Download Careless Delegation of Trust

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
Document related concepts

URL redirection wikipedia , lookup

Transcript 
Web Trust Boundaries and
Security Vulnerabilities
Haris Volos and Hidayat Teonadi
CS739 – Distributed Systems
Problem
• Web of Trust
– Web crosses many trust boundaries
• To avoid Careless Delegation of Trust
should follow principles:
– Be specific
• Who is in your trusted group?
• What actions do we trust them to take?
– Be careful
• Bad design example
– A server offloads work to a client that “trusts”,
but client is either malicious or is bypassed.
2
Starting point...Java Applets
• Hypothesis
– Applets perform computation on client
browser on behalf of the server.
• Using a web crawler (Larbin), we sought
for Java applets.
– Besides Java chat applications, other results
seem uninteresting.
• Conclusion
– Applets usage is not rampant.
3
Web Apps & JavaScript
• Interactive Web Applications
– Main app resides in server-side (Servlet)
– Use JavaScript for client-side computation
• Example: input data validation
• Robust Web Applications
– JavaScript can be easily circumvented.
• Can be just disabled by browsers.
– Never rely solely on JavaScript client-side
validation.
4
Security Vulnerabilities
• Prevalent, because web apps cross trust
boundaries
• A malicious user will try to exploit these
• Web app must protect itself
– Is cryptography enough? No!
– Must validate any data that crosses the trust
boundary
• Example Vulnerabilities
– Cross site scripting, SQL Injection
5
Case Study: RoundCube Webmail
• RoundCube Webmail is a browser based IMAP client.
Uses a backend Apache/PHP/MySQL.
• RSnake from ha.ckers.org exposed a type 1 cross site
scripting (XSS) vulnerability
– Type-1 XSS: allows foreign code injection into a server
generated dynamic page.
– Exploit scenario: malicious script can silently obtain sensitive
credentials in the form of cookies.
• We managed to reproduce the XSS vulnerability locally.
• Realized how seemingly adequate server-side validation
can still be circumvented.
6
Next Step
• Study trust boundary more broadly
• Find more web applications
• Use a Web Vulnerability Scanner (e.g.
Gamja) to guide search
– Expose vulnerabilities
– Study them, and
– Propose some corrections
7
Related documents
This Article argues that intellectual property law stifles critical
This Article argues that intellectual property law stifles critical
Cybersecurity of Medical Devices
Cybersecurity of Medical Devices
Role of Web Application Vulnerabilities in Information
Role of Web Application Vulnerabilities in Information
FLAX: Systematic Discovery of Client-Side Validation Vulnerabilities
FLAX: Systematic Discovery of Client-Side Validation Vulnerabilities
Cs526proj
Cs526proj
Overview of the SSNAPP Methodology
Overview of the SSNAPP Methodology
CST262 - Suffolk County Community College
CST262 - Suffolk County Community College
Case Study Evaluation Criteria
Case Study Evaluation Criteria
Document
Document
WK12
WK12
Introduction to Website Development
Introduction to Website Development
HTML HyperText Markup Language
HTML HyperText Markup Language
Liability Regimes
Liability Regimes
Read Me S14
Read Me S14
Chapter 1: Security Problems in Computing
Chapter 1: Security Problems in Computing
Vulnerability Management
Vulnerability Management
Designing Trustworthy User-Agents for a Hostile Web Usenix Security 2009
Designing Trustworthy User-Agents for a Hostile Web Usenix Security 2009
pptx - cse.sc.edu
pptx - cse.sc.edu
A26001006
A26001006
Predicting zero-day software vulnerabilities through data mining Su
Predicting zero-day software vulnerabilities through data mining Su
Client-Side Web Programming (Part 1) Robert M. Dondero, Ph.D.
Client-Side Web Programming (Part 1) Robert M. Dondero, Ph.D.
D1S1_TSV404_Course_Intro_2011_v1
D1S1_TSV404_Course_Intro_2011_v1