Embedded TCP/IP-Security

Transcription

1 Embedded TCP/IP-Security

2 Agenda What is security? A look into a security data sheet Symmetric vs. asymmetric cryptography TCP/IP security SSL/TLS CB ussl SSH CB ussh Demo Summary Page 2

3 What is security? ITU-T Recommendation X.805: Security architecture for systems providing end-to-end communications Security threats Destruction of information and other resources Corruption or modification of information Theft, removal or loss of information and other resources Disclosure of information Interruption of services Security dimensions: Security measures designed to address a particular aspect of network security Access control Authentication Non-repudiation Data confidentiality Communication security Data integrity Availability Privacy Page 3

4 Look into a security data sheet Page 4

5 Symmetric Cryptography Symmetric encryption = private key cryptography Source: The Globus Toolkit 4 Programmer's Tutorial, University of Chicago Algorithms Data Encryption Standard (DES) Triple DES (3DES) Advanced Encryption Standard (AES) Advantage: Low computational complexity Disadvantage: Communication partners share private key How can keys securely be exchanged?? Source: Wikipedia Page 5

6 Asymmetric Cryptography I Asymmetric encryption = public key cryptography Source: The Globus Toolkit 4 Programmer's Tutorial, University of Chicago Algorithms RSA: Security due to cost of factoring a product of two large prime numbers ElGamal Advantages: Public Key Private Key Private key never needs to be transmitted Provides a method for digital signatures Disadvantage: High computational complexity Source: Raj Jain, Washington University, Network security lectures on youtube Page 6

7 Asymmetric Cryptography II: Digital signatures and X.509 certificate authentication Applications: Message Integrity Non-repudiation Algorithms: Secure Hash (SHA) Message Digest (MD) Problem: To whom belongs the public key? Public key infrastructure (PKI) CA X.509 certificates Source: Hashing Algorithm Decryption Public Key CA Hash Hash Certification Authority (CA) Page 7

8 TCP/IP Stack Security SSH server and client for secure interactive shell Secure end to end connection for embedded devices Point to point security for IP packet networking TCP/IP-Stack Application Layer DHCP SNMP HTTP SMTP Telnet SNTP NAT SSH FTP POP3 DNS TFTP IMAP4 KEYGEN Transport Layer UDP TCP SSL/TLS CTP Network Layer IPv4 ICMP ARP IPsec Data Link Layer Physical Layer WLAN PPP UART PPP over Page 8

9 SSL/TLS I Sits on top of TCP protocol HTTPS (HyperText Transfer Protocol Secure) = HTTP over SSL/TLS SSL/TLS services Crypto negotiation Secret key exchange Privacy/Encryption Integrity TLS 1.2 (= SSL 3.3) TLS 1.2 is described in RFC 5246 of The Internet Engineering Task Force (IETF) TLS consists of five protocols TCP/IP-Stack DHCP SNMP HTTP SMTP Telnet SSH FTP POP3 DNS TFTP UDP TCP SSL/TLS IPv4 ICMP ARP PPP WLAN UART SNTP IMAP4 CTP IPsec NAT KEYGE N PPP over Page 9

10 SSL/TLS II: Protocols/Layers Agree on TLS protocol versions and cipher suite, exchange certificates and pre-master secret (RSA, DH) Start encoding Warnings, fatal errors Application data partitioning, compression Application Layer HTTP SSL/TLS Handshake Protocol Change Cypher Spec Protocol Alert Protocol Application Data Protocol Transport Layer Record Protocol TCP Symmetric encryption algorithms (AES, DES, 3DES, ) and Message Authentication Codes (SHA, MD5) Page 10

11 SSL/TLS III: Handshake Protocol Client Server Verify Certificate Generate MS and security parameters Generate MS and security parameters Page 11

12 ussl I SSL/TLS implementation for embedded MCUs Supports protocol versions SSL 3, TLS 1.0, TLS 1.1, TLS 1.2 Server and Client Typical memory requirements ROM: kb RAM: kb 2.5 kb for additional session Supported devices: Cortex-M3, Cortex-M4, Supported TCP/IP stacks: Keil, FreeRTOS, CMX-MicroNet, Micrium, ThreadX, TCP/IP-Stack DHCP SNMP HTTP SMTP Telnet SSH FTP POP3 DNS TFTP UDP TCP ussl IPv4 ICMP ARP PPP WLAN UART SNTP IMAP4 CTP IPsec NAT KEYGE N PPP over Page 12

13 ussl II: Architecture and Integration usslsockapi interface (closely matches BSD) SSL/TLS protocol implementation Key exchange, crypto, hash, certificate management, random number generation Application Layer HTTP apps ussl Transport Layer net libs BSP TCP stack abstraction layer BSP Memory Manager BSP chipglue TCP HW BSD compatible interface Proprietary TCP/IP stack interface Self-contained dynamic memory byte pool System timer access for seeding random number generation and session expiration Page 13

14 SSH I Secure Shell Provides secure remote logon facility and secure file transfer SSH1 replaced Telnet SSH2 documented in RFCs Organized as three protocols Transport layer protocol Authentication protocol Connection protocol TCP/IP-Stack DHCP SNMP HTTP SMTP Telnet SSH FTP POP3 DNS TFTP UDP TCP SSL/TLS IPv4 ICMP ARP PPP WLAN UART SNTP IMAP4 CTP IPsec NAT KEYGE N PPP over Page 14

15 SSH II: Protocols/Layers Authenticates the user to the server Multiplexes multiple logical communications over a single underlying SSH connection Application Layer Shell, File Transfer Core SSH Authentication Protocol Connection Protocol Transport Layer Transport Layer Protocol TCP Server authentication, data confidentiality, data integrity, compression Page 15

16 ussh SSH and Secure Tunnel (also called port forwarding) Server and Client Secure Remote Access, Management & File Transfer Interactive Shell Secure File SCP Typical memory requirements on Cortex-M3 ROM: 50 kb RAM: 14 kb TCP/IP-Stack DHCP SNMP HTTP SMTP Telnet ussh FTP POP3 DNS TFTP UDP TCP SSL/TLS IPv4 ICMP ARP PPP WLAN UART SNTP IMAP4 CTP IPsec NAT KEYGE N PPP over Page 17

17 ussl: Demo with MDK-ARM Client ( ) Server ( ) MCBSTM32F200 board with Cortex-M3 from STMicroelectronics runs embedded web server Web server waits for HTTPS requests Keil MDK-ARM project based on ussl, Keil RTX RTOS and TCP/IP stack Page 19

18 ussh: Demo with MDK-ARM Client ( ) Server ( ) MCBSTM32F200 board with Cortex-M3 from STMicroelectronics runs ussh server ussh server waits for requests on port 22 Keil MDK-ARM project based on ussh, Keil RTX RTOS and TCP/IP stack Server Shell Command Handler Page 20

19 Summary Symmetric vs. asymmetric cryptography TCP/IP security SSH SSL/TLS IPsec Implementations for embedded system: ussh, ussl, uvpn Demos with Keil MDK-ARM, RTX RTOS and Keil TCP/IP stack TCP/IP-Stack DHCP SNMP HTTP SMTP Telnet SSH FTP POP3 DNS TFTP UDP TCP SSL/TLS IPv4 ICMP ARP PPP WLAN UART SNTP IMAP4 CTP IPsec NAT KEYGE N PPP over Page 21

20 Fragen?