tutamen a next generation secret storage system
play

Tutamen: A Next-Generation Secret-Storage System Andy Sayler, - PowerPoint PPT Presentation

Oct 21, 2022 •251 likes •2.19k views

Tutamen: A Next-Generation Secret-Storage System Andy Sayler, Taylor Andrews, Matt Monaco, and Dirk Grunwald Presented by Andy Sayler SoCC 2016 10/06/16 SFg5asknmc6e SFg5asknmc6e SFg5asknmc6e DTrump GreatPassword Secrets SFg5asknmc6e

  1. Tutamen: A Next-Generation Secret-Storage System Andy Sayler, Taylor Andrews, Matt Monaco, and Dirk Grunwald Presented by Andy Sayler SoCC 2016 10/06/16

  6. SFg5asknmc6e

  7. SFg5asknmc6e

  8. SFg5asknmc6e DTrump GreatPassword

  9. Secrets SFg5asknmc6e DTrump GreatPassword

  10. Modern Use Cases

  11. Multi-Device Access

  12. Multi-User Sharing

  13. Cloud Infrastructure

  14. Secret-Storage Problem

  15. Secret-Storage Problem How do we store and protect secrets while also supporting a range of modern use cases?

  16. Secret-Storage as a Service

  18. Storage

  19. Storage Access Control

  20. Storage Access Control Auditing

  23. - Requires single (semi-)trusted third party - Not designed for automated use cases

  24. - Requires single (semi-)trusted third party - Not designed for automated use cases

  25. - Requires single (semi-)trusted third party - Not designed for automated use cases - Lacks support for out-of-band approval - Designed for single administrative domain

  26. Tutamen: Next-Gen Secret-Storage

  27. Goals

  28. Flexible Authentication Plugins for Multi-factor, Out-of-Band, Etc Auth

  29. Flexible Authentication Plugins for Multi-factor, Out-of-Band, Etc Auth Minimally Trusted Infrastructure Sharding Across Multiple Servers

  30. Flexible Authentication Plugins for Multi-factor, Out-of-Band, Etc Auth Minimally Trusted Infrastructure Sharding Across Multiple Servers Beyond a Single Administrative Domain Distributed Federation Between Servers

  31. Architecture

  33. Storage Server

  34. Storage Server Access Control Server

  35. Storage Server Access Control Server Application

  36. Storage Server Access Control Server Client Application

  37. Storage Server Access Control Server Token Request Token Response Mutual TLS Client Application

  38. Storage Server Access Control Server Token Request S t o Token Response r Fetch Secret e TLS w/ Token S Mutual TLS e c r e t Client Application

  39. Storage Server Access Control Server Public Token Signing Token Request Key S t o Token Response r Fetch Secret e TLS w/ Token S Mutual TLS e c r e t Client Application

  41. Storage Server

  42. Collection Storage Server

  43. Collection Storage Server Secret

  44. Collection AC Srv URL Storage Server Secret AC Srv URL AC Srv URL

  45. Collection AC Srv URL # AC Srv Required Storage Server Secret AC Srv URL AC Srv URL

  47. Access Control Server

  48. Access Control Server Account

  49. Access Control Server Account Client

  50. Access Control Server Account Authenticator Client

  51. Access Control Server Account Authenticator Client Verifier

  52. Access Control Server Account Authenticator Client Verifier Account ID Account ID Account ID

  53. Access Control Server Account Authenticator Client Verifier Account ID Authenticator ID Account ID Authenticator ID Account ID Authenticator ID

  54. Access Control Server Account Authenticator Permissions Object Type Client Object ID Permission Name Verifier Account ID Authenticator ID Account ID Authenticator ID Account ID Authenticator ID

  55. Access Control Server Account Authenticator Permissions Object Type Client Object ID Permission Name Verifier Verifier ID Account ID Authenticator ID Verifier ID Account ID Authenticator ID Verifier ID Account ID Authenticator ID

  56. Why Place Trust In Single Servers?

  57. Multi-Server Operation

  59. AC Server A AC Server B

  60. Storage Server A AC Server A Storage Server B AC Server B Storage Server C

  61. Storage Server A AC Server A Storage Server B AC Server B Storage Server C Application

  62. Storage Server A AC Server A Storage Server B s n e k o T AC Server B Storage Server C Application

  63. Storage Server A Public Signing Keys AC Server A Storage Server B Tokens Shard AC Server B Storage Server C Application

  64. Storage Server A Public Signing Keys AC Server A Storage Server B AC Server B T o k Storage Server C e S n h s a r d Application

  65. Storage Server A AC Server A Public Signing Keys Storage Server B AC Server B Storage Server C Tokens Shard Application

  66. Storage Server A AC Server A Storage Server B AC Server B Storage Server C Secret Application

  67. Secret Retrieval

  68. Secret Retrieval w/ Out of Band Human-in-the-Loop

  70. Permissions for Collection cf3529eb13be: { read: [ Verifier a74b2e2d493d ] }

  71. Permissions for Collection cf3529eb13be: { read: [ Verifier a74b2e2d493d ] } Verifier a74b2e2d493d { Accounts: [ Account cceb832edcdb ] } Authenticators: [ Authenticator 34e85e1bb264 ] }

  72. Permissions for Collection cf3529eb13be: { read: [ Verifier a74b2e2d493d ] } Verifier a74b2e2d493d { Accounts: [ Account cceb832edcdb ] } Authenticators: [ Authenticator 34e85e1bb264 ] } Authenticator 34e85e1bb264 { Plugin: SMS Challenge/Response }

  73. Account Human ACS A ACS B SS A SS B SS C e m i T

  74. Account Human ACS A ACS B SS A SS B SS C 1. Request Collection read-sec e Tokens m i T

  75. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> 1. Request Collection read-sec e Tokens m i T

  76. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> 1. Request 1b. Collection Confirm read-sec via SMS e Tokens m i T

  77. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> <SMS challenge> 1. Request 1b. Collection Confirm read-sec via SMS e Tokens m i T

  78. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> <SMS challenge> 1. Request 1b. Collection Confirm <SMS reply> read-sec via SMS e Tokens m i T

  79. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> <SMS challenge> 1. Request 1b. Collection Confirm <SMS reply> read-sec via SMS e Tokens m i T <tokens>

  80. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> <SMS challenge> 1. Request 1b. Collection Confirm <SMS reply> read-sec via SMS e Tokens m i T <tokens> 2. Read Secret from Collection

  81. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> <SMS challenge> 1. Request 1b. Collection Confirm <SMS reply> read-sec via SMS e Tokens m i T <tokens> <tokens, uuid> 2. Read Secret from Collection

  82. Account Human ACS A ACS B SS A SS B SS C <“col”, ”read-sec”, uuid> <SMS challenge> 1. Request 1b. Collection Confirm <SMS reply> read-sec via SMS e Tokens m i T <tokens> <tokens, uuid> 2. Read Secret <secret shards> from Collection

  83. Applications

  84. Fusebox: Tutamen-backed Dropbox Client Implementation by Taylor Andrews

  92. Tutamen-backed dm-crypt/LUKS FDE Implementation by Matt Monaco

  95. 1.2.3.4/24

  96. SMS Challenge

  97. SMS Challenge 1.2.3.4/24

  98. SMS Challenge 1.2.3.4/24

  99. ✓ SMS Challenge ✓ ✓ 1.2.3.4/24

  100. ✓ SMS Challenge ✓ ✓ 1.2.3.4/24

Recommend

Fifth generation Melgarejo, innovating since 1780 When someone asks about our secret to keep

Fifth generation Melgarejo, innovating since 1780 When someone asks about our secret to keep

Fifth generation Melgarejo, innovating since 1780 When someone asks about our secret to keep producing an extra virgin olive oil of the highest quality for fjve generations, our answer is as simple as sincere: Our secret is that we are not

415 views • 40 slides
ECE590-03 Enterprise Storage Architecture Fall 2016 Survey of Next-Generation Storage Tyler

ECE590-03 Enterprise Storage Architecture Fall 2016 Survey of Next-Generation Storage Tyler

ECE590-03 Enterprise Storage Architecture Fall 2016 Survey of Next-Generation Storage Tyler Bletsch Duke University Lots of possible avenues... Wikipedia list of emerging technologies for storage: Thats a lot of things! Most

263 views • 23 slides
ECE590-03 Enterprise Storage Architecture Fall 2018 Survey of Next-Generation Storage Tyler

ECE590-03 Enterprise Storage Architecture Fall 2018 Survey of Next-Generation Storage Tyler

ECE590-03 Enterprise Storage Architecture Fall 2018 Survey of Next-Generation Storage Tyler Bletsch Duke University Lots of possible avenues... Wikipedia list of emerging technologies for storage: Thats a lot of things! Most

439 views • 23 slides
HI-STORM MPC STORAGE SYSTEM FOR VERMONT YANKEE By Dr. Kris Singh, President &amp; CEO Holtec

HI-STORM MPC STORAGE SYSTEM FOR VERMONT YANKEE By Dr. Kris Singh, President &amp; CEO Holtec

HI-STORM MPC STORAGE SYSTEM FOR VERMONT YANKEE By Dr. Kris Singh, President &amp; CEO Holtec International June 25, 2015 a generation ahead by design History of Dry Storage at Vermont Yankee Nuclear Power Station Certificate of Public Good

527 views • 14 slides
Achievement System in the World Clarity The True Secret to Success Clarity The True Secret

Achievement System in the World Clarity The True Secret to Success Clarity The True Secret

How to Achieve Any The Most Powerful Broadcast Starting Soon Achievement System in the World Clarity The True Secret to Success Clarity The True Secret to Success with Mike Pettigrew Get Whatever You Want 10 Times Faster! What We

371 views • 24 slides
Mixed Generation Interconnection, Metering &amp; Settlement Netmetering Eligible, Class 1

Mixed Generation Interconnection, Metering &amp; Settlement Netmetering Eligible, Class 1

8/13/2014 Mixed Generation Interconnection, Metering &amp; Settlement Netmetering Eligible, Class 1 Renewable Energy Generation Combined with Other Distributed Generation/Storage 1 System Impact Issues Traditional Distributed Generation

242 views • 9 slides
Enterprise Storage Architecture Fall 2019 Survey of Next-Generation Storage Tyler Bletsch Duke

Enterprise Storage Architecture Fall 2019 Survey of Next-Generation Storage Tyler Bletsch Duke

ECE590-03 Enterprise Storage Architecture Fall 2019 Survey of Next-Generation Storage Tyler Bletsch Duke University Lots of possible avenues... Wikipedia list of emerging technologies for storage: Thats a lot of things! Most

929 views • 27 slides
Secret-Key Generation from Physics Onur G unl u onur.gunlu@tum.de Supervisor: Gerhard

Secret-Key Generation from Physics Onur G unl u onur.gunlu@tum.de Supervisor: Gerhard

Institute for Communications Engineering Technische Universit at M unchen Secret-Key Generation from Physics Onur G unl u onur.gunlu@tum.de Supervisor: Gerhard Kramer January, 2015 - SPCodingSchool, Campinas - Brazil Onur G

188 views • 4 slides
A Simulation-based Evaluation of a Hybrid Storage System combining P2P, F2F, and Cloud storage

A Simulation-based Evaluation of a Hybrid Storage System combining P2P, F2F, and Cloud storage

. . A Simulation-based Evaluation of a Hybrid Storage System combining P2P, F2F, and Cloud storage with a Distributed Reputation System Anders Skoglund andsk668@student.liu.se November 04, 2013 . Cloud storage P2P storage F2F storage

660 views • 36 slides
Sec ecur urity ity Fea eatures ures for or SSD Why Storage Security is Important ? Dilemma

Sec ecur urity ity Fea eatures ures for or SSD Why Storage Security is Important ? Dilemma

Sec ecur urity ity Fea eatures ures for or SSD Why Storage Security is Important ? Dilemma emmas ! A secret known by two is no longer a secret : https://www.symantec.com/about/newsroom/press-kits#

621 views • 15 slides
A Language for Probabilistically Oblivious Computation David Darais , Ian Sweet, Chang Liu,

A Language for Probabilistically Oblivious Computation David Darais , Ian Sweet, Chang Liu,

A Language for Probabilistically Oblivious Computation David Darais , Ian Sweet, Chang Liu, Michael Hicks Secure Storage S[42] secret Cloud You s = S[42] Storage S[s] secret Implementation = encrypt the data Read/write indices

787 views • 59 slides
Secret Sharing and Visual Cryptography Outline Secret Sharing Visual Secret Sharing

Secret Sharing and Visual Cryptography Outline Secret Sharing Visual Secret Sharing

Secret Sharing and Visual Cryptography Outline Secret Sharing Visual Secret Sharing Constructions Moir Cryptography Issues Secret Sharing Secret Sharing Threshold Secret Sharing (Shamir, Blakely 1979) Motivation

1.32k views • 62 slides
YFS 1.0 is the next generation distributed file system for secure private, public and hybrid

YFS 1.0 is the next generation distributed file system for secure private, public and hybrid

YFS 1.0 is the next generation distributed file system for secure private, public and hybrid cloud storage deployments. YFS 1.0 is not a hardware appliance. Backward compatible with IBM AFS 3.6 and OpenAFS. No flag day required

359 views • 16 slides
VICTORIA'S SECRET THE WORLD'S BEST BRAS OVERVIEW Victoria's Secret Victoria's PINK Secret

VICTORIA'S SECRET THE WORLD'S BEST BRAS OVERVIEW Victoria's Secret Victoria's PINK Secret

NEW YORK LONDON SHANGHAI VICTORIA'S SECRET THE WORLD'S BEST BRAS OVERVIEW Victoria's Secret Victoria's PINK Secret Sport WE ARE MISSION VISION VALUES 8.1% GROWTH BY 2022 3BN DOMESTIC VALUE STATS WE OFFER LINGERIE PANTIES

340 views • 30 slides
Today. Polynomials. Secret Sharing. A secret! I have a secret! A number from 0 to 10. What is

Today. Polynomials. Secret Sharing. A secret! I have a secret! A number from 0 to 10. What is

Today. Polynomials. Secret Sharing. A secret! I have a secret! A number from 0 to 10. What is it? Any one of you knows nothing! Any two of you can figure it out! Example Applications: Nuclear launch: need at least 3 out of 5 people to

513 views • 23 slides
Designing and launching the next-generation database system: from whiteboard to production Guido

Designing and launching the next-generation database system: from whiteboard to production Guido

April 25, 2018 Designing and launching the next-generation database system: from whiteboard to production Guido Iaquinti $whoami Guido Iaquinti Operations Engineer in Dublin Member of the storage team No previous DBA experience

3.28k views • 99 slides
Module 2: Computer-System Structures Computer System Operation I/O Structure Storage

Module 2: Computer-System Structures Computer System Operation I/O Structure Storage

Module 2: Computer-System Structures Computer System Operation I/O Structure Storage Structure Storage Hierarchy Hardware Protection General System Architecture Silberschatz and Galvin 1999 Operating System Concepts

400 views • 24 slides
THE NEXT GENERATION CERTAINTY IN SHARED STORAGE ENVIRONMENTS Adam Litke - alitke@redhat.com

THE NEXT GENERATION CERTAINTY IN SHARED STORAGE ENVIRONMENTS Adam Litke - alitke@redhat.com

THE NEXT GENERATION CERTAINTY IN SHARED STORAGE ENVIRONMENTS Adam Litke - alitke@redhat.com Senior Soware Engineer - Red Hat FOSDEM 2017 - 04 February 2017 The Next Generation - FOSDEM 04.02.2017 AGENDA oVirt shared storage architecture

735 views • 32 slides
Electricity Generation U.S. vs. Ky Ky Elec. Generation by Type U.S. Elec. Generation by Type

Electricity Generation U.S. vs. Ky Ky Elec. Generation by Type U.S. Elec. Generation by Type

Electricity Generation U.S. vs. Ky Ky Elec. Generation by Type U.S. Elec. Generation by Type 100% Potential 98% 96% 94% BTU per Unit of Coal Loading Mining Transportation Storage Transformation

552 views • 8 slides
Chapter 2: Computer-System Structures Computer System Operation I/O Structure Storage

Chapter 2: Computer-System Structures Computer System Operation I/O Structure Storage

Chapter 2: Computer-System Structures Computer System Operation I/O Structure Storage Structure Storage Hierarchy Hardware Protection General System Architecture Operating System Concepts 2.1 Silberschatz, Galvin and

462 views • 29 slides
Hybrid Energy Storage System (HESS) Product Overview Smart Energy Storage System Complete

Hybrid Energy Storage System (HESS) Product Overview Smart Energy Storage System Complete

Hybrid Energy Storage System (HESS) Product Overview Smart Energy Storage System Complete Hybrid Solution Powered by Lithium Ion (Li-ion) batteries Compact dimensions Capable to run sustained loads Voice enabled (Google

346 views • 13 slides
Secret Sharing See: Shamir, How to Share a Secret , CACM, Vol. 22, No. 11, November 1979, pp.

Secret Sharing See: Shamir, How to Share a Secret , CACM, Vol. 22, No. 11, November 1979, pp.

Secret Sharing See: Shamir, How to Share a Secret , CACM, Vol. 22, No. 11, November 1979, pp. 612613 Eli Biham - May 3, 2005 c 497 Secret Sharing (17) How to Keep a Secret Key Securely Information can be secured by encryption under a

597 views • 23 slides
Module 2: Computer-System Structures Computer-System Operation I/O Structure Storage

Module 2: Computer-System Structures Computer-System Operation I/O Structure Storage

' $ Module 2: Computer-System Structures Computer-System Operation I/O Structure Storage Structure Storage Hierarchy Hardware Protection General System Architecture &amp; % Silberschatz and Galvin c Operating System

225 views • 19 slides
Module 2: Computer-System Structures Computer-System Operation I/O Structure Storage

Module 2: Computer-System Structures Computer-System Operation I/O Structure Storage

' $ Module 2: Computer-System Structures Computer-System Operation I/O Structure Storage Structure Storage Hierarchy Hardware Protection General System Architecture &amp; % Operating System Concepts 2.1 Silberschatz

250 views • 10 slides

More recommend