Protecting Digital Services

Transcription

1 Protecting Digital Services - The role of Cyber Security District Rocco Mammoliti, Poste Italiane Francesco Buccafurri, University of Reggio Calabria 43rd TF-CSIRT Meeting Rome, September 19, 2014

2 Poste Italiane s Cyber Security Ecosystem 2 9/22/14

3 Cyber Security District - Cosenza 3 Cyber Security District falls within the initiatives that the Italian Ministry for University and Research (MIUR) has been promoting in the framework of National Operative Program Research and Competitiveness Poste Italiane takes part to the District as the Leading Partner of a group made up of Universities/ Research Bodies and other Industrial counterparts. A Privacy Service Center has been set up, with reference to a nucleus of dedicated professionals, highly skilled and continuously trained which will act in full synergy with the operational activities of the CERT, with the aim to analyze, innovate and secure all the processes related to preserving customers privacy. Kick-off: 01/07/2013 Benefits ü Setup of a centre of excellence in Cyber Security Cyber District staff: around 200 people ü Research and innovation applied to industrial needs ü Development of Industrial Prototypes MIUR Funding: 30 mln ü Covering of costs and investments thanks to funding of research activities ü Requalification of internal personnel 9/22/14

4 Cyber Security District - Cosenza 4 Cyber Security District will be developed in two phases Phase 1: Realization of 3 Project Streams of Industrial Research ( ): End User Protection Personal Mobile Security Digital Service Protection, Cloud Security and Payment Services Secure dematerialization Specific professional training (18 months) Phase 2: ü Maintenance and consolidation of District activities ( ) Main research topics Privacy preserving and end to end security in mobile landscape taking into account mobile malware, interactions between mobile apps and other entities ( e.g. Server, other apps, etc), user behaviour Technical security standard and law compliance meta-standard Cyber security Risk Monitoring Knowledge discovery, security intelligence, predictive analysis Systemic Risks/ quantitative Risk Analysis Forensics Analysis Cryptoanalysis, Watermarking, Information Hiding 9/22/14

5 ECOSSIAN 5 EUROPEAN CONTROL SYSTEM SECURITY INCIDENT ANALYSIS NETWORK June 2014 à May 2017 // // MISSION The mission of ECOSSIAN is to improve the detection and management of highly sophisticated cyber security incidents and attacks against critical infrastructures by implementing a pan-european early warning and situational awareness framework with command and control facilities. Development of a cross boarder European early warning system for critical infrastructures Three tier of collaborative, interconnected Secure Operation Centres (SOCs) 9/22/14 Local/sub-state SOC early detection and data collection with aggregation National SOC Situational Awareness using aggregated and correlated data Transnational SOC with command and control capabilities with inclusion of member state SOCs Transnational Situational Awareness and coordinated and consistent crisis management

6 6 For further information: #CSDistrict 9/22/14

7 Francesco Buccafurri University of Reggio Calabria (Italy) Rome September 19, 2014

8 } A new lightwheight PRNG (SECRYPT 2014) } A privacy-preserving solution for tracking people in critical environments. (STPSA 2014) } sketch on a vulnerability of PKCS#7-based digital signature (SIN 2009) } Next steps and Conclusions 8

9 A Novel Pseudo Random Number Generator based on L'Ecuyer's scheme by Francesco Buccafurri and Gianluca Lax (University of Reggio Calabria) Proc. of the 11th International Conference on Security and Cryptography (SECRYPT 2014), Vienna, Austria, August

10 } Typically, PRNGs use cryptographic func=ons or one- way func=ons with high computa=onal effort } In some situa=ons, computa=onal effort or power consump=on is limited (mobile devices, token OTP, wireless sensor networks, wireless devices, etc.) } We propose a lightweight RNG based on the classical L Ecuyer s scheme relying on very simple func=ons and easily implementable (also in hardware) 10

11 } The classical L Ecuyer s scheme consists of a tuple S, T, O, g, s 0 : S is the finite state set T : S S is the transi=on func=on O the output space g : S O the output func=on s 0 S the (ini=al) seed 11

12 } Set S of states: bit strings } Transi2on func2on T: T(s) is obtained by reversing the string s and summing m (modulo ) m is a posi=ve odd integer parameter } Output func2on g: g(s)=crc128(>>s) where >>s is obtained from s by circularly right shizing it as many =mes as the number of 1s occurring in it 12

13 } Valida=on by the state- of- the- art sta=s=cal test suite (NIST ) - 16 tests 13

14 The scheme is resistant to: } Period- based a\acks (the period is ) } CRC- linearity- based A\ack } Palindromic- based A\ack } Output- Observa=on- Based Brute Force A\acks 14

15 } Theorem. The amor)zed cost of the transi)on func)on algorithm is constant in the number of bits of the state. } As for CRC computa=on, it is speed up by means of a pre- computed lookup table } Very easy hardware implementa=on 15

16 A Privacy-Preserving Solution for Tracking People in Critical Environments by Francesco Buccafurri, Gianluca Lax, Serena Nicolazzo, and Antonino Nocera (University of Reggio Calabria) Proc. of the 9th IEEE International Workshop on Security, Trust and Privacy for Software Applications, Vasteras, Sweven, July , 2014, IEEE computer society. 16

17 } In critical environments we have the need of controlling physical access and people s localization. 17

18 } RFID-based solutions: effective, but often intolerable for privacy reasons (also not compliant with law requirements). } Open problem: Trade-off between surveillance requirements and privacy rights PRIVACY SURVAILLANCE REQUIREMENTS 18

19 } RFID-based technique to generate logs (i.e., location traces) that allows us to (partially) trace people but introducing a certain degree of uncertainty } Logs fulfill a k-anonymity property: given an instant of time τ and a person p, it is possible to guess the location (with adjustable approximation) of p with a probability k 1, where k represents a privacy requirement. 19

20 } Classical k- anonymity localiza2on changes or extends the exact user posi=ons in such a way that k users are confused each other (not effec=ve for in- door localiza=on) } Our approach returns, given a loca=on log, a number of k possible users located in this place, with no detectable correla=on 20

21 } When a person enters a zone, the sensor associated with this zone reads the identifier EPC (Electronic Product Code) of the RFID tag. } sensors transforms the 96-bit EPC into a new ID colliding with k people. } First EPC is mapped into [1..t] (where t is the number of tags) } Then, a random (distributed) permutation function RPF operating [1, t] is used to mix tags in the set. RPF: Z t Z t RPF(i)= i g (mod t), for any g {1,, t} } Now, a hash function [1, t] à [1, d] is applied where d t. 21

22 } Data are neither stored or sent through the network, but they are elaborated by sensors and transformed to logs compliant to privacy requirements and, finally, sent to the server, which stores such logs. 22

23 } } } } } In 2008 we identified a possible attack on PKCS#7 digital signature We called this attack Dalì attack, due to the ability of the famous painter to depict double-image paints like «the image disappears» We did this with files This ambiguous presentation is not detected by digital signature It suffices for the attacker to change the name/extention Ex: copyright.pdf.p7m à auth.tif.p7m 23

24 } A number of publications since 2008 (authors: Francesco Buccafurri, Gianluca Caminiti, Gianluca Lax) } Interest of national press (Panorama - national weekly magazine) and ISSA association (Information Systems Security Association - USA) } Interest of AGID and inclusion of a change in national technical rules about digital signature 24

25 } Application of the new PRNG to strong authentication and other security features in e- payment systems and cloud-based services when power consumtion is critical } Application of our privacy-preserving localization technique to improve accountability in finantial critical environments } Best Practices and countermeasures to correctly take into account the Dalì threat to legal electronic storage. 25