ABSTRACT: We examine the security requirements for creating a Deniable File System (DFS), and the efficacy with which the TrueCrypt disk-encryption software meets those requirements. We find that the Windows Vista operating system itself, Microsoft Word, and Google Desktop all compromise the deniability of a TrueCrypt DFS. While staged in the context of TrueCrypt, our research highlights several fundamental challenges to the creation and use of any DFS: even when the file system may be deniable in the pure, mathematical sense, we find that the environment surrounding that file system can undermine its deniability, as well as its contents. Finally, we suggest approaches for overcoming these challenges on modern operating systems like Windows.

There are several threat models against which a DFS could potentially be secure:

• One-Time Access. The attacker has a single snapshot of the disk image. An example would be when the secret police seize Alice’s computer.
• Intermittent Access. The attacker has several snapshots of the disk image, taken at different times. An example would be border guards who make a copy of Alice’s hard drive every time she enters or leaves the country.
• Regular Access. The attacker has many snapshots of the disk image, taken in short intervals. An example would be if the secret police break into Alice’s apartment every day when she is away, and make a copy of the disk each time.

We analyzed the most current version of TrueCrypt available at the writing of the paper, version 5.1a. We shared a draft of our paper with the TrueCrypt development team in May 2008. TrueCrypt version 6.0 was released in July 2008. We have not analyzed version 6.0, but observe that TrueCrypt v6.0 does take new steps to improve TrueCrypt’s deniability properties (e.g., via the creation of deniable operating systems, which we also recommend in Section 5). We suggest that the breadth of our results for TrueCrypt v5.1a highlight the challenges to creating deniable file systems. Given these potential challenges, we encourage the users not to blindly trust the deniability of such systems. Rather, we encourage further research evaluating the deniability of such systems, as well as research on new yet light-weight methods for improving deniability.

On the 28th episode of The Silver Bullet Security Podcast, Gary interviews Bill Cheswick, a lead member of technical staff at AT&T Research and all around security guru. Bill has been working in computer security for over 35 years. He coined the term “proxy” in 1990 with reference to firewalls, and co-authored the book Firewalls and Internet Security which was used to train an entire generation of sys admins. Gary and Bill discuss whether we’re winning or losing the computer security war, how security threats have evolved from pimply-faced teenagers to organized crime, whether we should move security into “the cloud,” and whether re-naming “Christmas lights” to “solstice lights” would bypass NJ holiday decoration ordinances.

• Bill Cheswick
• AT&T Research
• Lumeta
• FWIS
• “The Design of a Secure Internet Gateway” (Usenix 1990, coining of “proxy”)
• The Apache web server
• Turtles all the Way Down
• Ed Amoroso’s Silver Bullet Podcast (use blink test to compare)
• Solstice Lights

This limits the attack since in many cases TCP timestamps may be unavailable. In particular, Tor hidden services operate at the TCP layer, stripping all TCP and IP headers. If an attacker wants to estimate clock skew over the hidden service channel, the only directly available clock source may be the 1 Hz HTTP timestamp. The quantization noise in this case is three orders of magnitude above the TCP timestamp case, making the approach I used in the paper effectively infeasible.

While visiting Cambridge in summer 2007, Sebastian Zander developed an improved clock skew measurement technique which would dramatically reduce the noise of clock-skew measurements from low-frequency clocks. The basic idea, shown below, is to only request timestamps very close to a clock transition, where the quantization noise is lowest. This requires the attacker to firstly lock-on to the phase of the clock, then keep tracking it even when measurements are distorted by network jitter.

Sebastian and I wrote a paper — An Improved Clock-skew Measurement Technique for Revealing Hidden Services — describing this technique, and showing results from testing it on a Tor hidden service installed on PlanetLab. The measurements show a large improvement over the original paper, with two orders of magnitude lower noise for low-frequency clocks (like the HTTP case). This approach will allow previous attacks to be executed faster, and make previously infeasible attacks possible.

The paper will be presented at the USENIX Security Symposium, San Jose, CA, US, 28 July – 1 August 2008.

Hidden malicious circuits provide an attacker with a stealthy attack vector. As they occupy a layer below the entire software stack, malicious circuits can bypass traditional defensive techniques. Yet current work on trojan circuits considers only simple attacks against the hardware itself, and straightforward defenses. More complex designs that attack the software are unexplored, as are the countermeasures an attacker may take to bypass proposed defenses.

We present the design and implementation of Illinois Malicious Processors (IMPs). There is a substantial design space in malicious circuitry; we show that an attacker, rather than designing one speci?c attack, can instead design hardware to support attacks. Such ?exible hardware allows powerful, general purpose attacks, while remaining surprisingly low in the amount of additional hardware. We show two such hardware designs, and implement them in a real system. Further, we show three powerful attacks using this hardware, including a login backdoor that gives an attacker complete and highlevel access to the machine. This login attack requires only 1341 additional gates: gates that can be used for other attacks as well. Malicious processors are more practical, more flexible, and harder to detect than an initial analysis would suggest.

Theoretical? Sure. But combine this with stories of counterfeit computer hardware from China, and you've got yourself a potentially serious problem.

Synopsis:Blue Box #69: Linksys SPA-941 vulnerability, SIP DDoS, New release of SIPVicious, Asterisk security roadmap, other VoIP security news, listener comments and more

Welcome to Blue Box: The VoIP Security Podcast #69, a 46-minute podcast  from Dan York and Jonathan Zar covering VoIP security news, comments and opinions.   

Download the show here (MP3, 21MB) or subscribe to the RSS feed to download the show automatically. 

You may also listen to this podcast right now:

Show Content:

Show Content:

• 00:20 - Intro to the show, contact information and how to provide comments.  Welcome to all the new listeners - and to all those listeners who have been here for so long! 
• 01:03 - Programming notes:
  • Reminder of new comment line – 206-350-7280
  • Books from Peter Thermos and Ari Takanen – anniversary show promotion

  
  

• 02:13 - XSS attack against Linksys SPA-941
• 07:52 - USENIX ;login: article about SIP DDoS from Hement Sengar


• 12:10 - New release of SIPVicious tool suite


• 14:49 - Voice of VOIPSA: Suggestions for a Security Roadmap for Asterisk


• 21:02 - heise.uk: Skype silently fixes URI problem which relates to Windows issue pointed out back in July (see also here )


• 25:39 - heise online: Bavarian Criminal Police Office denies use of Trojan to eavesdrop on VoIP calls


• 27:57 - Zeenews.com (India): CBI favours monitoring of Internet gateways and networks


• 28:54 - Washington Post: VOIP Mix-Up Exposes Customer Call Data


• 31:58 - CXO Today (India): Mobile Business Applications Boost Security Demand




• 35:08 - Upcoming shows:
  
  
  
  • Oct 24-25, New York, USA, Interop
    
  • Oct 29-Nov 1, Boston, USA, Fall 2007 VON
• 35:33 - Comments - challenge with audio comment
  
• 35:47 - Comment (email) from Stephen Bosch asking about the CISSP credential


• 40:13 - Comment (email) from Scott Tanner (which we’ll hold for the 2-yr show) - Dan also gets talking about Dopplr.com


• 41:27 - Comment (email) from Frank Leonhardt


• 41:40 - Comment (email) from Michael Miller about PPT syncing software - answer is that we use a site called SlideShare




• 43:18 - Review of the last week's traffic on the VOIPSEC public mailing list 


• 43:57 - Wrap-up of the show
  


• 46:26 - End of show 

Comments, suggestions and feedback are welcome either as replies to this post  or via e-mail to blueboxpodcast@gmail.com.  Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows.  You may also call the listener comment line at either +1-206-350-7280 or via SIP to 'bluebox@voipuser.org' to leave a comment there. 

Thank you for listening and please do let us know what you think of the show.

For the 19th episode of The Silver Bullet Security Podcast, Gary interviews Mikko Hyppönen, Chief Research Officer at F-Secure. During this show, Gary and Mikko discuss Helsinki and Finnish pronunciation, whether mobile viruses are all hype or a legitimate threat, if the iPhone as a closed system is good or bad for security, and Mikko’s prediction for the appearance of the first mobile botnet. They also chat about Finnish hip-hop.

• Mikko Hyppönen
• Mikko Hyppönen- Wikipedia
• F-Secure
• Mobile Malware - Mikko’s USENIX 2007 talk, both audio and video (scroll down a bit)
• Xevious
• The FSMCs

Synopsis:Blue Box #69: Linksys SPA-941 vulnerability, SIP DDoS, New release of SIPVicious, Asterisk security roadmap, other VoIP security news, listener comments and more

Welcome to Blue Box: The VoIP Security Podcast #69, a 46-minute podcast  from Dan York and Jonathan Zar covering VoIP security news, comments and opinions.   

Download the show here (MP3, 21MB) or subscribe to the RSS feed to download the show automatically. 

You may also listen to this podcast right now:

Show Content:

Show Content:

• 00:20 - Intro to the show, contact information and how to provide comments.  Welcome to all the new listeners - and to all those listeners who have been here for so long! 
• 01:03 - Programming notes:
  • Reminder of new comment line – 206-350-7280
  • Books from Peter Thermos and Ari Takanen – anniversary show promotion

  
  

• 02:13 - XSS attack against Linksys SPA-941
• 07:52 - USENIX ;login: article about SIP DDoS from Hement Sengar


• 12:10 - New release of SIPVicious tool suite


• 14:49 - Voice of VOIPSA: Suggestions for a Security Roadmap for Asterisk


• 21:02 - heise.uk: Skype silently fixes URI problem which relates to Windows issue pointed out back in July (see also here )


• 25:39 - heise online: Bavarian Criminal Police Office denies use of Trojan to eavesdrop on VoIP calls


• 27:57 - Zeenews.com (India): CBI favours monitoring of Internet gateways and networks


• 28:54 - Washington Post: VOIP Mix-Up Exposes Customer Call Data


• 31:58 - CXO Today (India): Mobile Business Applications Boost Security Demand




• 35:08 - Upcoming shows:
  
  
  
  • Oct 24-25, New York, USA, Interop
    
  • Oct 29-Nov 1, Boston, USA, Fall 2007 VON
• 35:33 - Comments - challenge with audio comment
  
• 35:47 - Comment (email) from Stephen Bosch asking about the CISSP credential


• 40:13 - Comment (email) from Scott Tanner (which we’ll hold for the 2-yr show) - Dan also gets talking about Dopplr.com


• 41:27 - Comment (email) from Frank Leonhardt


• 41:40 - Comment (email) from Michael Miller about PPT syncing software - answer is that we use a site called SlideShare




• 43:18 - Review of the last week's traffic on the VOIPSEC public mailing list 


• 43:57 - Wrap-up of the show
  


• 46:26 - End of show 

Comments, suggestions and feedback are welcome either as replies to this post  or via e-mail to blueboxpodcast@gmail.com.  Audio comments sent as attached MP3 files are definitely welcome and will be played in future shows.  You may also call the listener comment line at either +1-206-350-7280 or via SIP to 'bluebox@voipuser.org' to leave a comment there. 

Thank you for listening and please do let us know what you think of the show.