Upload File

secure software distribution in an adversarial world

  • Home
  • Software
  • Secure Software Distribution in an Adversarial World
38
Secure Software Distribution in an Adversarial World @diogomonica

Upload: diogo-monica

Post on 16-Jan-2017

830 views

Category:

Software


0 download

Report

TRANSCRIPT

Page 1: Secure Software Distribution in an Adversarial World

Secure Software Distribution in an Adversarial World

@diogomonica

🔐💾↔👹🌎

Page 2: Secure Software Distribution in an Adversarial World
Page 3: Secure Software Distribution in an Adversarial World
Page 4: Secure Software Distribution in an Adversarial World
Page 5: Secure Software Distribution in an Adversarial World
Page 6: Secure Software Distribution in an Adversarial World

source: edharrington.tumblr.com

Page 7: Secure Software Distribution in an Adversarial World

Isn’t HTTPS enough?

Page 8: Secure Software Distribution in an Adversarial World
Page 9: Secure Software Distribution in an Adversarial World
Page 10: Secure Software Distribution in an Adversarial World
Page 11: Secure Software Distribution in an Adversarial World

What about GPG?

Page 12: Secure Software Distribution in an Adversarial World
Page 13: Secure Software Distribution in an Adversarial World
Page 14: Secure Software Distribution in an Adversarial World
Page 15: Secure Software Distribution in an Adversarial World

3 months later…

Page 16: Secure Software Distribution in an Adversarial World
Page 17: Secure Software Distribution in an Adversarial World
Page 18: Secure Software Distribution in an Adversarial World
Page 19: Secure Software Distribution in an Adversarial World
Page 20: Secure Software Distribution in an Adversarial World
Page 21: Secure Software Distribution in an Adversarial World

“A software update system is secure if it can be sure that it knows about the latest available updates in a timely manner, any files it downloads are the correct files, and no harm results from checking or downloading files.”

- The Update Framework

Page 22: Secure Software Distribution in an Adversarial World

•Freshness •Signed collections •Key Hierarchy •Transparent key rotation •Threshold signing

Page 23: Secure Software Distribution in an Adversarial World

Freshness

Page 24: Secure Software Distribution in an Adversarial World

Freshness

Page 25: Secure Software Distribution in an Adversarial World

Signed Packages Signed Collection

Signed Collections

Page 26: Secure Software Distribution in an Adversarial World

Key Hierarchy

Page 27: Secure Software Distribution in an Adversarial World

Key Hierarchy

Page 28: Secure Software Distribution in an Adversarial World

Short Expiry

Long Expiry

Less Sensitive

More Sensitive

Key Hierarchy

Page 29: Secure Software Distribution in an Adversarial World

Transparent Key Rotation

Page 30: Secure Software Distribution in an Adversarial World

Transparent Key Rotation

offline

online

Page 31: Secure Software Distribution in an Adversarial World

Transparent Key Rotation

Page 32: Secure Software Distribution in an Adversarial World

Transparent Key Rotation

Page 33: Secure Software Distribution in an Adversarial World

Threshold Signing

Page 34: Secure Software Distribution in an Adversarial World

Threshold Signing

Page 35: Secure Software Distribution in an Adversarial World

Use The Update Framework (TUF)

theupdateframework.com

Page 36: Secure Software Distribution in an Adversarial World

Notary, an opinionated implementation of TUF

github.com/docker/notary

Page 37: Secure Software Distribution in an Adversarial World

When the going gets tough, get TUF going

Page 38: Secure Software Distribution in an Adversarial World

Thank you@diogomonica


SECURE INDUSTRIAL DISTRIBUTION UNITS FROM URBAN

Secure gas transportation and distribution in urban areasmembers.igu.org/old/IGU Events/wgc/wgc-2012/wgc-2012-proceedings... · Secure gas transportation and distribution in urban

Secure power distribution and monitoring solution for ...studiecd.dk/pdfs/Kap_17/3B_DI solution guide for operating theatre... · 4 A monitoring system… Secure power distribution

Battista Biggio @ AISec 2013 - Is Data Clustering in Adversarial Settings Secure?

Learning Adversarial and Secure - TUM

A Secure Mechanism for Address Block Allocation and Distribution · A Secure Mechanism for Address Block Allocation and Distribution Damien Leroy, Olivier Bonaventure Universite catholique

Provably Secure and Practical Quantum Key Distribution ... › pdf › 1407.7427v1.pdfProvably Secure and Practical Quantum Key Distribution over 307 km of Optical Fibre Boris Korzh,

Adversarial Attacks to Distributed Voltage Control in Power Distribution … · 2018-03-23 · The Center for Education and Research in Information Assurance and Security CERIAS Adversarial

Secure Communication for Mobile Agents in an Adversarial

Secure power distribution and monitoring solution for ... · PDF file4 A monitoring system Secure power distribution and monitoring solution for operating theatres This monitoring

Device-independent quantum key distribution secure against

Adversarial and Secure Machine Learning

Safe and secure power distribution Arc fault protection ... · PDF file2 Safe and secure power distribution | Arc fault protection solutions The Noble Art of Switchgear Arc Fault Protection

Secure and Reliable Multicast Video Distribution

Topic 14: Secure Communication1 Information Security CS 526 Topic 14: Key Distribution & Agreement, Secure Communication

Research Article Secure and Lightweight Key Distribution ...downloads.hindawi.com/journals/ijdsn/2013/608380.pdf · Secure and Lightweight Key Distribution with ZigBee Pro for Ubiquitous

Provably Secure and Practical Quantum Key Distribution over 307 …marketing.idquantique.com/acton/attachment/11868/f-003e/1... · Provably Secure and Practical Quantum Key Distribution

SECURE SOURCE DISTRIBUTION (M) SDN BHD · Secure Source Distribution (M) Sdn Bhd, a Value-Added Distributor (VAD), most dynamic and fastest growing I.T ... (SIEM), Proxy and Web Content

A SECURE AND EFFICIENT CONFERENCE KEY DISTRIBUTION SYSTEM

Key Pre-distribution Based Secure Backbone Formation in Wireless Sensor Networks

Secure data networks for electrical distribution applications · 2019. 5. 4. · Secure data networks for electrical distribution applications David M. LAVERTY (&), John B. O’RAW,

Lecture 22: Adversarial Image, Adversarial Training, Variational Autoencoders… · 2018-11-08 · Adversarial Images Adversarial Training Autoencoder VAE GAN Conclusions Lecture

A Secure Multicast Group Management and Key Distribution

Why RHEL isn’t just another Linux distribution Secure ......Secure Foundations: Why RHEL isn’t just another Linux distribution Lucy Kerner Principal Technical Product Marketing

SECURE SOURCE DISTRIBUTION (M) SDN BHD · 2014-04-25 · Secure Source Distribution (M) Sdn Bhd, a Value-Added Distributor (VAD), ... (SIEM), Proxy and Web Content Security, Vulnerability

Adversarial Machine Learning —An Introductiondanadach/Security_Fall_19/aml.pdf · •Machine Learning (ML) •Adversarial ML •Attack •Taxonomy •Capability •Adversarial Training

MaskAAE: Latent space optimization for Adversarial Auto ... · a simplistic distribution (such as Gaussian) to the sam-ple from the data distribution by optimising a min-max objective

Secure content distribution using untrusted servers

Generative Adversarial Networks (GANs)Figure 1: Generative adversarial nets are trained by simultaneously updating the discriminative distribution (D, blue, dashed line) so that it

GENERATIVE ADVERSARIAL NETWORKSraul/RS/GANs.pdf · Generative Adversarial Network GANs adopt the following alternative approach: Sample from a simple distribution, e.g., random noise,

Generative Adversarial NetworksGenerative Adversarial Networks have two parts: a generator and a discriminator. The generator takes in a sample from a random distribution (a noise

Document National distribution. Printing - Amazon Web Servicesofficedepotdigital.s3.amazonaws.com/print_services/...Printing.pdf · National distribution. With our secure, closed-door

Provably Secure Three-Party Authenticated Quantum Key Distribution Protocols

AASR Authenticated Anonymous Secure Routing for MANETs in Adversarial Environments-First review

Quantum key distribution: how to distill unconditionally secure keys