zero interaction authentication
play

Zero-Interaction Authentication Mark Corner, Brian Noble - PowerPoint PPT Presentation

Dec 06, 2022 •147 likes •580 views

Zero-Interaction Authentication Mark Corner, Brian Noble University of Michigan Presented by Martin Meyer Overview Introduction Design of System Encryption Model Authentication Token File Ownership Departure and Return

  1. Zero-Interaction Authentication Mark Corner, Brian Noble University of Michigan Presented by Martin Meyer

  2. Overview � Introduction • Design of System – Encryption Model – Authentication Token – File Ownership – Departure and Return • Implementation • Evaluation 2 Worcester Polytechnic Institute

  3. What is ZIA? • Any small device can be stolen • If an unprotected laptop is stolen, assume all data is compromised and invalidate it • Encryption of data required authentication • If security inconveniences users they will try to bypass it • If data is secure, just buy a replacement and restore from backups • Create a way to automatically authenticate the user when they are nearby 3 Worcester Polytechnic Institute

  4. Securing with Encryption • Encryption most common defense – Requires initial decryption key – Key remains for duration of session – Steal lappy while logged in and data is compromised – To be secure, frequent reauthorization – Reauthorization is burdensome for user 4 Worcester Polytechnic Institute

  5. Authentication Token • User can wear an authentication token – Small, unobtrusive device – Wireless authentication with computer when in range – Token is less vulnerable to theft since not often set down 5 Worcester Polytechnic Institute

  6. Overview • Introduction � Design of System – Encryption Model – Authentication Token – File Ownership – Departure and Return • Implementation • Evaluation 6 Worcester Polytechnic Institute

  7. Design Outline • Provide encryptions without affecting performance or usability • Since token should be low- performance, encrypt at host • Session between token and laptop encrypted to secure key transfers • Prevent successful hacks 7 Worcester Polytechnic Institute

  8. Threat and Trust Model • Focus on defense against physical possession of laptop – Leaving a session opened is bad – Console access can result in root access – Can bypass OS entirely • Protect from exploitation of wireless link – Observation, modification, insertion of messages – Eavesdropping to acquire key information 8 Worcester Polytechnic Institute

  9. Threat and Trust (cont’d) • Assume central administrative domain • Assume a central authority for key management and rights revocation • The token and laptop form a trusted computing base 9 Worcester Polytechnic Institute

  10. Trust Model Shortcomings • Does NOT defend against trusted but malicious users • No protection for remote exploits • Jamming of wireless channel can deny access to a user’s files 10 Worcester Polytechnic Institute

  11. Key-Encrypting Keys – K k (K e ) • Don’t want to save every single key on the token • Encrypt the files with one key, but encrypt that key with another key – The encryption key is K e – The key-encrypting key is K k (K e ) • If user rights change, just re-encrypt all K e with a new K k 11 Worcester Polytechnic Institute

  12. Key-Encrypting Keys (cont’d) • Local administrative authority responsible for K k assignments • Each laptop needs an asymmetric key for establishing session encryption • Key-encrypting keys must remain in escrow in case token is lost – Does not need to be highly available 12 Worcester Polytechnic Institute

  13. Users, Groups, Doom. • Laptops usually assigned to specific users, but sometimes more than one • Allow the file system driver to implement this as it sees fit • Can implement a user/group/world system similar to Unix – Can provide good user functionality 13 Worcester Polytechnic Institute

  14. Users, Goups, Doom. (cont’d) • Design the K e so it can be unencrypted by multiple keys – Access rights to files depend on which key used – K u (K e ) is a key for an owning user – K g (K e ) is a key for an owning group – K w (K e ) is a key for any authorized laptop user, one K w per machine – Each K e can be encrypted by a K u & K g 14 Worcester Polytechnic Institute

  15. User/Group Management • What happens when a user leaves a group? – Must change K g to a new K g ’ • User may have access to previous K e – need to create K e ’ and re-encrypt all files • Re-encrypting can be done incrementally – Distribute new K g ’ to authorized users and update all K e to accept K g ’ – Incrementally re-encrypt files so they no longer accept K g 15 Worcester Polytechnic Institute

  16. Laptop Vulnerabilities • When lappy is stolen, files are secure • File keys and session keys are zeroed in memory • Private key must remain on laptop – If attacker recovers private key he can impersonate lappy • What if lappy is modified and returned? – Secure booting can protect from this 16 Worcester Polytechnic Institute

  17. Token Vulnerabilities • Tokens secure because they are worn, not carried • Lost or stolen tokens could divulge their K k – PIN-protected, tamper-resistant hardware can be used • Since token is more secure than laptop, authentication can be less frequent – Once a day may be adequate to provide protection – Important to prevent incentive in stealing a token, then later the associated laptop 17 Worcester Polytechnic Institute

  18. Token Vulnerabilities (cont’d) • What if a laptop were stolen then the thief tailgated near an authorized user from same domain? – Thief could force stolen laptop to generate key decryption requests • To prevent tailgating, enforce laptop/token binding – Similar to Bluetooth pairing – Binding ends with token’s session – Tokens can be bound to more than one laptop – Laptops can be bound to more than one token 18 Worcester Polytechnic Institute

  19. Token Authentication • Goals for binding: – Mutual authentication – Transfer of session encryption key • Hosts must be assigned a trusted public key – Use the same CA that assigns key-encrypting keys • Station-to-Station protocol and Diffie-Hellman key exchange • Each packet includes a nonce (unique identifier) – Prevents replay attacks • Message authentication code – Basically a verification hash 19 Worcester Polytechnic Institute

  20. Assigning File Keys • What granularity should be used for keys? – File, directory, file system? – Small grain limits potential exposure – Large grain eases key management • Key files assigned on per-directory basis – Physical data locations on disk favor this – Each directory has keyfile , contains K u and K g 20 Worcester Polytechnic Institute

  21. Handling Keys Efficiently • Key acquisition is a expensive – Cache decrypted keys – Overlap with disk I/O to mask seek time – Cannot overlap write/lookup, but not usually needed anyway • Creating directories has no caching – Prefetch keys from token on binding – Store extra keys on token – Background daemon to obtain more keys 21 Worcester Polytechnic Institute

  22. Departure and Return • Two reasons for no token response – User is absent – Dropped packet • Must recover from packet drop – Channel should be uncongested, so round-trip time is stable • No exponential backoff used – Retry if no response in twice expected time – Three maximum attempts 22 Worcester Polytechnic Institute

  23. Departure and Return • After 3 failed attempts, user is declared absent – Remove all file name caches – Encrypt all page cache in-place • On return, restore state quickly – Return caches, mark them valid – Must finish before the user is ready to resume • Larges possible cache can be encrypted within 5 seconds – Compromising in this time would be impressive • Disk operations will block while user is away • Fixes beacons could be used in buildings 23 Worcester Polytechnic Institute

  24. Overview • Introduction • Design of System – Encryption Model – Authentication Token – File Ownership – Departure and Return � Implementation • Evaluation 24 Worcester Polytechnic Institute

  25. Implementation • In-kernel module – Provides cryptographic I/O – Manages keys – Poll for token presence • User space authentication system – Client/server for token requests – Key generation • Linux 2.4.10 • FiST for stackable file 25 system Worcester Polytechnic Institute

  26. Kernel Module - VFS • Virtual File System (VFS) abstracts file system code in kernel • Stackable file systems separate upper and lower halves – Perform page transformations – CryptFS is part of 2.6 series, from FiST package 26 Worcester Polytechnic Institute

  27. Kernel Module - Encryption • Kernel module encrypts file pages and names • Encrypted with Rijndael (AES) – Good performance and it’s a standard – File size is preserved – Size of file names not preserved, Base-64 encoded so names are not rejected • Module responsible for prefetching fresh keys for directory creation • Module manages storage of encrypted keys, not visible in directory listing 27 Worcester Polytechnic Institute

Recommend

AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

SECURITY TOPICS PART 2 AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is who they say they are and therefore permitted to access the requested resources: getting entrance to a computer lab

833 views • 44 slides
HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the

HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the

HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the process of verifying the identity of the communicating principals to one another Usually sub-divided into Entity authentication Authentication

288 views • 10 slides
Authentication Most technical security safeguards have Authentication authentication as a

Authentication Most technical security safeguards have Authentication authentication as a

Authentication Most technical security safeguards have Authentication authentication as a precondition How to authenticate: Something you know Password, Secrets Something you have Smart Card, Token Something you are Biometrie

607 views • 4 slides
Seeing is Believing: Proximity-based Authentication Peter Pilgerstorfer | | Peter

Seeing is Believing: Proximity-based Authentication Peter Pilgerstorfer | | Peter

Source: [5] Seeing is Believing: Proximity-based Authentication Peter Pilgerstorfer | | Peter Pilgerstorfer 03.03.2015 1 Motivation Pairing without user interaction Traditional authentication E.g. enter/confirm shared PIN

270 views • 26 slides
Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

1.66k views • 27 slides
Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

613 views • 27 slides
A2: Broken Authentication and Session Management But first Authentication, Authorization,

A2: Broken Authentication and Session Management But first Authentication, Authorization,

A2: Broken Authentication and Session Management But first Authentication, Authorization, Sessions Authentication Determining user identity Multiple ways What you know (password) What you have (phone, RSA SecureID, Yubikey)

1.57k views • 28 slides
Web Authentication Thierry Sans Several Methods Local authentication with login and password

Web Authentication Thierry Sans Several Methods Local authentication with login and password

Web Authentication Thierry Sans Several Methods Local authentication with login and password Token-based authentication Third party authentication Local Authentication How to store and verify password? Clear Data can be hacked

615 views • 14 slides
The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch

The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch

The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch Security Engineer kbabioch@suse.de New authentication standards ... 2 Some authentication technologies ... 3 - Authentication theory -

1.28k views • 88 slides
Outline Introduction Authentication Basic authentication mechanisms CS 239

Outline Introduction Authentication Basic authentication mechanisms CS 239

Outline Introduction Authentication Basic authentication mechanisms CS 239 Authentication on a single machine Computer Security Authentication across a network February 21, 2007 Lecture 9 Lecture 9 Page 1 Page 2 CS 236,

302 views • 8 slides
Using Trusted Execution Environments in Two-Factor Authentication Roland van Rijswijk-Deij M.Sc.

Using Trusted Execution Environments in Two-Factor Authentication Roland van Rijswijk-Deij M.Sc.

Introduction Trusted Execution and Two-Factor Authentication User Interaction Discussion Conclusions and Future Work Using Trusted Execution Environments in Two-Factor Authentication Roland van Rijswijk-Deij M.Sc. rijswijk@cs.ru.nl

299 views • 14 slides
I know who you are, but you can't come in Authentication and single sign-on in the SAS platform

I know who you are, but you can't come in Authentication and single sign-on in the SAS platform

I know who you are, but you can't come in Authentication and single sign-on in the SAS platform Agenda Authentication Inbound authentication Outbound authentication Single Sign-on Definitions Stage Process Method Physical

781 views • 48 slides
HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been proposed for applications including: Encryption and authentication For detecting malicious alterations of design components For

645 views • 15 slides
1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

Authentication Protocols Guevara Noubir College of Computer and Information Science Northeastern University noubir@ccs.neu.edu Outline Overview of Authentication Systems [Chapter 9] Authentication of People [Chapter 10]

396 views • 17 slides
THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication

THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication

THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication overview Current state of Authentication The future of authentication MY JOURNEY 2012-2015 2004-2011 2015-Present 1998-2004 Staff at MIT

453 views • 34 slides
User Authentication Passport Jason Situ Passport What is it? Passport is authentication

User Authentication Passport Jason Situ Passport What is it? Passport is authentication

User Authentication Passport Jason Situ Passport What is it? Passport is authentication middleware for Node. It is designed to serve a singular purpose: authenticate requests. Supports a comprehensive set of authentication mechanisms called

808 views • 16 slides
Simple Authentication Protocols Prof. Tom Austin San Jos State University What is a

Simple Authentication Protocols Prof. Tom Austin San Jos State University What is a

CS 166: Information Security Simple Authentication Protocols Prof. Tom Austin San Jos State University What is a Protocol? Rules for interaction, which can include: Human protocols e.g. raise your hand to ask a question

795 views • 76 slides
GESTURE-BASED USER AUTHENTICATION FOR MOBILE DEVICES Dennis Guse Quality and Usability Labs, TU

GESTURE-BASED USER AUTHENTICATION FOR MOBILE DEVICES Dennis Guse Quality and Usability Labs, TU

GESTURE-BASED USER AUTHENTICATION FOR MOBILE DEVICES Dennis Guse Quality and Usability Labs, TU Berlin 1 AUTHENTICATION ON MOBILE DEVICES Mobile Devices Interaction style Limitations 2 GESTURE-BASED USER AUTHENTICATION Personalized

239 views • 13 slides
Authentication, vulnerabilities, exploits, and the secure design principles of Saltzer and

Authentication, vulnerabilities, exploits, and the secure design principles of Saltzer and

Authentication, vulnerabilities, exploits, and the secure design principles of Saltzer and Schroeder Authentication in general Bishop: Authentication is the binding of an identity to a principal. Network-based authentication mechanisms

1.6k views • 43 slides
HOST PUF-Based Authentication Protocols ECE 525 PUF-Based Authentication Protocols The simplest

HOST PUF-Based Authentication Protocols ECE 525 PUF-Based Authentication Protocols The simplest

HOST PUF-Based Authentication Protocols ECE 525 PUF-Based Authentication Protocols The simplest mechanisms called challenge-response entity authentication exchange cleartext bitstrings directly, i.e., no cryptographic primitives are used A PUF

1.08k views • 38 slides
Information Security Identification and authentication Advanced User Authentication II

Information Security Identification and authentication Advanced User Authentication II

Information Security Identification and authentication Advanced User Authentication II 2016-01-29 Amund Hunstad Guest Lecturer, amund@foi.se Agenda for lecture I within this part of the course Background Authentication eID

683 views • 44 slides
Information Security Identification and authentication Advanced User Authentication II

Information Security Identification and authentication Advanced User Authentication II

Information Security Identification and authentication Advanced User Authentication II 2019-02-08 Amund Hunstad Guest Lecturer, amund@foi.se Agenda for lecture I within this part of the course Background Authentication eID

1.19k views • 102 slides
e-authentication Practices: A road to global implementation of e-authentication for

e-authentication Practices: A road to global implementation of e-authentication for

Market-driven e-authentication Practices: A road to global implementation of e-authentication for cross-bordered trade document Mr. Wanawit Ahkuputra Deputy Executive Director of ETDA Thailand HOD and AFACT chair. Building Soft

533 views • 13 slides
IT350 Web and Internet Programming SlideSet #18: HTTP Authentication

IT350 Web and Internet Programming SlideSet #18: HTTP Authentication

IT350 Web and Internet Programming SlideSet #18: HTTP Authentication http://www.httpwatch.com/httpgallery/authentication/ http://httpd.apache.org/docs/2.2/howto/auth.html Outline HTTP Basic Authentication HTTP Digest Authentication 1

349 views • 8 slides

More recommend