https://homeostasis.scs.carleton.ca/wiki/api.php?action=feedcontributions&feedformat=atom&user=Bradley+2Soma-notes - User contributions [en]2026-05-02T06:11:00ZUser contributionsMediaWiki 1.42.1https://homeostasis.scs.carleton.ca/wiki/index.php?title=SystemsSec_2018W_Lecture_12&diff=21636SystemsSec 2018W Lecture 122018-04-11T21:37:09Z<p>Bradley 2: </p>
<hr />
<div>==Audio==<br />
<br />
[https://homeostasis.scs.carleton.ca/~soma/systemssec-2018w/lectures/comp4108-2018w-lec12-14Feb2018.m4a Lecture 12 Audio]<br />
<br />
==Notes==<br />
<br />
Potential Assignment Topics:<br />
*Crypto<br />
**What does it buy you?<br />
**What can’t it do? <br />
*Obfuscation<br />
*Memory corruption<br />
*Logic errors<br />
*Back doors<br />
*Certificates<br />
<br />
SQL Injections<br />
*Query is unsanitized <br />
<br />
In the browser what interpreters do we have?<br />
*Javascript<br />
*HTML<br />
*CSS<br />
<br />
What does it mean to exploit it? <br />
*To use a vulnerability to your advantage<br />
<br />
In the webpage, there are all kinds of content. There are advertisements, search bars, twitter feeds, facebook like buttons, etc. <br />
<br />
Everything on a webpage has access to the document object model. <br />
<br />
Setuid programs -> How much do you have to trust?<br />
<br />
Anyone that you allow to become root can do way too much. <br />
<br />
Sammy Attack:<br />
*Happened during the days of myspace<br />
*Forces users to send samy a friend request<br />
*Harmless<br />
<br />
In the comment section, there is a possibility of malicious code. <br />
<br />
CSRF<br />
*Have the victim visit a random webpage <br />
*Have the ability to make your web browser do all sorts of network traffic <br />
<br />
You can pull any arbitrary content over the internet and stick it into a webpage. <br />
<br />
Cookies:<br />
*Stored on the web browser <br />
*Remembers information about the person browsing the website<br />
<br />
Some websites let you stay logged in for a long time. Some don’t. <br />
<br />
XML HTTP Request -> Developed by microsoft<br />
<br />
Why did microsoft do this? <br />
*Outlook client access <br />
<br />
What people want to do with the web impacts security design. <br />
<br />
Can you embed arbitrary html in facebook? -> No<br />
<br />
Either you filter out the bad things, or you escape the bad things. <br />
<br />
How can we minimize people from running code on your web browser?<br />
*Idea of least privilege<br />
<br />
Same Origin Policy <br />
*The only person that is allowed to get access to your web browser is the origin server. <br />
<br />
CSP<br />
*Prevents stuff from coming from arbitrary sources<br />
*It does not help with you visiting untrusted sources <br />
*Keeps a list of who is trusted and who is not trusted <br />
<br />
Web browsers -> The modern operating system <br />
<br />
Web browsers have a different trust model than the operating system does.<br />
<br />
Web browsers sandboxes code<br />
<br />
Phone operating systems:<br />
*Deal with similar threat model to the web <br />
<br />
IOS strategy for dealing with threats:<br />
*Sandbox the hell out of everything <br />
<br />
Android Model:<br />
*Access control using capabilities list <br />
<br />
Everytime you install an app on android, it would need to do a security analysis. You would get questions regarding your current location, camera access, microphone access, etc. Why does it do that? For advertisement content. <br />
<br />
Snaps and flat packs<br />
*Standards for packaging linux applications to run on systems. <br />
*They also include sandboxing<br />
<br />
If you want to run skype on your linux system, you can get a “snap” for it. But you have to install it on classic mode. <br />
<br />
How are you going to make sure that you are going to be provided with safety while running untrusted code?<br />
*Access control<br />
*Sandboxing<br />
<br />
Usability of security systems <br />
<br />
Questions:<br />
*What can we do to restrict people from putting arbitrary code onto the website you are visiting? <br />
*What is browser exploit? How do we prevent it?<br />
*What is the problem with fine grained permissions?</div>Bradley 2https://homeostasis.scs.carleton.ca/wiki/index.php?title=SystemsSec_2018W_Lecture_22&diff=21617SystemsSec 2018W Lecture 222018-04-06T16:54:01Z<p>Bradley 2: </p>
<hr />
<div>==Audio==<br />
<br />
[https://homeostasis.scs.carleton.ca/~soma/systemssec-2018w/lectures/comp4108-2018w-lec22-02Apr2018.m4a Lecture 22 Audio]<br />
<br />
==Notes==<br />
<br />
General system defense strategies are<br />
*White lists<br />
*Black lists<br />
*Anomaly detection<br />
*Virtualization <br />
*Diversity <br />
<br />
Examples to eliminate diversity<br />
*Code reuse <br />
*Code replication <br />
*Centralization <br />
*Best practices <br />
*Specialization<br />
*Substitution <br />
*Interdependence <br />
<br />
When we take control of the systems, we make them more fragile.<br />
<br />
If you want diversity, you need to give up control of the system. <br />
<br />
When societies become more authoritarian, they become more brittle and vulnerable to falling apart. Think of communism. <br />
<br />
Computer scientists tend to be more authoritarian minded. We want control of our computers. <br />
<br />
Phoenix pay system was used to centralize payments. This was a terrible idea that broke horribly. <br />
<br />
Most of the code on most people’s systems is useless. <br />
<br />
Specialization is when the code on any system should be specialized to do what it is supposed to do. <br />
<br />
Everything we do in software engineering seems to be able adding functionality. <br />
<br />
Software engineering we don’t really think about how adding a certain functionality will impact the security of the system. <br />
<br />
Npm imports a lot of code that isn’t really necessary. <br />
<br />
Allow the human to choose constraints. <br />
<br />
Redundancy can be automated. <br />
<br />
Things that frame evolution<br />
*Selection<br />
*Variation<br />
*Reproduction <br />
*Interdependence <br />
*Implicit dependencies <br />
<br />
When we simulate evolution using the characteristics above, you get optimization.<br />
<br />
Most of our code that we use is not reusable. Code that is reusable is treated as very valuable and can get packaged as libraries. <br />
<br />
Implicit dependencies are escapable in a certain environment. Suppose that you are building an application that provides some library, that library will be restricted to working only on that application. If you try to use the library elsewhere, it will break.<br />
<br />
We gravitate to using the same things over and over again because they can easily be tested, they can easily be applied, and we know what they depend on. <br />
<br />
Diversity leads to more robust code. <br />
<br />
Bash is the interactive shell that we use. This is can be used as a normal command line or for shell scripts.<br />
<br />
If you start using bash, you don’t always use it for what it is meant for. You start using it for other things. For example, bash is normally meant to be used as a command line. If you use it for shell scripts, you might start running into problems. <br />
<br />
A number of websites, and applications are starting to become interdependent on chrome. For example the “stay focused” application is a web application designed to block websites. It is very dependent on chrome and cannot be used on any other web browser. <br />
<br />
To note, everything breaks. There is no perfect security mechanism. We need to use a variety of different security mechanisms for optimal performance, not just one. <br />
<br />
The goal of the attack is what we should focus on to consider security implications. <br />
<br />
The attacker comes us with a strategy that the defender does not anticipate. <br />
<br />
How do we prevent power from being misused? <br />
<br />
Artificial life - Computers aren’t dependent, they are independent.</div>Bradley 2