Upload File

security & identity in alljoyn 14.06

23
Identity & Security In AllJoyn 14.06 Tim Kellogg Saturday, July 19 2014

Upload: kellogh

Post on 27-Aug-2014

420 views

Category:

Software


5 download

Report

Tags:

DESCRIPTION

My presentation for Cloud Identity Summit 2014. I will be talking about the security and identity features that AllJoyn offers in it's 14.06 release.

TRANSCRIPT

Page 1: Security & Identity in AllJoyn 14.06

Identity & Security In AllJoyn 14.06

Tim KelloggSaturday, July 19 2014

Page 2: Security & Identity in AllJoyn 14.06

https://github.com/tkellogg/alljoyn-examples

https://github.com/tkellogg/alljoyn-core/tree/master/alljoyn_core/src

https://github.com/tkellogg/alljoyn-examples
https://github.com/tkellogg/alljoyn-examples
https://github.com/tkellogg/alljoyn-examples
https://github.com/tkellogg/alljoyn-core/tree/master/alljoyn_core/src
https://github.com/tkellogg/alljoyn-core/tree/master/alljoyn_core/src
https://github.com/tkellogg/alljoyn-core/tree/master/alljoyn_core/src
Page 3: Security & Identity in AllJoyn 14.06

Embedded Security

Page 4: Security & Identity in AllJoyn 14.06

Mitsubishi EMI Incident (2003)• Brakes disabled when given 1000-10000x legal

levels of EMI radiation• Car thinks brakes are locked, so it releases• All within limits required by law

Page 5: Security & Identity in AllJoyn 14.06

Slammer Worm (2003)• Nuclear plant safety monitoring disabled for 5

hours• “The business value of access to the data within

the control center worth the risk of open connections between the control center and the corporate network”

• Unpatched MSSQL Server

Page 6: Security & Identity in AllJoyn 14.06

Hello, my name is Bruce Schneier and I think routers are super duper easy to hack, mostly because you nerds never

patch the software

https://www.schneier.com/essays/archives/2014/01/the_internet_of_thin.html

https://www.schneier.com/essays/archives/2014/01/the_internet_of_thin.html
https://www.schneier.com/essays/archives/2014/01/the_internet_of_thin.html
Page 7: Security & Identity in AllJoyn 14.06

University of Washington Study (2010)“We demonstrate that an attacker who is able to

infiltrate virtually any Electronic Control Unit (ECU) can leverage this ability to completely circumvent a

broad array of safety-critical systems”http://www.autosec.org/pubs/cars-oakland2010.

pdf

http://www.autosec.org/pubs/cars-oakland2010.pdf
http://www.autosec.org/pubs/cars-oakland2010.pdf
Page 8: Security & Identity in AllJoyn 14.06

Hey, check it out! I made my own

encryption algorithm

Page 9: Security & Identity in AllJoyn 14.06
Page 10: Security & Identity in AllJoyn 14.06

Embedded Needs “Rails”• Software Updates• Security & Identity• Communication• Media Streaming• User Interfaces

Page 11: Security & Identity in AllJoyn 14.06

Distributed Bus

Page 12: Security & Identity in AllJoyn 14.06

Distributed Bus

Page 13: Security & Identity in AllJoyn 14.06

Security

Page 14: Security & Identity in AllJoyn 14.06

Auth Listeners• ALLJOYN_RSA_KEYX – X.509 certificates• ALLJOYN_SRP_KEYX – Show Random PIN• ALLJOYN_SRP_LOGON – preset U/P table• ALLJOYN_ECDHE_NULL• ALLJOYN_ECDHE_PSK • ALLJOYN_ECDHE_ECDSA – DSA

Page 15: Security & Identity in AllJoyn 14.06

ALLJOYN_RSA_KEYX• RSA = Asymmetric key encryption• X.509 certificates– Trusted Certificate Authority

Page 16: Security & Identity in AllJoyn 14.06

SRP_KEYX & SRP_LOGON• Threshold Cryptography• No trust required to establish a secure

connection• LOGON = Username & Password• KEYX = A PIN is displayed

Page 17: Security & Identity in AllJoyn 14.06

ALLJOYN_SRP_KEYX

Page 18: Security & Identity in AllJoyn 14.06

ECDHE• Elliptic Curve (EC) Cryptography• DHE = Diffie-Hellman key Exchange– Symmetric key encryption

Page 19: Security & Identity in AllJoyn 14.06

ALLJOYN_ECDHE_NULL• Elliptic Curve Encryption• No verification of identity

Page 20: Security & Identity in AllJoyn 14.06

ALLJOYN_ECDHE_PSK• PSK = Pre-Shared Key• Service already has the client’s public key• A password may also be used

Page 21: Security & Identity in AllJoyn 14.06

ALLJOYN_ECDHE_ECDSA• ECDSA – Elliptic Curve Digital Signature

Algorithm• Certificate shows identity

Page 22: Security & Identity in AllJoyn 14.06
Page 23: Security & Identity in AllJoyn 14.06

Questions?

@kellogh

Practical Internet of Things


4th draft Annual Report 2020-21 14.06

Injaz Flyer 14.06 - INJAZ Bahrain

14.06 juny

CIS14: Handling Identity in AllJoyn 14.06

Introduction to the AllJoyn Gateway Agent

OCF Resource to AllJoyn Interface Mapping

Lecture 14.06.ppt

Fanprodut prezentacja shopcamp kraków 14.06

Introduction to AllJoyn

CamScanner 09-18-2020 14.06 - Houston Independent School

Voz Argentina Cordoba 14.06-15

Avantajele site urilor cu feed-uri rss 14.06

Przypływ-Odpływ 14.06-07.07.2013

Open Source Introduction to AllJoyn Project

Schlecker Prospekt 14.06-18.06.2011

Guia Retos Alljoyn

AllJoyn - Device System Bridge - Whitepaper v1.0

Jornada Formativa Qualcomm y Movilforum: Alljoyn

Building Internet of Things Devices with AllJoyn is AllJoyn? AllJoyn is... a system that allows devices to advertise and share their abilities with other devices around them. a protocol

CATÁLOGO 14.06

Secure Cloud and Remote Service Connections for AllJoyn ... · 24 November 2014 AllSeen Alliance 1 Secure Cloud and Remote Service Connections for AllJoyn Applications Art Lancaster

Titivillus 14.06 - lemmexico.com

CamScanner 05-18-2021 14.06

Guide to AllJoyn™ Development Using the Java SDK - Huihoodocs.huihoo.com/alljoyn/alljoyn-development-guide-java-sdk.pdf · Guide to AllJoyn™ Development Using the Java SDK Contents

Guido Schmutz 14.06 - DOAG

Using AllJoyn with Apache Cordova, Python & Node

Tesis Final.14.06

ONEM2M SERVICE LAYER PLATFORM –INITIAL … – AllJoyn Home G/W TV Vital Checker Fridge Server Application in the Smartphone Hospital Application AllJoyn oneM2M Network Architecture

Maximarkt Prospek 14.06-18.06.2011

PRIMERAS PLANAS 14.06

M2M and IoT Protocols: MQTT, ALLJOYN, DDS and COAP… · M2M and IoT Protocols: MQTT, ALLJOYN, DDS and COAP: Why, Where and When Geoff Brown, CEO [email protected] @M2MiCorp @GeoffreyBrown

instrukcja obsługi panelu konfiguracyjnego 14.06

AllJoyn Framework - University of Rochester Alljoyn lambda: An architecture for the management of smart environments in IoT, in Smart Computing Workshops (SMARTCOMP Workshops) M. Villari,

The AllJoyn™ Open Source Project 9 Open Source. Open Possibilities. Overview Designed to be easily portable to new hardware and OS platforms AllJoyn is a distributed software bus

14.06 Psikotes