Upgrade to Pro — share decks privately, control downloads, hide ads and more …

PKI at Scale Using Short-Lived Certificates

Bryan Payne
January 25, 2016
Technology
0
870

PKI at Scale Using Short-Lived Certificates

This talk was originally given at Engima 2016.
Video available at https://www.youtube.com/watch?v=7YPIsbz8Pig

While TLS is considered a “best practice” for security, deploying the underlying PKI at scale for cloud applications presents many challenges. This starts with the need to securely bootstrap secrets into each instance. The challenges continue at runtime with the need for insight into the continued trustworthiness of each instance. Unfortunately, in practice, it can be difficult to deploy and maintain such a PKI. In an effort to solve both scale and management challenges, some advocate for the use of short-­lived certificates in lieu of revocation lists. The idea is that a compromised private key is less valuable because it will only work for a limited timespan. But what is really required to deploy such a system?

This talk will take a deep dive into the world of PKI deployments at scale. We will start with a brief overview of PKIs in general before drilling into the specific use case of protecting internally facing microservices using TLS with mutual authentication. From here we will explore the pros and cons of using short-­lived certificates. Then we will look at the operational challenges around such deployments, including scaling certificate authority services, handling reloading of certificates into services at run­time, and determining if an instance is trustworthy enough to receive renewed credentials. We will close with some parting thoughts about the remaining challenges in this space.

Bryan Payne

January 25, 2016
Tweet

More Decks by Bryan Payne

See All by Bryan Payne
Fail, Learn, Fix: Improving Security The Old-Fashioned Way
bdpayne
0
260
BLESS: Better Security and Ops for SSH Access
bdpayne
3
740
Securing Containers the Netflix Way
bdpayne
1
2.3k
Platform Security Jobs at Netflix
bdpayne
0
870
Improving Cloud Security with Attacker Profiling
bdpayne
2
820
Key Management in AWS: How Netflix Secures Sensitive Data Without Its Own Data Center
bdpayne
4
1.9k
Security at Different Layers of Abstractions: Application, Operating Systems, and Hardware
bdpayne
0
200
Platform Security at Netflix: Securing Microservices from the Ground Up
bdpayne
0
5.8k
An Introduction to Virtual Machine Introspection Using LibVMI
bdpayne
0
610

Other Decks in Technology

See All in Technology
Can We Measure Developer Productivity?
ewolff
1
150
TypeScript、上達の瞬間
sadnessojisan
46
13k
iOS/Androidで同じUI体験をネ イティブで作成する際に気をつ けたい落とし穴
fumiyasac0921
1
110
個人でもIAM Identity Centerを使おう!(アクセス管理編)
ryder472
3
180
開発生産性を上げながらビジネスも30倍成長させてきたチームの姿
kamina_zzz
2
1.7k
Why does continuous profiling matter to developers? #appdevelopercon
salaboy
0
180
エンジニア人生の拡張性を高める 「探索型キャリア設計」の提案
tenshoku_draft
1
120
Lambdaと地方とコミュニティ
miu_crescent
2
370
SSMRunbook作成の勘所_20241120
koichiotomo
1
110
適材適所の技術選定 〜GraphQL・REST API・tRPC〜 / Optimal Technology Selection
kakehashi
1
150
rootlessコンテナのすゝめ - 研究室サーバーでもできる安全なコンテナ管理
kitsuya0828
3
380
なぜ今 AI Agent なのか _近藤憲児
kenjikondobai
4
1.3k

Featured

See All Featured
How To Stay Up To Date on Web Technology
chriscoyier
788
250k
[Rails World 2023 - Day 1 Closing Keynote] - The Magic of Rails
eileencodes
33
1.9k
Automating Front-end Workflow
addyosmani
1366
200k
Statistics for Hackers
jakevdp
796
220k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
44
6.8k
Speed Design
sergeychernyshev
24
610
Teambox: Starting and Learning
jrom
133
8.8k
[RailsConf 2023 Opening Keynote] The Magic of Rails
eileencodes
28
9.1k
Building Better People: How to give real-time feedback that sticks.
wjessup
364
19k
Fashionably flexible responsive web design (full day workshop)
malarkey
405
65k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
191
16k
Documentation Writing (for coders)
carmenintech
65
4.4k

Transcript

  1. PKI at Scale Using Short-Lived Certificates Bryan D. Payne Engineering

    Manager, Platform Security

  2. weeks <6 months 6-12 months >1 year *Notified via extortion

    attempt 2 weeks 3 weeks 1 month 3 months 4 months 8 months 17 months 13 months

  3. Elastic Load Balancers Web Service Web Service Web Service Web

    Service . . . Internet Cloud / Data Center / Etc

  4. Securely Deploy Certificate / Key Communicate Securely API & UI

    for Certificate Creation Lemur Get Certificate & Key Public CA Private CA CloudCA Seal Secrets Metatron Deployment Management Spinnaker Version Control Git AMI Server with TLS Karyon Tomcat Apache Metatron Client with TLS Ribbon Metatron

  5. Securely Deploy Certificate / Key Communicate Securely API & UI

    for Certificate Creation Lemur Get Certificate & Key Public CA Private CA CloudCA Seal Secrets Metatron Deployment Management Spinnaker Version Control Git AMI Server with TLS Karyon Tomcat Apache Metatron Client with TLS Ribbon Metatron

  6. Securely Deploy Certificate / Key Communicate Securely API & UI

    for Certificate Creation Lemur Get Certificate & Key Public CA Private CA CloudCA Seal Secrets Metatron Deployment Management Spinnaker Version Control Git AMI Server with TLS Karyon Tomcat Apache Metatron Client with TLS Ribbon Metatron

  7. Revocation Is Hard

  8. CRL (rfc2459) OCSP (rfc2560) OCSP stapling (rfc6066) OCSP must staple

    (draft-hallambaker-muststaple-00)

  9. CRL: Certificate Revocation List Browser Web Server (Content) Web Server

    (CRL) Certificate Authority Update Internet CRL Cache 1: TLS Handshake 2: Check CRL

  10. CRL (rfc2459) OCSP (rfc2560) OCSP stapling (rfc6066) OCSP must staple

    (draft-hallambaker-muststaple-00)

  11. OCSP: Online Certificate Status Protocol Browser Web Server (Content) OCSP

    Responder Certificate Authority Update Internet 1: TLS Handshake 2: Get Certificate Status

  12. CRL (rfc2459) OCSP (rfc2560) OCSP stapling (rfc6066) OCSP must staple

    (draft-hallambaker-muststaple-00)

  13. OCSP Stapling Browser Web Server (Content) Certificate Authority Update Internet

    1: TLS Handshake 2: Return Certificate Status OCSP Responder

  14. CRL (rfc2459) OCSP (rfc2560) OCSP stapling (rfc6066) OCSP must staple

    (draft-hallambaker-muststaple-00)

  15. OCSP must-staple OCSP staple OCSP CRL Java C Python JavaScript

    M Georgiev et al., “The most dangerous code in the world: validating SSL certificates in non-browser software”, In Proceedings of ACM CCS, 2012.
  16. None

  17. Photo Credit: Kayamon (CC BY-SA 3.0) https://en.wikipedia.org/wiki/File:Penny_Harvest_Field_2007.jpg

  18. Short-Lived Certificates • R Rivest, “Can We Eliminate Certificate Revocation

    Lists?”, In Proceedings of Financial Cryptography, 1998. • E Topalovic et al., “Towards Short-Lived Certificates”, In Proceedings of IEEE Oakland Web 2.0 Security and Privacy (W2SP), 2012. 6 months 3 months 1 month 1 week 4 days 4 Hours

  19. Photo Credit: Bhernandez (CC BY 2.0) https://www.flickr.com/photos/kennyuhh/2917293212

  20. None

  21. AWS HMAC Generation Not real secret keys, sorry. Lifecycle of

    AccessKeyID and SecretKey is of utmost interest here. AKIAIOSFODNN7EXAMPLE:iX KQe8qXbhnN0jUe7JGVqFNXM mTxP5pI6example DELETE\n \n \n Tue, 27 Mar 2007 21:20:26 +0000\n /johnsmith/photos/puppy.jpg AccessKeyID and SecretKey HMAC- SHA-1 Customer Request lx3byBScXR6KzyMaifNkardMwNk Digest Verified by AWS

  22. Circa 2012: AWS SDKs Introduce the Provider Paradigm // provider

    paradigm dynamically asks for keys every time AWSCredentialsProvider prov = new AWSCredentialsProvider(){ public AWSCredentials getCredentials(){ RESTfulObj AWSKey = RESTService.get(“server/getAWSKey”); return new BasicAWSCredentials( AWSKey.getAccessID(), AWSKey.getSecretKey()); } }; AmazonSimpleDBClient client = new AmazonSimpleDBClient(prov); client.listDomains(); The client object in the above code example no longer caches keys.

  23. On Instance Credentials $curl http://169.254.169.254/latest/meta-data/iam/security-credentials/role { "Code" : "Success", "LastUpdated"

    : "2015-09-17T01:29:49Z", "Type" : "AWS-HMAC", "AccessKeyId" : "ASIAIL6IJJCXLEXAMPLE", "SecretAccessKey" : "iXKQe8qXbhnN0jUe7JGVqFNXMmTxP5pI6example", "Token" : "...", "Expiration" : "2015-09-17T07:47:45Z" }

  24. Alice Alice Bob Bob ID Proof + Credential Request New

    Short-Lived Credential Validate ID Generate Credential

  25. Don’t use short-lived cred to get updated cred! Alice Alice

    Bob Bob ID Proof + Credential Request New Short-Lived Credential Validate ID Generate Credential

  26. Linux Kernel (with AppArmor or SELinux) Credential Management Process Service

    with TLS Short-Lived Certificate and Key Files (write) (read) TLS Session System Identity Credentials (TPM or SGX) Credential Renewal Protocol

  27. nel (with AppArmor or SELinux) Service with TLS Short-Lived Certificate

    and Key Files (write) (read) TLS Session Loading new certificates into service… • Send signal to service • Restart service • Design service to reload certificates periodically

  28. How to load a new certificate and private key? Zero

    downtime? Apache graceful restart Maybe Nginx reload Yes Tomcat restart No HAProxy reload No Stunnel HUP No Ghostunnel SIGUSR1 Yes

  29. Develop & Deploy Code Communicate Securely Provision Credentials at Startup

    API & UI for Certificate Creation Lemur Public CA Private CA CloudCA Initialize Secrets Metatron Deployment Management Spinnaker Version Control Git AMI Server with TLS Karyon Tomcat Nginx Metatron Client with TLS Ribbon Metatron

  30. Develop & Deploy Code Communicate Securely Provision Credentials at Startup

    API & UI for Certificate Creation Lemur Public CA Private CA CloudCA Initialize Secrets Metatron Deployment Management Spinnaker Version Control Git AMI Server with TLS Karyon Tomcat Nginx Metatron Client with TLS Ribbon Metatron

  31. Develop & Deploy Code Communicate Securely Provision Credentials at Startup

    API & UI for Certificate Creation Lemur Public CA Private CA CloudCA Initialize Secrets Metatron Deployment Management Spinnaker Version Control Git AMI Server with TLS Karyon Tomcat Nginx Metatron Client with TLS Ribbon Metatron

  32. Develop & Deploy Code Communicate Securely Provision Credentials at Startup

    API & UI for Certificate Creation Lemur Public CA Private CA CloudCA Initialize Secrets Metatron Deployment Management Spinnaker Version Control Git AMI Server with TLS Karyon Tomcat Nginx Metatron Client with TLS Ribbon Metatron

  33. Long-Lived Certificates Short-Lived Certificates • Improve attack detection, in practice

    • Retrofit your applications to support revocation • Refresh certificates • Update server / client to support graceful reloading of certificates

  34. From Vision to Reality…

  35. Questions? bryanp@netflix.com http://bryanpayne.org [PS… I’m hiring!]