Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Cryptographic bugs in RF encryption

Nazar
December 05, 2022
Programming
0
25

Cryptographic bugs in RF encryption

Review of cryptographic vulnerabilities in a tiny system with encrypted radio-frequency communication.

Nazar

December 05, 2022
Tweet

Other Decks in Programming

See All in Programming
CDKを活用した 大規模コンテナ移行 プロジェクトの紹介
yoyoyopg
0
180
フロントエンドの標準仕様をどう追っているか / How I follow the frontend standards specs
petamoriken
1
160
Progressive Web Apps for Rails developers
siaw23
2
300
Делим тесты между QA и разработчиком
mariyasaygina
0
260
Understand the mechanism! Let's do screenshots tests of Compose Previews with various variations / 仕組みから理解する!Composeプレビューを様々なバリエーションでスクリーンショットテストしよう
sumio
4
1.8k
Pythonによるイベントソーシングへの挑戦と現状に対する考察 / Challenging Event Sourcing with Python and Reflections on the Current State
nrslib
2
420
Evolution of real-time – Irina Nazarova, EuRuKo, 2024
irinanazarova
2
180
推しの夫に恋のGPS「ときメーター」#M5Stack #IoT #M5JPTour2024
riyu
0
210
What you can do with Ruby on WebAssembly
kateinoigakukun
0
210
Iteratorでページネーションを実現する
sonatard
2
670
Shinjuku.rb#95:心の技術書紹介
free_world21
1
120
Reckoner_エンジニア採用資料
3shake
0
110

Featured

See All Featured
A better future with KSS
kneath
235
17k
Build your cross-platform service in a week with App Engine
jlugia
228
18k
"I'm Feeling Lucky" - Building Great Search Experiences for Today's Users (#IAC19)
danielanewman
225
22k
Building Adaptive Systems
keathley
36
2.1k
Automating Front-end Workflow
addyosmani
1365
200k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
230
17k
Large-scale JavaScript Application Architecture
addyosmani
508
110k
Build The Right Thing And Hit Your Dates
maggiecrowley
30
2.3k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
166
48k
Music & Morning Musume
bryan
46
6k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.2k
Adopting Sorbet at Scale
ufuk
73
8.9k

Transcript

  1. Cryptographic bugs in RF Encryption Nazar Serhiichuk What could possibly

    go wrong?

  2. Introduction Small system, ridiculous number of cryptographic bugs. Very popular,

    recommended by official vendor, +200 forks on GitHub

  3. Predictable IV in CBC 01 Security requirements?

  4. None
  5. None

  6. —Someone Famous “In the CBC mode, the IV should be

    unpredictable but not secret, and differ from message to message. But bro, just use AES-GCM.”

  7. CBC Padding Oracle attack 02 “I have a couple of

    questions…” Cool padding bro
  8. None

  9. PKCS#7

  10. None

  11. Whoa! Let’s look at the demo!

  12. —Your friend “Always use authenticated encryption. AEAD is the best

    choice.”

  13. CTR with fixed nonce 03 XOR here and there…

  14. None
  15. None

  16. Whoa! Another demo!

  17. —Interested people “In AES-CTR AND AES-GCM NONCE MUST BE UNIQUE.

    Though it can predictable.”

  18. Integrity protection Man vs Universe and Man vs Adversary 04

  19. ERROR CORRECTION CODE • Military grade 96, 128-bit • Requires

    secret key • Detects any change • Too small (16, 32 bits) • Easy to compute • Malleable MAC CRC-16 MESSAGE AUTHENTICATION CODE

  20. You are kidding me! Demo!

  21. Replay attacks 05 Reusing and Recycling…

  22. Even if data is encrypted, it still can be used

    to trigger some processing again. In a nutshell

  23. Attention! DEMO AHEAD!

  24. Summary - Forging fake packets - Recovering keys and secrets

    - DoS - And a lot more…

  25. Use integrity protection 01 Say no to oracle and malleability

    attacks! Understand security requirements 02 Make CTR and GCM nonce unique, CBC IV unpredictable Use AEAD 03 AES-GCM or ChaCha-Poly1305 are your friends Build accurate threat model 04 And even better, hire someone who can Educate developers 05 Even Google has bad examples

  26. Want more details? https://www.cossacklabs.com/blog/cryptographic-failures-in-rf-encryption/

  27. CREDITS: This presentation template was created by Slidesgo, and includes

    icons by Flaticon, and infographics & images by Freepik Thanks! Do you have any questions? [email protected] https://www.linkedin.com/in/nazar-serhiichuk-17086821b