Home Explore Help
Sign In
sunit
/
cybersec-presentation
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
cybersec-presen...
/
ppt.tex

ppt.tex 22 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688 
  1. %!TEX program = xelatex
    2. 

  2. \documentclass{beamer}
    3. 

  3. 

  4. \usepackage[english]{babel}
    5. 

  5. 

  6. \usepackage{graphicx,hyperref,url, materialbeamer}
    7. 

  7. \usepackage{braket}
    8. 

  8. %\usepackage{euler}
    9. 

  9. \usepackage{listings}
    10. 

  10. \usepackage{url}
    11. 

  11. 

  12. \usepackage{fontspec}
    13. 

  13. \setmainfont{Roboto}
    14. 

  14. 

  15. \graphicspath{ {./img/} }
    16. 

  16. \setbeamercovered{transparent}
    17. 

  17. \lstdefinestyle{customsql}{
    18. 

  18.   belowcaptionskip=1\baselineskip,
    19. 

  19.   breaklines=true,
    20. 

  20.   xleftmargin=\parindent,
    21. 

  21.   language=SQL,
    22. 

  22.   showstringspaces=false,
    23. 

  23.   basicstyle=\footnotesize\ttfamily,
    24. 

  24.   keywordstyle=\bfseries\color{green!40!black},
    25. 

  25.   commentstyle=\itshape\color{purple!40!black},
    26. 

  26.   identifierstyle=\color{blue},
    27. 

  27.   stringstyle=\color{orange},
    28. 

  28. }
    29. 

  29. \lstset{escapechar=@,style=customsql}
    30. 

  30. 

  31. \usefonttheme{professionalfonts} % using non standard fonts for beamer
    32. 

  32. %\usefonttheme{serif}
    33. 

  33. 

  34. % The title of the presentation:
    35. 

  35. %  - first a short version which is visible at the bottom of each slide;
    36. 

  36. %  - second the full title shown on the title slide;
    37. 

  37. \title[CyberSec Trends 2018]{2018 Cyber\\ Security Trends}
    38. 

  38. 

  39. % Optional: a subtitle to be dispalyed on the title slide
    40. 

  40. \subtitle{The Latest and the Greatest Changes to the Computer and Networks Security Paradigm}
    41. 

  41. 

  42. % The author(s) of the presentation:
    43. 

  43. %  - again first a short version to be displayed at the bottom;
    44. 

  44. %  - next the full list of authors, which may include contact information;
    45. 

  45. \author[Prof. Sukumar Nandi]{
    46. 

  46.   Prof. Sukumar Nandi} 
    47. 

  47.   
    48. 

  48. %\titlegraphic{\includegraphics[width=\textwidth]{atac-logo}}
    49. 

  49. 

  50. % The institute:
    51. 

  51. %  - to start the name of the university as displayed on the top of each slide
    52. 

  52. %    this can be adjusted such that you can also create a Dutch version
    53. 

  53. %  - next the institute information as displayed on the title slide
    54. 

  54. \institute[Indian Institute of Technology Guwahati]{
    55. 

  55. Department of Computer Science and Engineering\\
    56. 

  56.   Indian Institute of Technology Guwahati \\
    57. 

  57.   Email: sukumar@iitg.ernet.in}
    58. 

  58. 

  59. % Add a date and possibly the name of the event to the slides
    60. 

  60. %  - again first a short version to be shown at the bottom of each slide
    61. 

  61. %  - second the full date and event name for the title slide
    62. 

  62. \date[\today]{
    63. 

  63.  \today}
    64. 

  64. 

  65. 

  66. 

  67. 

  68. \providecommand{\di}{\mathop{}\!\mathrm{d}}
    69. 

  69. \providecommand*{\der}[3][]{\frac{d\if?#1?\else^{#1}\fi#2}{d #3\if?#1?\else^{#1}\fi}} 
    70. 

  70.  \providecommand*{\pder}[3][]{% 
    71. 

  71.     \frac{\partial\if?#1?\else^{#1}\fi#2}{\partial #3\if?#1?\else^{#1}\fi}% 
    72. 

  72.   }
    73. 

  73. 

  74. \setbeamertemplate{bibliography item}[text]
    75. 

  75. \begin{document}
    76. 

  76. 

  77. \begin{frame}
    78. 

  78.   \titlepage
    79. 

  79. \end{frame}
    80. 

  80. 

  81. \begin{frame}
    82. 

  82.   \frametitle{Table of Contents}
    83. 

  83. 

  84.   \tableofcontents
    85. 

  85. \end{frame}
    86. 

  86. 

  87. %\input{introduction}
    88. 

  88. %\input{datamodel}
    89. 

  89. %\input{architechture}
    90. 

  90. %\input{implementation}
    91. 

  91. %\input{consistency}
    92. 

  92. %\input{workload}
    93. 

  93. 

  94. \setlength{\parskip}{\baselineskip}
    95. 

  95. \section{Introduction}
    96. 

  96. \begin{frame}[t]
    97. 

  97. \frametitle{Introduction}
    98. 

  98. \begin{block}{Why do we need to stay up-to-date with cyber-security trends?}
    99. 

  99. 	\begin{itemize}
    100. 

  100. 		{\footnotesize \item Cyber-attacks evolve: ransomware are MITM are very common today.
    101. 

  101. 		\item Numerous exploits are found every minute.
    102. 

  102. 		\item Discovered exploits are also fixed over time.
    103. 

  103. 		\item New paradigms like IoT, smart home, vehicular networks, etc. increase attack surface.
    104. 

  104. 		\item We need to build secure systems to minimize cyber attacks.
    105. 

  105. 		\item We need to counter censorship and cyber-espionage by oppressive nation states.}
    106. 

  106. 	\end{itemize} 
    107. 

  107. \end{block}
    108. 

  108. \end{frame}
    109. 

  109. 

  110. \section{System Security}
    111. 

  111. \begin{frame}
    112. 

  112. \frametitle{Attacks on System Software}
    113. 

  113. 

  114. System software like firmware, bootloader, operating system and system utilities can be attacked in numerous ways.
    115. 

  115. 

  116. \begin{itemize}
    117. 

  117. 	\item Malware due to running untrusted code: viruses, spyware, trojan horses, worms, ransomware etc.
    118. 

  118. 	\item Operating system, bootloader and firmware exploits.
    119. 

  119. 	\item Backdoors in applications, OS, bootloader and firmware.
    120. 

  120. 	\item Insufficient or poor OS security models.
    121. 

  121. 	\item Poor end-user awareness.
    122. 

  122. \end{itemize}
    123. 

  123. 

  124. \end{frame}
    125. 

  125. 

  126. \begin{frame}
    127. 

  127. \frametitle{Malware}
    128. 

  128. 

  129. Malware are softwares which are specifically designed to disrupt, damage, or gain authorized access to a computer system.
    130. 

  130. 

  131. \begin{itemize}
    132. 

  132. 	\item Malware usually infect the system either automatically by exploits or due to end-user action caused by poor judgement.
    133. 

  133. 	\item Antivirus and malware suites are no longer effective against these. In fact there are known cases, where increase the number of security holes \cite{anthony_2017,mahal_2016}. On Windows, the default Defender is sufficient.
    134. 

  134. 	\item Malware also affect non-PC and non-server platforms such as mobile devices and IoT devices like phones (RedDrop, Pegasus) and webcams (Mirai).
    135. 

  135. \end{itemize}
    136. 

  136. 

  137. \end{frame}
    138. 

  138. 

  139. \begin{frame}
    140. 

  140. \frametitle{Malware}
    141. 

  141. 

  142. \begin{block}{Mirai malware botnet structure}
    143. 

  143. 	\centering
    144. 

  144. 	\includegraphics[width=0.9\textwidth]{mirai.jpg}
    145. 

  145. \end{block}
    146. 

  146. 

  147. \end{frame}
    148. 

  148. 

  149. \begin{frame}
    150. 

  150. \frametitle{Malware}
    151. 

  151. 

  152. Malware can be mitigated by following the given steps:
    153. 

  153. \begin{itemize}
    154. 

  154. 	\item Updating OS, applications and firmware regularly.
    155. 

  155. 	\item If a product no longer receives software updates, limit usage and people accessing it to the bare minimum.
    156. 

  156. 	\item Using kernel level security measures like SELinux, AppArmor, grsecurity, OpenBSM, etc.
    157. 

  157. 	\item Avoid installing apps from unknown and untrusted sources.
    158. 

  158. 	\item Observing the permissions requested by an app before installing.
    159. 

  159. 	\item If using an untrusted app is needed, run it on a virtual machine (KVM, VMWare) or a container (Docker, LXC, BSD jails) to isolate it.
    160. 

  160. \end{itemize}
    161. 

  161. 

  162. \end{frame}
    163. 

  163. 

  164. \begin{frame}
    165. 

  165. \frametitle{Malware}
    166. 

  166. 

  167. \begin{block}{SELinux workflow\cite{selinux}}
    168. 

  168. 	\centering
    169. 

  169. 	\includegraphics[width=0.9\textwidth]{selinux.png}
    170. 

  170. \end{block}
    171. 

  171. 

  172. \end{frame}
    173. 

  173. 

  174. \begin{frame}
    175. 

  175. \frametitle{Malware}
    176. 

  176. 

  177. \begin{block}{Android permissions\cite{androidpit}}
    178. 

  178. 	\centering
    179. 

  179. 	\includegraphics[height=0.6\textheight]{android-permissions.jpg}
    180. 

  180. \end{block}
    181. 

  181. 

  182. \end{frame}
    183. 

  183. 

  184. \begin{frame}
    185. 

  185. \frametitle{Malware}
    186. 

  186. 

  187. \begin{block}{Virtual Machines and Containers\cite{cobb_2016}}
    188. 

  188. 	\centering
    189. 

  189. 	\includegraphics[width=0.9\textwidth]{vms-and-cts.jpg}
    190. 

  190. \end{block}
    191. 

  191. 

  192. \end{frame}
    193. 

  193. 

  194. \begin{frame}
    195. 

  195. \frametitle{Exploits}
    196. 

  196. 

  197. An exploit is a vulnerability in a computer system which allows an attacker to reduce its information assurance, security, control and performance.
    198. 

  198. 

  199. Exploits arise due to:
    200. 

  200. {\footnotesize \begin{itemize}
    201. 

  201. 	\item Complexity of software code that leaves unintended access points.
    202. 

  202. 	\item Familiarity and reuse of software that allows an attacker to make an intelligent guess.
    203. 

  203. 	\item Fundamental operating system design flaws that grants full system access to a program.
    204. 

  204. 	\item Bugs left by the programmer in a software application.
    205. 

  205. 	\item Not sanitizing/validating user input and mishandling buffer overflow cases.
    206. 

  206. 	\item Not learning from past mistakes.
    207. 

  207. \end{itemize}}
    208. 

  208. 

  209. \end{frame}
    210. 

  210. 

  211. \begin{frame}
    212. 

  212. \frametitle{Exploits}
    213. 

  213. 

  214. \begin{block}{Dirtycow local root exploit\cite{flashpoint_2016}}
    215. 

  215. 	\centering
    216. 

  216. 	\includegraphics[width=\textwidth]{dirtycow.png}
    217. 

  217. \end{block}
    218. 

  218. 

  219. \end{frame}
    220. 

  220. 

  221. \begin{frame}
    222. 

  222. \frametitle{Exploits}
    223. 

  223. 

  224. \begin{block}{BASH Shellshock exploit\cite{infosec_resources_2015}}
    225. 

  225. 	\centering
    226. 

  226. 	\includegraphics[width=0.9\textwidth]{shellshock.jpg}
    227. 

  227. \end{block}
    228. 

  228. 

  229. \end{frame}
    230. 

  230. 

  231. \begin{frame}
    232. 

  232. \frametitle{Exploits}
    233. 

  233. 

  234. \begin{block}{OpenSSL Heartbleed exploit\cite{searchsecurity}}
    235. 

  235. 	\centering
    236. 

  236. 	\includegraphics[height=0.7\textheight]{heartbleed_2.png}
    237. 

  237. \end{block}
    238. 

  238. 

  239. \end{frame}
    240. 

  240. 

  241. %http://imgs.xkcd.com/comics/meltdown_and_spectre.png
    242. 

  242. 

  243. \begin{frame}
    244. 

  244. \frametitle{Exploits}
    245. 

  245. 

  246. \begin{block}{Meltdown and Spectre exploits\cite{xkcd}}
    247. 

  247. 	\centering
    248. 

  248. 	\includegraphics[height=0.7\textheight]{meltdown_and_spectre.png}
    249. 

  249. \end{block}
    250. 

  250. 

  251. \end{frame}
    252. 

  252. 

  253. \begin{frame}
    254. 

  254. \frametitle{Exploits}
    255. 

  255. 

  256. Exploits can be mitigated by:
    257. 

  257. \begin{itemize}
    258. 

  258. 		\item Keeping OS, software and firmware up-to-date with latest patches.
    259. 

  259. 		\item Following best practices for software development.
    260. 

  260. 		\item Handling user input with caution.
    261. 

  261. 		\item Use past experience as a guiding light.
    262. 

  262. \end{itemize}
    263. 

  263. 

  264. \end{frame}
    265. 

  265. 

  266. \begin{frame}
    267. 

  267. \frametitle{Backdoors}
    268. 

  268. 

  269. A backdoor is a hidden path left by the creators of a computer system that allows complete access to it by bypassing the normal authentication mechanisms used to limit access control. 
    270. 

  270. 

  271. Some notable newest backdoors are:
    272. 

  272. {\scriptsize \begin{itemize}
    273. 

  273. 	\item Samsung Galaxy devices running proprietary Android versions come with a back door\cite{replicant} that provides remote access to the data stored on the device.
    274. 

  274. 	\item Siri, Alexa, and all the other voice-control systems can be hijacked by programs that play commands in ultrasound\cite{vincent_2017} that humans can't hear.
    275. 

  275. 	\item Many appliances (like webcams) are sold with spyware sending lots of data to China.
    276. 

  276. 	\item All Verizon Wireless Android phones now come with app that allows OEMs backdoor access to install other apps without permission\cite{reddit}.
    277. 

  277. 	\item OnePlus found to be collecting personally identifiable analytics data\cite{android_police_2017} from phone owners.
    278. 

  278. 	\item Intel AMT backdoor allows hackers to gain control of PCs in under a minute\cite{verma_2018}.
    279. 

  279. \end{itemize}}
    280. 

  280. 

  281. \end{frame}
    282. 

  282. 

  283. \begin{frame}
    284. 

  284. \frametitle{Backdoors}
    285. 

  285. 

  286. Backdoors can be mitigated by:
    287. 

  287. \begin{itemize}
    288. 

  288. 	\item Only buying products that respect privacy.
    289. 

  289. 	\item Avoiding unbranded electronics.
    290. 

  290. 	\item Using Free and Open Source Software (FOSS) and Hardware (FOSH) as much as possible.
    291. 

  291. 	\item Raising voices against (esp. Chinese and US) manufacturers that indulge in illegal and unethical practices.
    292. 

  292. \end{itemize}
    293. 

  293. 

  294. \end{frame}
    295. 

  295. 

  296. \begin{frame}
    297. 

  297. \frametitle{End-user awareness}
    298. 

  298. 

  299. ``A computer is only as smart as the person using it.''
    300. 

  300. 

  301. {\scriptsize \begin{itemize}
    302. 

  302. 	\item One must have basic awareness about the computer system we use.
    303. 

  303. 	\item Always observe the system for any anomalies, like slowness, freezing, creation of unknown files, unknown app installations and similar unexpected behaviour.
    304. 

  304. 	\item Never install apps from unknown sources and do not accept toolbars or other adware bundled in installers.
    305. 

  305. 	\item Never install apps without looking at the permissions being requested.
    306. 

  306. 	\item Never click on scammy ads that require you to install something on the internet.
    307. 

  307. 	\item Always update your OS and apps.
    308. 

  308. 	\item Remember to back up your computer at regular intervals. Backups are the best solution to system software attacks.
    309. 

  309. 	\item If you do not plan to use your computer for a long time, it is better to keep it powered off.
    310. 

  310. 	\item Last but not the least, always prefer to use free and open source software because they can be easily audited for security issues.
    311. 

  311. \end{itemize}}
    312. 

  312. 

  313. \end{frame}
    314. 

  314. 

  315. \section{Network Security}
    316. 

  316. \begin{frame}
    317. 

  317. \frametitle{Attacks using the Network Stack}
    318. 

  318. 

  319. Various attacks are possible using the network stack, especially using network layer (IP), transport layer (TCP/UDP) and application layer (HTTP/DNS/NTP) in conjunction. Some newest trending attacks are:
    320. 

  320. 

  321. \begin{itemize}
    322. 

  322. 	\item Reflection and amplification attacks aided with application layer protocols like DNS and NTP.
    323. 

  323. 	\item Man-in-the-middle attacks.
    324. 

  324. 	\item Censorship (as in China, Iran and Cuba).
    325. 

  325. 	\item Cyber-espionage (as done by NSA and various companies).  
    326. 

  326. \end{itemize}
    327. 

  327. 

  328. \end{frame}
    329. 

  329. 

  330. \begin{frame}
    331. 

  331. \frametitle{Reflection and amplification attacks}
    332. 

  332. 

  333. {\scriptsize A reflection attack is a type of Distributed Denial of Service (DDoS) attack uses openly accessible servers of the aiding protocol (i.e. DNS or NTP) to attack a target from multiple locations. The attacker sends a request to these open servers spoofing or pretending to be the target. All the servers then send the response to the target at the same time, bringing it down.
    334. 

  334. 

  335. An amplification attack is a type of Distributed Denial of Service (DDoS) attack in which the attacker exploits vulnerabilities in the aiding protocol (i.e. DNS or NTP) servers to turn initially small queries into much larger payloads, which are used to bring down the victim’s servers.
    336. 

  336. 

  337. Reflection and amplification combined can generate attacks with a huge size and volume, often exceeding 300 Gbps.}
    338. 

  338. 

  339. \end{frame}
    340. 

  340. 

  341. \begin{frame}
    342. 

  342. \frametitle{Reflection and amplification attacks}
    343. 

  343. 

  344. \begin{block}{Reflection attack\cite{ispcol}}
    345. 

  345. 	\centering
    346. 

  346. 	\includegraphics[height=0.7\textheight]{reflection-attack.png}
    347. 

  347. \end{block}
    348. 

  348. 

  349. \end{frame}
    350. 

  350. 

  351. 

  352. \begin{frame}
    353. 

  353. \frametitle{Reflection and amplification attacks}
    354. 

  354. 

  355. \begin{block}{Amplification attack\cite{khandelwal_2014}}
    356. 

  356. 	\centering
    357. 

  357. 	\includegraphics[height=0.7\textheight]{amplification-attack.png}
    358. 

  358. \end{block}
    359. 

  359. 

  360. \end{frame}
    361. 

  361. 

  362. 

  363. \begin{frame}
    364. 

  364. \frametitle{Reflection and amplification attacks}
    365. 

  365. 

  366. Reflection and amplification attacks can be reduced by configuring open servers/resolvers in the following manner:
    367. 

  367. \begin{itemize}
    368. 

  368. 	\item Disabling recursive/open access if not needed.
    369. 

  369. 	\item Limiting the number of services offered.
    370. 

  370. 	\item Limiting the people or resources that can access.
    371. 

  371. 	\item Employing rate limits on queries.
    372. 

  372. 	\item Filtering or not responding to unnecessary or anomalous requests.
    373. 

  373. \end{itemize}
    374. 

  374. 

  375. \end{frame}
    376. 

  376. 

  377. \begin{frame}
    378. 

  378. \frametitle{Man-in-the-middle attacks}
    379. 

  379. 

  380. A man-in-the-middle attack (MITM) is an attack where the attacker secretly relays and possibly alters the communication between two parties who believe they are directly communicating with each other.
    381. 

  381. 

  382. \end{frame}
    383. 

  383. 

  384. 

  385. \begin{frame}
    386. 

  386. \frametitle{Man-in-the-middle attacks}
    387. 

  387. 

  388. \begin{block}{How is an MITM attack\cite{veracode_2017} performed?}
    389. 

  389. 	\centering
    390. 

  390. 	\includegraphics[width=\textwidth]{mitm.jpg}
    391. 

  391. \end{block}
    392. 

  392. 

  393. \end{frame}
    394. 

  394. 

  395. \begin{frame}
    396. 

  396. \frametitle{Man-in-the-middle attacks}
    397. 

  397. 

  398. The chances of MITM attack can be reduced by:
    399. 

  399. \begin{itemize}
    400. 

  400. 	\item Verifying the hostname or address in the address bar while connecting to a website or service.
    401. 

  401. 	\item Using TLS (SSL) everywhere and as much as possible.
    402. 

  402. 	\item Ensuring that your computer's OS supports DNSSEC.
    403. 

  403. \end{itemize}
    404. 

  404. 

  405. \end{frame}
    406. 

  406. 

  407. \begin{frame}
    408. 

  408. \frametitle{Censorship}
    409. 

  409. 

  410. Internet censorship is the control or suppression of what can be accessed, published, or viewed on the Internet enacted by regulators, or on their own initiative. 
    411. 

  411. 

  412. Censorship
    413. 

  413. \begin{itemize}
    414. 

  414. 	\item restricts free and fair access to the Internet and creates inequality.
    415. 

  415. 	\item violates right to life by restricting access to emergency/help in oppressive regions.
    416. 

  416. 	\item violates right to free speech.
    417. 

  417. 	\item violates right to information.
    418. 

  418. \end{itemize}
    419. 

  419. 

  420. \end{frame}
    421. 

  421. 

  422. \begin{frame}
    423. 

  423. \frametitle{Censorship}
    424. 

  424. 

  425. Internet censorship is practiced extensively in oppressive regions such as China, Cuba and Iran in order to
    426. 

  426. \begin{itemize}
    427. 

  427. 	\item avoid citizens from getting information about the horrible actions of their regimes.
    428. 

  428. 	\item to prevent citizens from dissent and organizing uprisings.
    429. 

  429. 	\item to prevent citizens from sending information about the regime abroad.
    430. 

  430. 	\item to prevent access to art and literature not approved of by the regime.
    431. 

  431. \end{itemize} 
    432. 

  432. 

  433. Even liberal nations practice censorship in response to copyright strikes, reducing access to P2P or to prohibit activities forbidden by the law.
    434. 

  434. 

  435. \end{frame}
    436. 

  436. 

  437. \begin{frame}
    438. 

  438. \frametitle{Censorship}
    439. 

  439. 

  440. \textit{``The Net interprets censorship as damage and routes around it.''} -- John Gilmore, Electronic Frontier Foundation
    441. 

  441. 

  442. Censorship can be defeated with the following steps:
    443. 

  443. \begin{itemize}
    444. 

  444. 	\item Setting up your phone or computer to use non-ISP DNS like Google DNS or OpenDNS.
    445. 

  445. 	\item Browsing in HTTPS and using TLS (SSL) everywhere.
    446. 

  446. 	\item Using censorship circumvention tools.
    447. 

  447. \end{itemize}
    448. 

  448. 

  449. \end{frame}
    450. 

  450. 

  451. \begin{frame}
    452. 

  452. \frametitle{Censorship}
    453. 

  453. 

  454. \begin{block}{Censorship circumvention tools}
    455. 

  455. 	\begin{itemize}
    456. 

  456. 		\item VPNs like OpenConnect/AnyConnect, OpenSSH, OpenVPN and WireGuard can defeat censorship in Turkey and Iran.
    457. 

  457. 		\item ShadowSocks and ShadowSocksR socks proxy servers can defeat censorship in China.
    458. 

  458. 		\item Streisand is a wizard that can help set up the above mentioned tools in a few minutes. 
    459. 

  459. 	\end{itemize}
    460. 

  460. \end{block}
    461. 

  461. 

  462. \end{frame}
    463. 

  463. 

  464. \begin{frame}
    465. 

  465. \frametitle{Cyber-espionage}
    466. 

  466. 

  467. Cyber espionage, is the act or practice of obtaining secrets and information without the permission and knowledge of the holder of the information from individuals, competitors, rivals, groups, governments and enemies for personal, economic, political or military advantage using methods on the Internet, networks or individual computers through the use of proxy servers, cracking techniques and malicious software including trojan horses and spyware.
    468. 

  468. 

  469. For example, the National Security Agency has been spying on billions of individuals around the world with the PRISM and Fairview.
    470. 

  470. 

  471. \end{frame}
    472. 

  472. 

  473. \begin{frame}
    474. 

  474. \frametitle{Cyber-espionage}
    475. 

  475. 

  476. Cyber-espionage can be avoided by:
    477. 

  477. \begin{itemize}
    478. 

  478. 	\item Avoiding using Microsoft Windows and preferring to use a free-and-open-source OS like GNU/Linux distros or FreeBSD.
    479. 

  479. 	\item Using HTTPS and TLS (SSL) everywhere.
    480. 

  480. 	\item Avoiding products with known backdoors.
    481. 

  481. 	\item Switching to secure email services like Protomail and Tutanota.
    482. 

  482. 	\item Using VPNs in public wifi hotspots.
    483. 

  483. \end{itemize}
    484. 

  484. 

  485. \end{frame}
    486. 

  486. 

  487. \section{Application Security}
    488. 

  488. 

  489. \begin{frame}
    490. 

  490. \frametitle{Attacks on applications today}
    491. 

  491. 

  492. The most common attacks on applications today are:
    493. 

  493. 

  494. \begin{itemize}
    495. 

  495. 	\item Malicious email: spam and phishing attacks
    496. 

  496. 	\item DNS poisoning
    497. 

  497. 	\item Browser based attacks
    498. 

  498. \end{itemize}
    499. 

  499. 

  500. \end{frame}
    501. 

  501. 

  502. \begin{frame}
    503. 

  503. \frametitle{Spam and phishing emails}
    504. 

  504. 

  505. \begin{itemize}
    506. 

  506. 	\item Email spam, also known as junk email, is a type of electronic spam where unsolicited messages are sent by email.
    507. 

  507. 	\item Phishing is the attempt to obtain sensitive information such as usernames, passwords, and credit card details (and money), often for malicious reasons, by disguising as a trustworthy entity in an email.
    508. 

  508. 	\item Most spam and phishing emails are sent using botnets.
    509. 

  509. 	\item Since spam filters are heuristic-based, they cannot catch all possible spam and phishing email.
    510. 

  510. 	\item We need some way to validate the sender: DKIM and SPF.
    511. 

  511. 	\item We need a policy to handle spam: DMARC
    512. 

  512. \end{itemize}
    513. 

  513. \end{frame}
    514. 

  514. 

  515. \begin{frame}
    516. 

  516. \frametitle{DKIM \cite{postmark_dkim}}
    517. 

  517. \centering
    518. 

  518. \includegraphics[height=0.9\textheight]{DKIM.png}
    519. 

  519. 

  520. \end{frame}
    521. 

  521. 

  522. \begin{frame}
    523. 

  523. \frametitle{SPF \cite{postmark_spf}}
    524. 

  524. \centering
    525. 

  525. \includegraphics[height=0.8\textheight]{SPF.png}
    526. 

  526. 

  527. \end{frame}
    528. 

  528. 

  529. \begin{frame}
    530. 

  530. \frametitle{DMARC \cite{postmark_dmarc}}
    531. 

  531. \centering
    532. 

  532. \includegraphics[height=0.8\textheight]{DMARC.png}
    533. 

  533. 

  534. \end{frame}
    535. 

  535. 

  536. \begin{frame}
    537. 

  537. \frametitle{DNS poisoning}
    538. 

  538. 

  539. \begin{itemize}
    540. 

  540. 	\item DNS spoofing, also referred to as DNS cache poisoning, is a form of computer security hacking in which corrupt Domain Name System data is introduced into the DNS resolver's cache, causing the name server to return an incorrect IP address. This results in traffic being diverted to the attacker's computer (or any other computer).
    541. 

  541. 	\item We need to figure out a way to ensure that the answer to the DNS query is valid: DNSSEC.
    542. 

  542. 	\item We need to ensure that the DNS communication between our computer and a resolver is safe and secure: DNSCrypt, DNS-over-TLS.
    543. 

  543. 	
    544. 

  544. \end{itemize}
    545. 

  545. 

  546. \end{frame}
    547. 

  547. 

  548. \begin{frame}
    549. 

  549. \frametitle{DNSSEC \cite{verisign_blog_2017}}
    550. 

  550. \centering
    551. 

  551. \includegraphics[width=\textwidth]{DNSSEC.jpg}
    552. 

  552. 

  553. \end{frame}
    554. 

  554. 

  555. \begin{frame}
    556. 

  556. \frametitle{DNSCrypt \cite{dan}}
    557. 

  557. \centering
    558. 

  558. \includegraphics[width=\textwidth]{dnscrypt.png}
    559. 

  559. 

  560. \end{frame}
    561. 

  561. 

  562. \begin{frame}
    563. 

  563. \frametitle{DNS-over-TLS \cite{slideplayer}}
    564. 

  564. \centering
    565. 

  565. \includegraphics[width=\textwidth]{dns-over-tls.jpg}
    566. 

  566. 

  567. \end{frame}
    568. 

  568. 

  569. \begin{frame}
    570. 

  570. \frametitle{Browser attacks}
    571. 

  571. 

  572. \begin{itemize}
    573. 

  573. 	\item  Browsers can be exploited in numerous ways: cross-site scripting (XSS), Cross-Site Request Forgery (CSRF) and Clickjacking.
    574. 

  574. 	\item Many of these attacks can be mitigated simply by browsing over HTTPS instead of plain HTTP.
    575. 

  575. 	\item Many of the XSS and CSRF attacks can be mitigated by using the CORS and Access-Control-Allow-Headers headers.
    576. 

  576. 	\item HTTPS to HTTP downgrade attacks can be prevented by using the HSTS header.
    577. 

  577. \end{itemize}
    578. 

  578. 

  579. \end{frame}
    580. 

  580. 

  581. \begin{frame}
    582. 

  582. \frametitle{Access-control-allow headers \cite{betterthanzero}}
    583. 

  583. \centering
    584. 

  584. \includegraphics[width=\textwidth]{access-control-allow.jpg}
    585. 

  585. 

  586. \end{frame}
    587. 

  587. 

  588. \begin{frame}
    589. 

  589. \frametitle{HSTS header \cite{techglimpse}}
    590. 

  590. \centering
    591. 

  591. \includegraphics[width=\textwidth]{hsts.png}
    592. 

  592. 

  593. \end{frame}
    594. 

  594. 

  595. \section{Transport Layer Security}
    596. 

  596. 

  597. \begin{frame}
    598. 

  598. \frametitle{TLS is no longer hard or expensive to implement}
    599. 

  599. 

  600. {\footnotesize \begin{itemize}
    601. 

  601. 	\item Contrary to popular belief, TLS (SSL) is not expensive anymore to implement.
    602. 

  602. 	\item The most CPU intensive part of TLS is the key exchange handshake that uses asymmetric-key RSA cryptography. It has long been replaced by lot less intensive ECC.
    603. 

  603. 	\item ECC is not only cheaper to implement, but also provides better security at low key sizes. E.g. 384-bit ECC is equivalent to 7680-bit RSA.
    604. 

  604. 	\item TLS connections now negotiate a one-time use session key using Elliptic-Curve Diffie-Hellman Ephemeral key exchange for forward secrecy in case the private key is compromised. Static RSA key exchange is no longer used.
    605. 

  605. 	\item Symmetric key encryption mechanisms now use AEAD like AES-GCM, AES-CCM and ChaCha20-Poly1305 which are faster and face less pipeline blocks compared to CBC ciphers.
    606. 

  606. 	\item The other cost associated with TLS, i.e., acquiring SSL certificates, is now gone. Let's Encrypt issues TLS certificates free of cost.
    607. 

  607. \end{itemize}}
    608. 

  608. 

  609. \end{frame}
    610. 

  610. 

  611. \begin{frame}
    612. 

  612. \frametitle{TLS 1.3}
    613. 

  613. 

  614. The upcoming version of TLS, i.e., TLS 1.3 brings about massive overhauls to the protocol.
    615. 

  615. 

  616. Features removed\cite{valsorda_2017}:
    617. 

  617. \begin{itemize}
    618. 

  618. 	\item Static RSA handshake
    619. 

  619. 	\item CBC MAC-then-Encrypt (MtE) modes
    620. 

  620. 	\item RC4
    621. 

  621. 	\item SHA1, MD5
    622. 

  622. 	\item Compression
    623. 

  623. 	\item Renegotiation
    624. 

  624. \end{itemize}
    625. 

  625. 

  626. \end{frame}
    627. 

  627. 

  628. \begin{frame}
    629. 

  629. \frametitle{TLS 1.3}
    630. 

  630. Features improved\cite{valsorda_2017}:
    631. 

  631. 

  632. \begin{itemize}
    633. 

  633. 	\item Fixed DHE groups
    634. 

  634. 	\item RSA-Probabilistic Signature Scheme (RSASSA-PSS)
    635. 

  635. 	\item AEAD Nonce
    636. 

  636. 	\item Session IDs and Tickets
    637. 

  637. \end{itemize}
    638. 

  638. 

  639. Features added\cite{valsorda_2017}:
    640. 

  640. \begin{itemize}
    641. 

  641. 	\item Full handshake signature
    642. 

  642. 	\item Downgrade protection
    643. 

  643. 	\item Abbreviated resumption with optional (EC)DHE
    644. 

  644. 	\item Elliptic Curve 25519 and 448
    645. 

  645. \end{itemize}
    646. 

  646. 

  647. \end{frame}
    648. 

  648. 

  649. \begin{frame}
    650. 

  650. \frametitle{TLS 1.2 2-RTT vs TLS 1.3 1-RTT handshake \cite{sullivan_2017}}
    651. 

  651. 

  652. \includegraphics[width=\textwidth]{tls13-handshake.jpg}
    653. 

  653. 

  654. \end{frame}
    655. 

  655. 

  656. \begin{frame}
    657. 

  657. \frametitle{TLS 1.2 1-RTT vs TLS 1.3 0-RTT session resumption \cite{valsorda_2017}}
    658. 

  658. \centering
    659. 

  659. TLS 1.2 resumption \hfill TLS 1.3 resumption\\
    660. 

  660. \includegraphics[width=0.45\textwidth]{tls12-resumption.png}
    661. 

  661. \includegraphics[width=0.45\textwidth]{tls13-resumption.png}
    662. 

  662. 

  663. \end{frame}
    664. 

  664. 

  665. \section{References}
    666. 

  666. \begin{frame}[allowframebreaks]
    667. 

  667. 	\frametitle{References}
    668. 

  668. 	\scriptsize{\bibliographystyle{IEEEtran}}
    669. 

  669. 	\bibliography{references}
    670. 

  670. \end{frame}
    671. 

  671. 

  672. \setbeamercolor{background canvas}{bg=matblue}
    673. 

  673. \setbeamercolor{normal text}{fg=white}
    674. 

  674. \begin{frame}[plain, b]
    675. 

  675. \centering
    676. 

  676. \huge \textcolor{white}{Thank You}
    677. 

  677. \normalsize
    678. 

  678. 

  679. \vspace*{\fill}
    680. 

  680. 

  681.  \begin{beamercolorbox}[wd=\paperwidth]{section in head/foot}
    682. 

  682.  \centering
    683. 

  683. 

  684. \vskip10pt
    685. 

  685. \end{beamercolorbox}
    686. 

  686.  \end{frame}
    687. 

  687. 

  688. \end{document}
    689.