Secure Computing Flashcards

Question

What are mechanisms with security policies?

Answer 1

The basic components needed to satisfy a policy e.g. biometric scanning

Answer 2

A model which represents a particular policy or set of policies

Answer 3

They are labelled based on the perceived impact if the data is compromised

Answer 4

They have clearances and are labelled based on the trust that can be placed on the individual

Answer 5

A user can read a document only if their clearance is at least as high as the document's classification

Answer 6

1. Simple Security - no read up 2. *-property - no write down

Answer 7

Through Mandatory Access Control

Answer 8

They are assigned a security label which is a classification level and the categories - (class, category set) A binary relation is defined, D (dominates), over a set of labels which is a partial order

Answer 9

1. Reflexive - every element is related to itself 2. Antisymmetric - if a dominates b and b dominates a, then a and b are the same 3. Transitive - if b dominates a and c dominates b, then c dominates a

Answer 10

A predicate which takes a subject, and object and an action is a member of exec This states that a subject s can perform action a on object o It is a formal specification for the behaviour of a reference monitor

Answer 11

They enforce the simple security and *-property properties Each triple (s, o, a) is checked against the reference monitor

Answer 12

1. Simple security - no read down 2. *-property - no write up

Answer 13

Modelling the constraints of a form of professionals whose partners need to avoid conflicts of interest and/or insider dealing

Answer 14

Once a partner consults for a company of a given type, it cannot consult for another company of the same type

Answer 15

A Boolean 2D matrix C[s,o] which = 1 if s has accessed o, otherwise = 0

Answer 16

1. Simple Security - each subject can access objects from at most one company from each type 2. *-property - write access to s to write to o is only permitted if access is permitted by the simple security rule and if all other object p which s has written to is such that t(o) = t(p) or p is a sanitised object

Answer 17

For systems that need secure transient associated - where the security policy is transient The two systems will need to secure and authenticate, restart (resurrecting) with a clean state (duckling)

Answer 18

1. Imprintable - ready to trust another system 2. Imprinted - committed to trust system

Answer 19

1. Imprinting - sends some secret key 2. Death - by an order, by old age or when the transaction has ended

Answer 20

1. Safety property - you want to prohibit things that can't happen 2. Liveness property - what are the good things you want to happen

Answer 21

E.g. writing in a part of memory you don't want to write in, at one time at most one process can access one piece of data, in a token ring at most one node holds the token

Answer 22

In a token ring, you eventually want every node to hold the token, termination of a program

Answer 23

Past events - cannot predict the future and doesn't know about alternative or all possible executions

Answer 24

Safety - at most one process can access critical section Liveness - every requesting process is eventually grated access to critical section

Answer 25

No because the membership of an execution within the policy may rely on another execution i.e. needs to know more than just the one execution

Answer 26

If we have a prefix that turns false, it must remain false after If an execution is bad, then we can find an execution that has already gone bad

Answer 27

If it is possible that it has a bad prefix A property is a safety property if, for every execution that is not in the property, there exists a prefix of the execution that is not in the set

Answer 28

Safety property concerns prefixes Liveness property concerns suffixes

Answer 29

Yes because a bad prefix is when an unauthorised operation is attempted

Answer 30

No because the mechanism would be to know what will happen in the future

Answer 31

(check notes)

Answer 32

No because we cannot control the environment We use execution steps instead

Answer 33

Prepared statements - parameterised and reusable SQL queries

Answer 34

Phishing - using fake URLs resembling legitimate ones Homograph attacks - exploiting visually similar characters across different alphabets Punycode - exploiting the representation of Unicode characters using ASCII URL obfuscation - techniques to hide the true destination of a URL e.g. long URLs, encoded URLs, shortened URLs and redirects Directory traversal - accessing other parts of the file system

Answer 35

Canonicalisation - convert all user input to it's simplest form before making any security decisions

Answer 36

- Tampering with data - Information Disclosure - DoS - Elevation of privilege

Answer 37

A session is represented by a persistent token (session ID) A session ID is stored client-side and presented to the server Sessions can have an associated state which can persist locally (cookies, HTML5 web storage) or on the server

Answer 38

- Can have crypto issues e.g. DROWN attack - HSTS forces the use of HTTPS for all connections but still allows an initial insecure request via HTTP so there is a (very small) risk of a MITM attack - Misuse of TLS certificates could pose security issues

Answer 39

They are when you are forced to authenticate before giving you the page you wanted to visit, that redirect is then stored in the query string and facilitates a redirect afterwards An attacker could give a redirect to some bad page A fix would be to validate the redirect parameter

Answer 40

When applications have an expected flow from page to page If an attacker could skip a step, that could pose an issue The best fix is to track the flow is session data stored on the server

Answer 41

With a strong hash function (SHA-256 or bigger) And plenty of random salt (pieces of random data added to a password before it is hashed) Make the algorithm very slow i.e. iterate many times Notify users promptly when breached

Answer 42

Compromising the session ID would leave to the attacker impersonating the user If the session ID is calculated with predictable or weak algorithms, the attacker could guess or calculate it Could be stolen through attacks to the victim's computer, XSS or packet sniffing Could be stolen through exposure by URL rewriting - when session IDs (typically stored as cookies) are rewritten to be included as a query parameter because the browser doesn't support cookies or they have been visible - therefore it'll be visible in the browser history and could be cached by web proxies

Answer 43

- Generate IDs with a cryptographic PRNG (Pseudo-random number generator) - Never reuse IDs - Use HTTPS and enable Secure cookie option - Establish a maximum session lifetime e.g. 1 or 2 hours - Invalidate sessions that have been idle for a while - Make it easy to log out and clear the session explicitly - Limit session concurrency - Minimise the use of the client for storing session state and encrypt anything stored client-side

Answer 44

Traditional web services exchange messages represented as XML documents - these must be parsed which creates opportunities to exploit weaknesses in the parser implementation

Answer 45

A type of injection attack where malicious scripts are injected in otherwise trusted websites When the victim visits the infected page, the attacker's code is downloaded to their browser and executes

Answer 46

Reflected and stored

Answer 47

When an application receives data in a HTTP request and includes that data within the immediate response in an unsafe way When an attacker gets control of a script executed in the victim's browser, they can technically fully compromise that user Executed with social engineering

Answer 48

Relies on some injected JavaScript being stored on the vulnerable server Targets sites like discussion forums, blogs with comments and shopping sites with reviews The malicious code can therefore persist for a long time and be seen by may people, and there is no need for social engineering -> big impact

Answer 49

- Encoding HTML before it is delivered to the browser - Rejecting HTML and requiring user-supplied content to be written in something like Markdown - Use the HttpOnly attribute flag with cookies to hide them from JavaScript code

Answer 50

When attackers inject a frame which points back to a server they control E.g. the framed page would display a message saying the user has been logged out and must resupply credentials Can happen when the application doesn't properly handle user supplied data allowing the attacker to provide valid HTML code e.g. via a parameter value

Answer 51

Cross-Site Request Forgery Exploits the fact that your browser sends an authentication token to a server and tricks you into authenticating a request you never intended to take

Answer 52

Generate a random none when the user logs in and store it with the user's session data The nonce is then included in pages sent back to the user's browsers as a hidden form field so will be returned to the server in requests originating from those pages Then, it can be checked against the value stored in the server for that session

Answer 53

1. DNS - resolves human-readable domain names into numeric IP addresses needed for routing 2. ARP (Address Resolution Protocol) - resolves IP addresses into the 48-bit MAC addresses that identify a specific network interface or hardware

Answer 54

Cache Poisoning - an attacker sends forged DNS responses to a DNS resolver, tricking it into caching malicious IP addresses for domain names - therefore redirecting users to malicious websites Spoofing - the attacker directly intercepts DNS queries and responds with fake answers in real time MITM Attack - an attacker intercepts DNA queries and replies, altering them to direct traffic to malicious sites

Answer 55

Cache poisoning - an attacker sends fake ARP replies to a victim, associating the attacker's MAC address with the IP address of a legitimate device allowing MITM and DoS attack

Answer 56

All traffic is unencrypted

Answer 57

The deliberate use of telnet with non-telnet ports Gains info about a system or network and their services which are running on open ports as some will sometimes respond with banners leaking information about software vendor, versions etc. Threatens information disclosure

Answer 58

SSH - a cryptographically enabled protocol for login, file transfer and TCP connection tunnelling Traffic is encrypted with a symmetric cipher negotiated between the client and server

Answer 59

- Complex custom-designed protocol - SSH-1 had design flaws and is now considered insecure - SSH-2 is superior but has its own issues

Answer 60

An attacker could steal credentials if they could impersonate a server and may not be noticed if they forward your connection attempt to a real server

Answer 61

Using SSH to maintain a local store of trusted public keys for previously accessed servers The user if asked whether they trust a server the first time they connect and the public key is added if they say yes There still exists a risk but there is a smaller window of opportunity

Answer 62

A simple request-response protocol using port 25 There is no authentication allowing easy spoofing All traffic is sent as ASCII plain text Banners leak information Open relays are heavily abused (spam)

Answer 63

For receiving mail The username/password are usually sent as plaintext Using the extensions, the server sends a timestamp and the client sends back the MD5 hash of this and a shared secret The mail itself is unprotected

Answer 64

Using SSH to tunnel insecure protocols over an encrypted channels - not the best option Best option - using the extended support for TLS that protocols have now

Answer 65

When you continue to use standard ports but add a 'STARTTLS' command to the protocols triggering a TLS handshake and upgrades to a secure connection

Answer 66

- Code review - Checklists - Static analysis tools - Run-time fault injection

Answer 67

A framework for classifying and organising software security testing activities based on the types of vulnerabilities they aim to identify

Answer 68

1. Physical tokens 2. 2FA

Answer 69

The fact that if a database of biometric credentials was comprised - it would be a massive problem since biometrics are irrevocable The solution is to combine a revocable factor with a biometric factor, hash this and store the hash. If the database is subsequently hacked, we can revoke the hash and change the revocable factor

Answer 70

Public key Private key Asymmetric ciphers

Answer 71

1. Easy to encrypt given the public key 2. Easy to decrypt given the private key 3. Infeasible to determine the private key given the public key 4. Infeasible to recover the plaintext given the public key and encrypted message

Answer 72

The extreme difficulty of factoring the product of two very large prime numbers

Answer 73

1. Select two large prime numbers, p and q 2. Calculate the product n = pq 3. Calculate the Euler totient of n, φ(n) = (p-1)(q-1) a. Counts the positive integers up to a given integer n that are relatively prime to n b. Given integers a and b, a and b are relatively prime if gcd(a, b) = 1 c. Euler totient of 9 = 6 (1, 2, 4, 5, 7, 8 are all relatively prime to 9) d. Select two prime numbers e.g. 3 and 7, product = 21 e. Euler totient = 12 = (2*6) (1, 2, 3, 4, 5, 8, 10, 11, 13, 16, 17, 19, 20) 4. Select an integer e such that the greatest common divisor of e and φ(n) is 1 5. Calculate an integer d such that de mod φ(n) = 1

Answer 74

1. Select two prime numbers: p = 17, q = 11 2. Calculate product: n = 17 x 11 = 187 3. Calculate Euler totient: φ(n) = (p-1)(q-1) = 16 x 10 = 160 4. Choose integer e: e = 7 5. Determine value of d: 7d mod 160 = 1, 7d = 161, d = 23

Answer 75

- Brute-force search of all private keys - Shared prime - if two key pairs share one prime, it's easy to recover all three primes - e is fixed and too small

Answer 76

Based on the mathematical properties of elliptic curves Equivalent security to RSA for smaller key sizes - faster than RSA but verifying signatures is slow

Answer 77

They are used to ensure the authenticity, integrity and non-repudiation of digital data Uses public key cryptography with the private key kept secret by the signer and the public key shared with other to verify the signature

Answer 78

1. The signer generates a hash of the data 2. The hash is encrypted with the private key - creating the digital signatures 3. The recipient uses the public key to decrypt the signature and retrieve the hash 4. The recipient independently hashes the original data and compares the two hashes 5. If the two hashes match, the data is verified as authentic and untampered

Answer 79

Face-to-face verification or public key certificates

Answer 80

Certificates in which the public key and owner IS can be transported, signed by a certificate authority

Answer 81

Public key certificates that are used for HTTPS

Answer 82

A security guard placed at the point of entry between a private network and the internet which monitors all incoming and outgoing packets They consist of a set of rules - the decision whether to forward or drop a message depends on the rule that the message satisfies

Answer 83

1. Consistency - may have conflicting rules 2. Completeness - the set of rules may be incomplete - difficult to ensure all packets are considered 3. Compactness - some rules may be redundant

Answer 84

An acyclic and directed graph defined over Fi…Fn where F are the fields e.g. IP address

Answer 85

1. Has exactly one root node with no incoming edge, and nodes with no outgoing edges are terminal nodes 2. Each node in an FDD is labelled with a field whose label is a member of {F1...Fn} if a non-terminal node, or is a member of {a, d} is a terminal node 3. An edge is labelled with a non-empty set of integers which is a subset of the domain of the field 4. A directed path from the root to a terminal node is called a decision path - and no two nodes on a decision path have the same label 5. The set of all outgoing edges of a node satisfy consistency

Answer 86

Iff f.accept = f'.accept and f.discard = f'.discard

Answer 87

1. Both v and v' are terminal nodes with identical labels 2. Both v and v' are non-terminal nodes, and there is a 1-1 correspondence between the outgoing edges of v and those of v' such that every pair of corresponding edges have identical labels and then point to the same node

Answer 88

1. No node has only one outgoing edge 2. No two nodes are isomorphic 3. No two nodes have more than one edge between them

Answer 89

Input: FDD fff Output: Reduced FDD equivalent to fff Steps: (apply steps 1-3 repeatedly until the FDD cannot be reduced any further) 1. If there is a node v with only one outgoing edge e, where e points to v′: ○ Remove both v and e, and redirect all edges that point to v to point to v′. 2. If two isomorphic nodes v and v′ exist: ○ Remove v′ together with all its outgoing edges, and redirect all edges that point to v′ to point to v. 3. If two edges e and e′ exist that are both between the same pair of nodes: Remove e′ and change the label of e from I(e) to I(e) ∪ I(e′).

Answer 90

Input: FDD f Output: Marked FDD f′ with minimal load Steps: 1. Compute the load of each terminal node v in f as follows: load(v) := 1 2. WHILE (there is a node v whose load has not yet been computed, suppose v has k outgoing edges e1, .., ek, and these edges point to v1, ..., vk respectively, and the loads of these k nodes have been computed) DO: a) Among the k edges of e1,…,ek, choose an edge ej with the largest value of (load(ej)-1) * load(vj), and marks edges ej with 'all' 3. (b) Compute the load of v as follows: load(v) := ∑(i=1 to k) (load(ei) * load(vi))

Answer 91

It evaluates only the conditions explicitly set by the rule So it uses "all" markings

Answer 92

It evaluates all the conditions that reach a terminal node So it ignores "all" markings - is a generalisation so we want the most restrictive

Answer 93

Input: Marked FDD f Output: Firewall equivalent to f. For each rule r, r.mp and r.rp is computed. 1. Depth-first traverse f such that for each nonterminal node v, the outgoing edge marked as “all” of v is traversed after all other outgoing edges of v have been traversed. 2. Whenever a terminal node is encountered, assuming is the decision path where each ei is the most recently traversed outgoing edge of node vi output a rule r together with its matching predicate r.mp and its resolving predicate r.rp as follows: a. r is the rule which we create from the path to the decision b. r.mp is the predicate of rule r r.rp is the predicate which is the same except ignores "all" markings

Answer 94

Removes redundant rules

Answer 95

Input: A firewall Output: An equivalent but more compact firewall for i = m to 1 do redundant[i] := 0; for i = m to 1 do if there exist a rule rk in the firewall, where i < k ≤ m, such that the following 4 conditions hold: 1. redundant[k] = false 2. ri, rk have the same decisions 3. ri.rp implies rk.mp 4. for every rule rj, where i

Answer 96

Basically just splits rules into non-overlapping sub-rules to make the rule set simpler and unambiguous

Answer 97

1. Reduction 2. Marking 3. Firewall generation (creating rules and predicates) 4. Compaction 5. Simplification

Answer 98

The policy is a safety property and the events exist within the systems control

Answer 99

A set of executions

Answer 100

A sequence of states or events

Answer 101

In systems where protecting sensitive information from unauthorised access is critical

Answer 102

In systems where data accuracy, consistency and integrity is more important than confidentiality

Secure Computing Flashcards

(134 cards)