Upload File

security through obscurity · 2019. 9. 3. · quizduell. extremely popular in germany. extremely...

  • Home
  • Documents
  • Security Through Obscurity · 2019. 9. 3. · Quizduell. extremely popular in Germany. extremely popular in Germany. LetÕs play a round of Quizduell ;) Curiosity. November 2012 -
37
Security Through Obscurity ... powered by HTTPS! Peter Frühwirt, SBA Research Sebastian Schrittwieser, FH St. Pölten redacted version

Upload: others

Post on 04-Feb-2021

3 views

Category:

Documents


0 download

Report

TRANSCRIPT

  • Security Through Obscurity... powered by HTTPS!

    Peter Frühwirt, SBA ResearchSebastian Schrittwieser, FH St. Pölten

    redacted version

  • Live-Demo onWowtalk

  • ServerAttackerPhone

    1. (HTTPS): Request

    2b. (HTTPS): PIN

    TargetPhone

    2a. (SMS): PIN

    SMS Proxy

  • SSL != protection against protocol analysis

  • SSL interception enables man-in-the-middle attacks

    for protocol analysis purposes

  • transport layer encryption cannot replace good protocol design!

  • Certificates?

  • http://opensource.apple.com/source/Security/Security-55471/libsecurity_ssl/lib/sslKeyExchange.c

  • Quizduell

  • extremely popular in Germany

  • extremely popular in Germany

  • Let’s play a round of Quizduell ;)

  • Curiosity

  • November 2012 - May 2013

  • 326 layers

  • 69 billion small cubes

  • 4 million players

  • 3,000,000,000 coins for a diamond chisel

  • Bonus points for clearing the entire screen!

  • Parameter for multiplieris set by the server!

  • [...]&backgroundColor=blue&backgroundText=Curiosity&bonusMultiplier=10&hardwareID=&[...]

    10000000

    https://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggghttps://feelinsonice-hrd.appspot.com/bq/blob?id=898240380188930800r&req_token=d4bae532f7e2fae301a693acb7d9478c5cb0d1b8bb3d88b2d05e02ee1ed977ec&timestamp=1380188936948&username=blauggg

  • Photoswap

  • http://www.server.com/images/12345.jpghttp://www.server.com/images/12347.jpghttp://www.server.com/images/12349.jpghttp://www.server.com/images/12351.jpghttp://www.server.com/images/12353.jpg

    http://www.server.com/images/12345.jpghttp://www.server.com/images/12345.jpghttp://www.server.com/images/12345.jpghttp://www.server.com/images/12345.jpghttp://www.server.com/images/12345.jpghttp://www.server.com/images/12345.jpghttp://www.server.com/images/12345.jpghttp://www.server.com/images/12345.jpghttp://www.server.com/images/12345.jpghttp://www.server.com/images/12345.jpg

  • for;i;in;{1..12345};;dowget;Ak;http://www.server.com/images/$i.jpg;done

    http://www.server.com/images/$i.jpghttp://www.server.com/images/$i.jpg

  • Demo

  • Countermeasures?

  • Certificate Pinning

    Verification if particular certificate is used

  • Reduced costs

    Increased security

    Less flexibility

  • 75 %

    25 %

    Facebook

    Facebook Messenger

    Shazam

    eBay

    ÖBB Scotty

    AntiVirus Security

    Tango

    Google Earth

    LOVOO

    Geizhals

    Geizhals

    Stocard

    AutoScout24wetter.com

    Twitter

    LogoQuizWhatsapp

    Snapchat

    Tinder

    NavigonRuntastic

    iMessage

    Quizduell

    AppStore

    Viber

    certificate pinningno certificate pinning

    HikeRublys

  • E-Banking apps?

    Bank Austria

    Erste BankSparkasse

    Commerzbank

    Eniteo DZ Bank

    ING Diba

    Raiffeisen Bank

    Postbank

    Union Bank

    Volksbank

    Volksbanken Raiffeisenbanken

    Deutsche Bank

    UBS Mobile Banking

    Alpha Bank

    Westpack Banking

    BNI Internet Banking

    BPN Paribas

    Bank Republic

    Targobank

  • never ever trust the client (even if it’s your own client)!

    server-side validation of every client request

    (the 80’s called and want their advice back)

  • secure side channel

    establish a trusted second channel

  • Conclusions

  • ‣ Many smartphone applications implement insecure protocols

    ‣ These protocols are hidden behind transport encryption, which does not prevent protocol analysis

    ‣ Don’t rely on Security through Obscurity

  • Peter Frühwirt

    IT-Sicherheitsforscher, SBA Re

    search

    Doktoratsstudent TU Wien

    [email protected]

    Mobile Security | Digital foren

    sics in Databases

    Peter Frühwirt

    IT-Sicherheitsforscher, SBA Re

    search

    Doktoratsstudent TU Wien

    [email protected]

    Mobile Security | Digital foren

    sics in Databases

  • Sebastian Schrittwieser

    Dozent Fachhochschule St. P

    ölten

    Doktoratsstudent TU Wien

    sebastian.schrittwieser@fhst

    p.ac.at

    Code obfuscation | Fingerprin

    ting of anonymized microdata

    Mobile security | Digital foren

    sics | Research ethics

    Sebastian Schrittwieser

    Dozent Fachhochschule St. P

    ölten

    Doktoratsstudent TU Wien

    sebastian.schrittwieser@fhst

    p.ac.at

    Code obfuscation | Fingerprin

    ting of anonymized microdata

    Mobile security | Digital foren

    sics | Research ethics


E-LEARNING & TRAINING · 2019. 2. 4. · Lernkarten, Tests und Quizduell. Für Unternehmen mit Filialstruktur dient efront integriert in intratoolls digitalisierte a Kommunikations-

Extremely Professional

Extremely robust Extremely compact Extremely flexible

The quick and convenient way to heat any room€¦ · Benefits for your home › Extremely rapid heating of rooms › Small footprint › Ideal for bathrooms › Made in Germany With

The Ultimate Quiz Challenge (Berufsschule) · festigen. In Anlehnung an die beliebte App „Quizduell“ trai nieren die Lernenden mit diesem Spiel ihren Wortschatz und wiederholen

Malta Extremely Beautiful

170615 success story itv - ELEMENTS Media Storage · Gejagt“ and ”Quizduell“ on DAS ERSTE. Other national and international cli-ents of ITV Studios Germany are WDR, SWR, RTL

EXTREMELY POWERFUL

Spielend fit in Mathe: Funktionen und Zuordnungen · 2018. 7. 31. · S. 22 Funktionen-Quizduell Bei diesem Spiel tritt die Lerngruppe in zwei Teams gegeneinander an. Dabei können

00 Quizduell Buchdatei - mvg · 2014. 10. 20. · Quizduell war für alle quizsüchtigen Deutschen zugänglich. Nach einigen Monaten liefen die deutschen Server endlich heiß. Die

the grading game - SKILLskill.fhstp.ac.at/wp-content/uploads/2016/11/Folien... · 2016. 11. 16. · quizduell. 11.11.16 2 lecture game • 6 knowledge categories • each game has

Federal Republic of Germany. Germany Population: 82.4 million Growth -.044% Extremely homogenous ethnically Turkish- 2.4% Other- 6.1% Life exp: 76 men

Acoustic radiation force impulse of the liver€¦ · fication, respectively (Siemens, Erlangen, Germany). DIFFUSE LIVER DISEASES Biopsy provides an extremely valuable contribution

Special 2020 - Reisebüro5cab2283-4740-4099-a... · 2020. 10. 21. · • Teuflisches Quizduell • Frankensteins Outdoor Jumping Limitiertes Kontingent. Änderungen und Zwischenverkauf

Extremely wrinky doggies

Extremely Loud

Multiple pathways of crystal nucleation in an extremely ... · extremely supersaturated aqueous potassium dihydrogen phosphate ... near-homogenous nucleation. ... in an extremely

Extremely grafica

Learning disabilities among extremely preterm …...Extremely preterm birth (EP;

made in Germany · manufactured in leno weave using textile glass (E-glass) with special properties to give it especially good slip resistance and dimension stability. It is extremely

European Commissionec.europa.eu/information_society/newsroom/image/... · Quizduell serste.de/ rogramm Ari ON EURO è010 AUSTRIA We are sorry. Due to licence restrictions you ate-not

FMOS で探る Extremely Red Universe II. FMOS で探る Extremely Red Universe II. Extremely Red Universe Probed with FMOS Extremely Red Universe Probed with FMOS

These 12 qualities distinguish extremely likeable people · 2016. 11. 10. · 1. Show interest Source: MarcoJanoschka Business Insider Germany © Capito Spezialisten GmbH 2

Galletti company presentation - columbus-klima.hu · 100 kW 200 kW 360 kW V-IPER A 50 kW A V-IPER EXTREMELY accessible EXTREMELY ecological EXTREMELY quiet EXTREMELY efficient under

CLOCKWISE FROM TOP RIGHT: Ingo Maurer (Germany), Porca ... · The Museum also focused on enhancing its revenue sources, and is extremely grateful to Lindy Barrow, Helen Gardiner’s

Extremely Endangered Species

SANDER NAVY A TRADITION OF EXCELLENCE · SANDER NAVY Zum Panrepel 41 / 28307 Bremen Germany Phone: +49 (0) ... the complex nature of naval missions demand for an extremely reliable

Hidden structures clearly revealed Fast in-line X-ray secures … · 2020. 6. 10. · Viscom AG, from Hanover, Germany, has developed an extremely fast printed circuit board transport

Extremely Part 3

Germany. Find Germany Germany Capital of Germany: Berlin

In 1914, Germany believed war with Russia was extremely likely. If war broke out, Germany assumed France would also attack as she was both an ally of

Extremely Online

INKJET DEVELOPMENTS TO IMPACT TEXTILES - theIJC · of CHT Germany. The presentation by Dr Haas was extremely JOUFSFTUJOH BT JU XBT UIF mSTU QSFTFOUBUJPO XIJDI IBT FYBNJOFE in detail,

Y20 China 2016 Final Communiqué · decision-making process and the All China Youth Federation (ACYF) for hosting a successful Y20 Summit. We are extremely eager for Germany – the

Extremely fast. Extremely precise. Extremely small shanks. · GÜHRING - youR wo Wo woRld-wld-Wld-wIde PARTNde Pade PARTNRtNeReR Extremely fast. Extremely precise. Extremely small