back channels can be useful! – layering authentication channels to provide covert communication

Layering Authentication to Provide Covert Channel Communication

Authors: M. Almeshekah, M. Atallah and E. Spafford

The 21st International Workshop in Security Protocols

March 20th, 2013

21st SPW Layering Authentication to Provide Covert Communication March 19-20, 2013

Motivation


Motivation

Banks traditionally provide “all-or-nothing” access.

Ideally in this situation we want at least three levels (view-only, transactions, administrative).


Motivation

Banks traditionally provide “all-or-nothing” access.

Ideally in this situation we want at least three levels (view-only, transactions, administrative).

It’s a good idea!

Why is it not provided?


Preliminary Solution


Preliminary SolutionBased on password-based authentication.

Goals:

Same interfaces.

Simple for users to remember.

Alleviate the damage of password compromise.


Preliminary SolutionBased on password-based authentication.

Goals:

Same interfaces.

Simple for users to remember.

Alleviate the damage of password compromise.

The user needs to choose three regular words.

No randomness requirement!


Preliminary Solution - 2User enters her normal username and password.

Following the password the user enters a space and one of the words, depending on what message she wants to convey.

Username :

Password :Alice

pass<sp>wi


Conveying Different Messages


Conveying Different MessagesConveying duress or coercion:

Choosing one of these words from a defined dictionary.




Exposing Phishing:

Communicating the user’s state covertly (solicited vs. unsolicited) and indirectly alerting the server.

Alleviate the damage incurred as a result of falling for a phishing attack.

A more sophisticated system with 3rd party monitoring the user’s login requests.




Exposing Phishing:

Communicating the user’s state covertly (solicited vs. unsolicited) and indirectly alerting the server.

Alleviate the damage incurred as a result of falling for a phishing attack.

A more sophisticated system with 3rd party monitoring the user’s login requests.

Credentials Sharing.


Beyond Passwords


Beyond Passwords

Biometrics - e.g., the choice of which finger to use, the angle, and the pressure can be used to express some information.


Beyond Passwords

Biometrics - e.g., the choice of which finger to use, the angle, and the pressure can be used to express some information.

Multi-factor authentication:

Two-factor and active man-in-the-middle attacks.

The multiplicity of factors provides a new communication channel.


Desiderata for a Better System



Obliviousness - Covert messages and replay protection.




Resistance to Server Compromise:

Not taxing user memory vs. vulnerability against dictionary-like attacks.




Resistance to Server Compromise:

Not taxing user memory vs. vulnerability against dictionary-like attacks.

Resistance to Persistent Adversaries.


Further Remarks


Further Remarks

The grand vision of authentication.

Authentication information stored at the servers.

Psychological factors.

Risk analysis and economics.

Questions?Mikhail Atallah

[email protected] Almeshekah [email protected]

@meshekah

Eugene H. Spafford [email protected]

@theRealSpaf

mailto:[email protected]



back channels can be useful! – layering authentication channels to provide covert communication

Technology