Zero Knowledge Architectures for mobile Applications

ZERO KNOWLEDGE
ARCHITECTURES
for mobile applications

View Slide

@vixentael Mobile
Tech Lead
Feel free to reach me with any
mobile security questions.
I do check my inbox :)

View Slide

Let’s play a game

View Slide

Sensitive data – ?
@vixentael

View Slide

E2EE – ?
@vixentael

View Slide

GDPR – ?
@vixentael

View Slide

GDPR – ?
Equifax – ?
@vixentael

View Slide

#mobiconf @vixentael

View Slide

Where we are

View Slide

We have sensitive data
@vixentael

View Slide

We put it to the “cloud”
@vixentael

View Slide


View Slide

Everything runs
on smbd’s software, on smbd’s computer,
is maintained by someone else
@vixentael

View Slide

Do we trust them?
@vixentael

View Slide

Do we trust them?
Do we want to trust them?
@vixentael

View Slide

– NO.

View Slide

We don’t want.
@vixentael

View Slide

to know how secure cloud is
We don’t want
@vixentael

View Slide

to trust other ppl’s software,
computers, and maintenance
practices
- to know how secure cloud is
We don’t want
@vixentael

View Slide

to think about sensitive data
leakage
- to trust other people’s software, computers, and
maintenance practices
We don’t want
@vixentael

View Slide

- to think about sensitive data leakage
- to trust other people’s software, computers, and
maintenance practices
We don’t want
@vixentael

View Slide

View Slide

We don’t want to share
sensitive data.

View Slide

We don’t want to share
sensitive data,
but we must

View Slide

medical records
credit history
?
}
@vixentael

View Slide

your data,
managed
by someone
medical records
credit history
=
@vixentael

View Slide

– Need control.

View Slide

Control access to the sensitive
data during storing and sharing.
@vixentael

View Slide

How?
Control access to the sensitive
data during storing and sharing.
@vixentael

View Slide

– Encryption.

View Slide

Messaging End-to-End
Encryption
@vixentael

View Slide

Authentication Zero Knowledge
Proof
https://www.cossacklabs.com/zero-
knowledge-protocols-without-magic.html
@vixentael

View Slide

Data ???
- store encrypted
- share with others
- manage access to
parties
@vixentael

View Slide

– Zero Knowledge
Architectures

View Slide

ZKA is a design principle that
enables software to provide
services over protected client data
without having an unencrypted
access to it.
@vixentael

View Slide

e2ee clients
ZKA includes
@vixentael

View Slide

e2ee clients
all operations are on encrypted data:
– control access to data from different users
– CRUD
– search (in encrypted data)
ZKA includes
@vixentael

View Slide

ZKA is already solved for
speciﬁc use-cases or
in a naive ways
@vixentael

View Slide

Sharing encrypted data:
naive approach
– duplications
– key management
problems
@vixentael

View Slide

give access to
certain blocks of
data to exact users
https://github.com/cossacklabs/
hermes-core
Our take
@vixentael

View Slide

- Why me?

View Slide

ZKA relies on trust to the client
@vixentael

View Slide

Mobile runs code safely*
@vixentael

View Slide

Mobile stores keys safely*
@vixentael

View Slide

Mobile stores keys safely*
Mobile is a good client Brent
@vixentael

View Slide

– Meanwhile in
the real world…

View Slide

View Slide

{
"personal_data": {
"name": "Cat",
"surname": "Black",
"age": 25,
"home_address": "large box in living room",
"birth_date": "01/04/1992"
},
"credit_rating": 8.7,
"transactions": [{
"operation": "credit",
"bank": "CatBank1",
"amount": "2000",
"currency": "eur",
"date": "02/10/2017"
},
{
"bank": "CatBank2",
"amount": "500",
"currency": "eur",
"date": "14/02/2015"
}
]
} @vixentael

View Slide

{
"personal_data": {
"name": "Cat",
"surname": "Black",
"age": 25,
"birth_date": "01/04/1992"
},
"transactions": [{
"bank": "CatBank1",
"amount": "2000",
"currency": "eur",
"date": "02/10/2017"
},
{
"bank": "CatBank2",
"amount": "500",
"currency": "eur",
"date": "14/02/2015"
}
]
}
personal data
@vixentael

View Slide

protected data
{
"personal_data": {
"name": "Cat",
"surname": "Black",
"age": 25,
"birth_date": "01/04/1992"
},
"transactions": [{
"bank": "CatBank1",
"amount": "2000",
"currency": "eur",
"date": "02/10/2017"
},
{
"bank": "CatBank2",
"amount": "500",
"currency": "eur",
"date": "14/02/2015"
}
]
} @vixentael

View Slide

{
"personal_data": {
"name": "Cat",
"surname": "Black",
"age": 25,
"birth_date": "01/04/1992"
},
"transactions": [{
"bank": "CatBank1",
"amount": "2000",
"currency": "eur",
"date": "02/10/2017"
},
{
"bank": "CatBank2",
"amount": "500",
"currency": "eur",
"date": "14/02/2015"
}
]
}
really-really
protected data
@vixentael

View Slide

you
bank
credit
bureau
@vixentael

View Slide

you
bank
credit
bureau
what could possibly go wrong?
@vixentael

View Slide

leakage from –
your data is available everywhere
Risks
@vixentael

View Slide

leakage from –
your data is available everywhere
Risks
encrypt data with one shared ?
leak one key – leak everything
@vixentael

View Slide

B&B can accumulate extra data
about you.
Risks
@vixentael

View Slide

B&B can judge you by things
you haven’t done.
Risks
@vixentael

View Slide

B&B can record requests about
people they don’t know.
Risks
@vixentael

View Slide

How ZKA can help?

View Slide

{
"personal_data": {
"name": "Cat",
"surname": "Black",
"age": 25,
"birth_date": "01/04/1992"
},
"transactions": [{
"bank": "CatBank1",
"amount": "2000",
"currency": "eur",
"date": "02/10/2017"
},
{
"bank": "CatBank2",
"amount": "500",
"currency": "eur",
"date": "14/02/2015"
}
]
}
RW
RO
RO, customer
veriﬁcation
RW
@vixentael

View Slide

access to data
blocks
encrypted
controlled by
owner
@vixentael

View Slide

stores encrypted
updates only credit score
owns,
controls access
RW only their
transactions
access
revoked
@vixentael

View Slide

- Key wrapping
storage keys user keys
How to build it?
@vixentael
blocks

View Slide

- Key wrapping
- Manage privileges
How to build it?
@vixentael

View Slide

- Key wrapping
- Manage privileges
- Control requests
How to build it?
@vixentael

View Slide

- Key wrapping
- Manage privileges
- Control requests
- Mitigate remaining attacks
How to build it?
@vixentael

View Slide

leakage →
privileges →
replay →
other? →
Mitigating the risks:
@vixentael

View Slide

leakage → it’s encrypted
privileges →
replay →
other? →
@vixentael

View Slide

privileges → it’s encrypted
replay →
other? →
@vixentael

View Slide

replay → ZKP (it’s encrypted ;)
other? →
@vixentael

View Slide

replay → ZKP (it’s encrypted ;)
other? → tiny attack surface
@vixentael

View Slide

ZKA elsewhere

View Slide

shared
audit logs
complex docs,
spreadsheets
config files
file system
document store
protection
@vixentael

View Slide

Is it difﬁcult
to implement?

View Slide

Signal https://github.com/WhisperSystems/
SignalProtocolKit/blob/master/AxolotlKit/Classes/
Sessions/SessionBuilder.m
@vixentael

View Slide

Swift Alps Demo https://github.com/cossacklabs/theswiftalpsdemo/
blob/master/ios-project/SwiftAlpsSecDemo/
SwiftAlpsSecDemo/SessionDemo.swift
github.com/
cossacklabs/themis
@vixentael

View Slide

Hermes
github.com/cossacklabs/
hermes-core
ODING IN PROGRESS
CODING IN PROG @vixentael

View Slide

Other examples
https://tahoe-lafs.org/trac/tahoe-lafs
The Least-Authority File Store
https://tresorit.com/zerokit
ZeroKit from Tresorit
@vixentael

View Slide

Recap

View Slide

1. We know a lot about data protection and
peer-to-peer communication.
2. Collaborating on data exposes more
advanced risks. One key is not enough.
3. ZKA helps against advanced risks.
4. Sooner or later, everything will be
collaborative.
5. Learn ZKA in advance!
@vixentael

View Slide

Links 1
https://clipperz.is/blog/2007/08/24/anatomy_zero_knowledge_web_application/
Anatomy of a Zero-Knowledge Web Application, 2007
https://www.cossacklabs.com/zero-knowledge-protocols-without-magic.html
Zero Knowledge Protocols Without Magic
https://brainsware.at/blog/9-zero-knowledge-saas
Why We Develop Zero Knowledge Software

View Slide

Links 2
https://spideroak.com/articles/why-we-will-no-longer-use-the-phrase-zero-
knowledge-to-describe-our-software/
Why We Will No Longer Use the Phrase Zero Knowledge to
Describe Our Software
https://medium.com/@cossacklabs/eli5-end-to-end-encryption-ae46821db74f
Explain Like I’m 5: End-to-end Encryption
https://keybase.io/blog/encrypted-git-for-everyone
Keybase launches encrypted git

View Slide

My other security slides
https://github.com/
vixentael/my-talks

View Slide

@vixentael Mobile
Tech Lead
Feel free to reach me with any
mobile security questions.
I do check my inbox :)

View Slide

Image credits
www.flaticon.com
freepik, linector, switﬁcons, pixelperfect, smashicons
Authors:

View Slide

Zero Knowledge Architectures for mobile Applications

Zero Knowledge Architectures for mobile Applications

vixentael

More Decks by vixentael

Other Decks in Programming

Featured

Transcript