SecDocs Feed for author Eric Filiol

[Video] Taking control over the Tor network

Sat, 24 Mar 2012 06:44:39 +0100

Authors: Eric Filiol Seun Omosowon
Tags: Tor
Event: Chaos Communication Congress 28th (28C3) 2011
Abstract: This talk deals with weaknesses identified in the TOR network protocol and cryptography implementation. We manage to take control over users using this network and to access all your information and data exchanged despite cryptography. The TOR network is one of the most famous way to use Internet in a anonymous and secure way at least supposedly. Tor client software routes Internet traffic through a worldwide volunteer network of servers in order to conceal a user's location or usage from someone conducting network surveillance or traffic analysis. Aside protocol-oriented aspects, TOR security relies heavily on cryptography. The aim of this talk is to explain how it is possible to take over a significant part of the TOR network not to say over the whole network. We have identified two classes of weaknesses in the way Onion routers (Ors) are managed: a first class of weaknesses relates to the way the routes among Ors. It is possible to influence and to force users to use arbitrary Ors and hence control which route they take. A second class of weaknesses relates to the way cryptography is implemented. Bu using malware-based attacks and the concept of dynamic cryptographic backdoors we have succeeded to circumvent the cryptography in place without removing it. We present different possible attack scenarii which are malware-based or not (depending on the scenario considered) that have been experimented and validated on a TOR simulation network of 50 nodes and partially on the real TOR network (as far as it was possible regarding existing laws). We show that it is indeed possible to gain a lot of sensitive information thus bypassing and managing existing cryptographic mechanisms in a very efficient way and to take the effective control over a significant part of the TOR network. The attack is fully dynamic and can be replayed on request. We present an open source library that enable to automate the identification of hidden relay bridges. We propose some modification in the TOR source and protocol in order to prevent those attacks. Demos will be presented to expose the two class of vulnerabilities we exploit. An Internet access is required to make part of the demos on the real TOR network.

[Audio] Taking control over the Tor network

Fri, 23 Mar 2012 06:49:10 +0100

[Slides] Taking control over the Tor network

Fri, 23 Mar 2012 06:49:10 +0100

[Paper] New Viral Threats of PDF Language

Fri, 27 Jan 2012 06:49:56 +0100

Authors: Eric Filiol
Tags: malware PDF
Event: Black Hat EU 2008

[Slides] New Viral Threats of PDF Language

Fri, 27 Jan 2012 06:49:56 +0100

Authors: Eric Filiol
Tags: malware PDF
Event: Black Hat EU 2008

[Slides] Passive and Active Leakage of Secret Data from Non Networked Computer

Sun, 04 Jul 2010 06:05:14 +0200

Authors: Eric Filiol
Tags: network sniffer
Event: Black Hat USA 2008

[Slides] How to operationally detect and break misuse of weak stream ciphers (and even block ciphers sometimes) - Application to the Office Encryption Cryptanalysis

Fri, 18 Jun 2010 06:05:06 +0200

Authors: Eric Filiol
Tags: cryptography
Event: Black Hat EU 2010
Abstract: Despite the evergrowing use of block ciphers, stream ciphers are still widely used: satellite communications (military, diplomatic...), civilian telecommunications, software... If their intrinsic security can be considered as strong, the main drwaback lies in the high risk of key misuse wich introduces severe weaknesses, even for unconditionnally secure ciphers like the Vernam system. Such misuses are still very frequent, more than we could expect. In this talk we explain how to detect such misuses, to identify ciphertexts that are relevant to this misuse (among a huge amount of ciphertexts) and finally how to recover the underlying plaintext within minutes. This may also apply to (intendly or not) badly implemented block ciphers. To illustrate this technique, this talk will also deal with the technical cryptanalysis of encryption used in Office up to the 2003 version (RC4 based). We will focus on Word and Excel applications. The cryptanalysis has been successfully and we manage to recover more than 90% of the encrypted texts in a few seconds. The attack is based both on a pure mathematical effort AND a few basic forensic approach. In a more general cases (e.g. satellite communications), we just need to intercept ciphertexts. In the Office case, we will explain in our sense that the attack does not rely on particular weakness but in a setting that can be seriously considered and described as a possible intended trap. We will develop this concept to explain how in a more general way such trap can be built.

[Paper] How to operationally detect and break misuse of weak stream ciphers (and even block ciphers sometimes) - Application to the Office Encryption Cryptanalysis

Fri, 18 Jun 2010 06:05:05 +0200

[Paper] OpenOffice Security Design Weaknesses

Thu, 07 May 2009 22:27:00 +0200

Authors: Eric Filiol
Tags: vulnerability Office
Event: Black Hat EU 2009

[Slides] OpenOffice Security Design Weaknesses

Thu, 07 May 2009 22:10:00 +0200

Authors: Eric Filiol
Tags: vulnerability Office
Event: Black Hat EU 2009