chg: [preso] lid, typos, cosmetics
parent
50578d069a
commit
82926a8079
Binary file not shown.
|
@ -18,7 +18,7 @@
|
||||||
\definecolor{textcolor}{RGB}{85, 87, 83}
|
\definecolor{textcolor}{RGB}{85, 87, 83}
|
||||||
|
|
||||||
\title{Mind your Ps and Qs: }
|
\title{Mind your Ps and Qs: }
|
||||||
\subtitle{Performing crypto sanity checks with D4.}
|
\subtitle{Performing crypto sanity checks with D4 project.}
|
||||||
\author{Jean-Louis Huynen}
|
\author{Jean-Louis Huynen}
|
||||||
\titlegraphic{\includegraphics[scale=0.20]{../../logos/d4-logo.pdf}}
|
\titlegraphic{\includegraphics[scale=0.20]{../../logos/d4-logo.pdf}}
|
||||||
\institute{Team CIRCL \\ \url{https://www.d4-project.org/}}
|
\institute{Team CIRCL \\ \url{https://www.d4-project.org/}}
|
||||||
|
@ -75,13 +75,13 @@
|
||||||
|
|
||||||
|
|
||||||
\begin{frame}
|
\begin{frame}
|
||||||
\frametitle{Snake Oil Crypto - Problem Statement}
|
\frametitle{Snake Oil Crypto\footnote{\url{https://github.com/d4-project/snake-oil-crypto}} - Problem Statement}
|
||||||
IoT devices {\bf are often the weakest devices} on a network:
|
IoT devices {\bf are often the weakest devices} on a network:
|
||||||
\begin{itemize}
|
\begin{itemize}
|
||||||
\item Usually the result of cheap engineering,
|
\item Usually the result of cheap engineering,
|
||||||
\item sloppy patching cycles,
|
\item sloppy patching cycles,
|
||||||
\item sometimes forgotten--not monitored,
|
\item sometimes forgotten--not monitored,
|
||||||
\item few hardening features enabled,
|
\item few hardening features enabled.
|
||||||
\end{itemize}
|
\end{itemize}
|
||||||
|
|
||||||
\vspace{10 mm}
|
\vspace{10 mm}
|
||||||
|
@ -122,13 +122,15 @@
|
||||||
\item Small factors,
|
\item Small factors,
|
||||||
\item Nonces reuse / common preffix or suffix, etc.
|
\item Nonces reuse / common preffix or suffix, etc.
|
||||||
\end{itemize}
|
\end{itemize}
|
||||||
|
\vspace{5 mm}
|
||||||
|
{\bf Focus on low hanging fruits that appeal to attackers}
|
||||||
\end{frame}
|
\end{frame}
|
||||||
|
|
||||||
|
|
||||||
\begin{frame}[fragile]
|
\begin{frame}[fragile]
|
||||||
\frametitle{Snake Oil Crypto - RSA on IoT }
|
\frametitle{Snake Oil Crypto - RSA on IoT }
|
||||||
Researchers have shown that several devices generated their public
|
Researchers have shown that several devices generated their keypairs
|
||||||
keys at boot time without enough entropy\footnote{Bernstein, Heninger, and Lange: \url{http://facthacks.cr.yp.to/}}:
|
at boot time without enough entropy\footnote{Bernstein, Heninger, and Lange: \url{http://facthacks.cr.yp.to/}}:
|
||||||
|
|
||||||
\begin{lstlisting}[frame=single, language=python]
|
\begin{lstlisting}[frame=single, language=python]
|
||||||
prng.seed(seed)
|
prng.seed(seed)
|
||||||
|
@ -139,7 +141,7 @@ n = p*q
|
||||||
\end{lstlisting}
|
\end{lstlisting}
|
||||||
|
|
||||||
Given n=pq and n' = pq' it is trivial to recover the shared p by computing their
|
Given n=pq and n' = pq' it is trivial to recover the shared p by computing their
|
||||||
Greatest Common Divisor (GCD), and therefore both private keys\footnote{\url{http://www.loyalty.org/~schoen/rsa/}}.
|
{\bf Greatest Common Divisor (GCD)}, and therefore {\bf both private keys}\footnote{\url{http://www.loyalty.org/~schoen/rsa/}}.
|
||||||
|
|
||||||
\end{frame}
|
\end{frame}
|
||||||
|
|
||||||
|
@ -150,7 +152,7 @@ Greatest Common Divisor (GCD), and therefore both private keys\footnote{\url{htt
|
||||||
\begin{itemize}
|
\begin{itemize}
|
||||||
\item between certificates having the same issuer,
|
\item between certificates having the same issuer,
|
||||||
\item between certificates having the same subject,
|
\item between certificates having the same subject,
|
||||||
\item on keys from various sources (PassiveSSL, Certificate Transparency,
|
\item on keys collected from various sources (PassiveSSL, Certificate Transparency,
|
||||||
shodan, censys, etc.),
|
shodan, censys, etc.),
|
||||||
\end{itemize}
|
\end{itemize}
|
||||||
|
|
||||||
|
@ -170,7 +172,7 @@ Greatest Common Divisor (GCD), and therefore both private keys\footnote{\url{htt
|
||||||
|
|
||||||
\begin{frame}
|
\begin{frame}
|
||||||
\frametitle{Snake Oil Crypto - MISP feed}
|
\frametitle{Snake Oil Crypto - MISP feed}
|
||||||
The MISP feed
|
The MISP feed:
|
||||||
\begin{itemize}
|
\begin{itemize}
|
||||||
\item {\bf Allows} for checking automatic checking by an IDS on hashed values,
|
\item {\bf Allows} for checking automatic checking by an IDS on hashed values,
|
||||||
\item {\bf contains} thousands on broken keys from a dozen of vendors,
|
\item {\bf contains} thousands on broken keys from a dozen of vendors,
|
||||||
|
@ -205,7 +207,7 @@ Greatest Common Divisor (GCD), and therefore both private keys\footnote{\url{htt
|
||||||
\end{frame}
|
\end{frame}
|
||||||
|
|
||||||
\begin{frame}
|
\begin{frame}
|
||||||
\frametitle{Use it}
|
\frametitle{Use D4 !}
|
||||||
\begin{itemize}
|
\begin{itemize}
|
||||||
\item {\bf Manage} your own sensors and servers, {\bf find} shameful bugs and
|
\item {\bf Manage} your own sensors and servers, {\bf find} shameful bugs and
|
||||||
{\bf fill} in github issues
|
{\bf fill} in github issues
|
||||||
|
|
Loading…
Reference in New Issue