. Dalguer Consultant at 3Q-Lab GmbH , Switzerland Visiting professor at DPRI, Kyoto University, Japan Adjunct Professor at Aichi Institute of Technology, Japan Content Introduction: Fault complexity

489 views • 38 slides
Generic Attacks on Stream Ciphers John Mattsson Generic Attacks on Stream Ciphers 2/22

Generic Attacks on Stream Ciphers John Mattsson Generic Attacks on Stream Ciphers 2/22

Generic Attacks on Stream Ciphers John Mattsson Generic Attacks on Stream Ciphers 2/22 Overview What is a stream cipher? Classification of attacks Different Attacks Exhaustive Key Search Time Memory Tradeoffs

656 views • 22 slides
GENDER BASED DIFFERENCES IN ABDOMINAL AORTIC ANEURYSM (AAA) RUPTURE -Srikrishna Varun Malayala,

GENDER BASED DIFFERENCES IN ABDOMINAL AORTIC ANEURYSM (AAA) RUPTURE -Srikrishna Varun Malayala,

GENDER BASED DIFFERENCES IN ABDOMINAL AORTIC ANEURYSM (AAA) RUPTURE -Srikrishna Varun Malayala, MBBS Mentors: -Khalid J Qazi, MD, MACP -Paul M Anain, MD 1. http:/ / a o rtic ste nts.c o m/ wha t-is-a b do mina l-a o rtic -a ne urysm/ (05/

565 views • 34 slides
Wireless Security Wireless Network Attacks Access control attacks These attacks attempt to

Wireless Security Wireless Network Attacks Access control attacks These attacks attempt to

Wireless Security Wireless Network Attacks Access control attacks These attacks attempt to penetrate a network by using wireless or evading WLAN access control measures, like AP MAC filters and 802.1X port access controls. Type of Attack

184 views • 7 slides
RBMK SP-2 Validation Results RBMK SP-2 Validation Results (KS PH Rupture Simulation) (KS PH

RBMK SP-2 Validation Results RBMK SP-2 Validation Results (KS PH Rupture Simulation) (KS PH

International Nuclear Safety and Cooperation International Nuclear Safety and Cooperation RBMK SP-2 Validation Results RBMK SP-2 Validation Results (KS PH Rupture Simulation) (KS PH Rupture Simulation) Bruce Schmitt Bruce Schmitt Battelle,

420 views • 13 slides

More recommend