SystemsSec 2018W Lecture 14: Difference between revisions
|  Created page with "==Audio==  [https://homeostasis.scs.carleton.ca/~soma/systemssec-2018w/lectures/comp4108-2018w-lec14-28Feb2018.m4a Lecture 14 audio.]  ==Notes==" | |||
| (2 intermediate revisions by one other user not shown) | |||
| Line 3: | Line 3: | ||
| [https://homeostasis.scs.carleton.ca/~soma/systemssec-2018w/lectures/comp4108-2018w-lec14-28Feb2018.m4a Lecture 14 audio.] | [https://homeostasis.scs.carleton.ca/~soma/systemssec-2018w/lectures/comp4108-2018w-lec14-28Feb2018.m4a Lecture 14 audio.] | ||
| ==Notes== | ==Notes Student 1== | ||
| ► Many strategies are wrong: If there is one single bug in any major system we use, everything falls apart | |||
| ► We can do better, but the way we do things now is not sustainable | |||
| → Existence proof: Biology | |||
| :1. Everything starts with a random process | |||
| :2. How do biology systems protect itself again adversaries? | |||
| ANIMALS | |||
| *Animals face threats (ie. Falls of cliff, gets eaten) | |||
| *Threats from really small things (huge factor in mortality, ie. humans lifespan doubled because of disease control): | |||
| :→ They see the animal as a resource, so why not use it? | |||
| :→ Most important defence: Barrier defence | |||
| ::- Skin | |||
| :→ But we can't keep everything out: Basic chemistry | |||
| ::- Stomach acid to react with what came into your body | |||
| ::- Digestive enzymes (enzyme: biological catalyst) breaks down proteins | |||
| *Analogies: | |||
| ::DNA = "Stored code" | |||
| :::→ Backbone = "Framework" | |||
| ::Proteins = "Running code" | |||
| ::T-cells = Has randomized detectors to find bad things. If binded to a regular cell, gets killed | |||
| :::→ Auto-immune disease | |||
| :::::- T-cell recognizes some behaviour and reacts with it | |||
| :::::- To prevent mistakes (ie. autoimmune disease) | |||
| ::::::○ Only battles when there is evidence cells are dying | |||
| VIRUSES | |||
| *Chunk of DNA/RNA (in between DNA/RNA and proteins) surrounded by proteins | |||
| *When comes in contact with cell, injects DNA into cell | |||
| :- Overflow cell (cell running malicious code) until it explode, and continue to other cells | |||
| :-Cells have vulnerabilities | |||
| ::□ Viruses targets fact that cells have semi-permeable membranes | |||
| :- Defence | |||
| ::□ Cells have different membranes | |||
| IMMUNE SYSTEM | |||
| *Regular proteins will output certain peptide, immune system checks if its the right one | |||
| :- Virus imitates the protein | |||
| *Red, hot: Immune system discovered dead cells and investigates | |||
| *Incompatible MHC: Organ rejects new organ | |||
| DIGESTIVE SYSTEM | |||
| *When your good bacteria turns bad, fecal transplant | |||
| The body is not an engineering system: Separation of concern is not there, they are all just cells. | |||
| ==Notes Student 2== | |||
| Assignment now due March 5th  | |||
| Midterm postponed to March 7th  | |||
| Using biology as an existence proof: | |||
| *The code inside you was generated by random code | |||
| In computer security, we are engaged in evolution  | |||
| *The system's survival depends on evolution | |||
| *As adversary adapts, leads to new defenses | |||
| ANIMALS | |||
| Each animal has risks to survival: getting attacked, missing food | |||
| *There are also risks from really small things (which is a huge factor in mortality): | |||
| **Think about why the human lifespan has doubled? Because we are getting infectious diseases under control | |||
| *The small thing sees the animal as home (animal = set of resources) | |||
| **It's not necessarily malicious, it's a mobile place to live and eat | |||
| Animals need to have defences | |||
| *Barrier: skin → this is a physical layer | |||
| *Acid (stomach) → this is chemical, it'll just react with whatever comes into the body | |||
| *Digestive enzymes | |||
| **Enzyme = biological catalyst, something that changes the rate of a reaction | |||
| **Digestive enzymes = breaks down protein | |||
| You are made up of the following, and this is how it relates to computer science:  | |||
| *DNA = stored code | |||
| **Control code, and the patterns for the protein | |||
| **Chain of 4-letters | |||
| *RNA | |||
| **Carbohydrates | |||
| **Protein = running code | |||
| *Made up of chains of 20 amino acids | |||
| Peptide = 6-10 amino acid chain | |||
| VIRUSES | |||
| What is a biological virus? | |||
| *A chunk of DNA or RNA surrounded by a coat of protein | |||
| *Gets into a cell and forms a virus | |||
| *The cell membrane should block this, but it has vulnerabilities | |||
| *One of the fundamental ways we are protected against this: cells are all a little different in what they allow and don't allow in (so not everyone would die from the same virus) | |||
| Immune system | |||
| *Made up of cells like the rest of your body | |||
| *When the virus has infected a cell, it runs malicious code inside the cell | |||
| *Problem: immune system needs a way of knowing what's going on inside a cell, but they can't puncture the cell | |||
| *Solution: the immune system looks at the cell's behaviour, puts the peptides on the outside of the cell | |||
| *Think in evolutionary terms, how would the virus try and get around this: make its proteins out of the same peptides as the one's you're trying to infect | |||
| Major Histocompatibility Complex (MHC) | |||
| *Found on the surfaces of cells, so immune system can recognize foreign substances | |||
| *In computer science terms: deals with the problem of recognizing malicious code | |||
| *This matters for things like organ transplant | |||
| *If you're getting a transplant from someone with incompatible MHC, you're immune system with attack the organ | |||
| How does this fit in with what we're talking about this term? | |||
| *Central problem of today's attacks: if I can find the vulnerability in one host, I can infect millions of others that are running the same thing | |||
| T-cells | |||
| *Not self-reactive | |||
| *Finds the bad small things | |||
| *Once the t-cells are release to circulate in the bloodstream, they are going to see patterns they haven't seen in testing | |||
| *How do you make sure these patterns do not cause an auto-immune disease? | |||
Latest revision as of 22:00, 1 March 2018
Audio
Notes Student 1
► Many strategies are wrong: If there is one single bug in any major system we use, everything falls apart
► We can do better, but the way we do things now is not sustainable
→ Existence proof: Biology
- 1. Everything starts with a random process
- 2. How do biology systems protect itself again adversaries?
ANIMALS
- Animals face threats (ie. Falls of cliff, gets eaten)
- Threats from really small things (huge factor in mortality, ie. humans lifespan doubled because of disease control):
- → They see the animal as a resource, so why not use it?
- → Most important defence: Barrier defence
- - Skin
 
- → But we can't keep everything out: Basic chemistry
- - Stomach acid to react with what came into your body
- - Digestive enzymes (enzyme: biological catalyst) breaks down proteins
 
- Analogies:
- DNA = "Stored code"
- → Backbone = "Framework"
 
 
- DNA = "Stored code"
- Proteins = "Running code"
 
- T-cells = Has randomized detectors to find bad things. If binded to a regular cell, gets killed
- → Auto-immune disease
- - T-cell recognizes some behaviour and reacts with it
- - To prevent mistakes (ie. autoimmune disease)
- ○ Only battles when there is evidence cells are dying
 
 
 
 
- → Auto-immune disease
 
- T-cells = Has randomized detectors to find bad things. If binded to a regular cell, gets killed
VIRUSES
- Chunk of DNA/RNA (in between DNA/RNA and proteins) surrounded by proteins
- When comes in contact with cell, injects DNA into cell
- - Overflow cell (cell running malicious code) until it explode, and continue to other cells
- -Cells have vulnerabilities
- □ Viruses targets fact that cells have semi-permeable membranes
 
- - Defence
- □ Cells have different membranes
 
IMMUNE SYSTEM
- Regular proteins will output certain peptide, immune system checks if its the right one
- - Virus imitates the protein
- Red, hot: Immune system discovered dead cells and investigates
- Incompatible MHC: Organ rejects new organ
DIGESTIVE SYSTEM
- When your good bacteria turns bad, fecal transplant
The body is not an engineering system: Separation of concern is not there, they are all just cells.
Notes Student 2
Assignment now due March 5th Midterm postponed to March 7th
Using biology as an existence proof:
- The code inside you was generated by random code
In computer security, we are engaged in evolution 
- The system's survival depends on evolution
- As adversary adapts, leads to new defenses
ANIMALS
Each animal has risks to survival: getting attacked, missing food
- There are also risks from really small things (which is a huge factor in mortality):
- Think about why the human lifespan has doubled? Because we are getting infectious diseases under control
 
- The small thing sees the animal as home (animal = set of resources)
- It's not necessarily malicious, it's a mobile place to live and eat
 
Animals need to have defences
- Barrier: skin → this is a physical layer
- Acid (stomach) → this is chemical, it'll just react with whatever comes into the body
- Digestive enzymes
- Enzyme = biological catalyst, something that changes the rate of a reaction
- Digestive enzymes = breaks down protein
 
You are made up of the following, and this is how it relates to computer science: 
- DNA = stored code
- Control code, and the patterns for the protein
- Chain of 4-letters
 
- RNA
- Carbohydrates
- Protein = running code
 
- Made up of chains of 20 amino acids
Peptide = 6-10 amino acid chain
VIRUSES
What is a biological virus?
- A chunk of DNA or RNA surrounded by a coat of protein
- Gets into a cell and forms a virus
- The cell membrane should block this, but it has vulnerabilities
- One of the fundamental ways we are protected against this: cells are all a little different in what they allow and don't allow in (so not everyone would die from the same virus)
Immune system
- Made up of cells like the rest of your body
- When the virus has infected a cell, it runs malicious code inside the cell
- Problem: immune system needs a way of knowing what's going on inside a cell, but they can't puncture the cell
- Solution: the immune system looks at the cell's behaviour, puts the peptides on the outside of the cell
- Think in evolutionary terms, how would the virus try and get around this: make its proteins out of the same peptides as the one's you're trying to infect
Major Histocompatibility Complex (MHC)
- Found on the surfaces of cells, so immune system can recognize foreign substances
- In computer science terms: deals with the problem of recognizing malicious code
- This matters for things like organ transplant
- If you're getting a transplant from someone with incompatible MHC, you're immune system with attack the organ
How does this fit in with what we're talking about this term?
- Central problem of today's attacks: if I can find the vulnerability in one host, I can infect millions of others that are running the same thing
T-cells
- Not self-reactive
- Finds the bad small things
- Once the t-cells are release to circulate in the bloodstream, they are going to see patterns they haven't seen in testing
- How do you make sure these patterns do not cause an auto-immune disease?