Cloaking Malware with Trusted Platform Module in Secure Computing Environments

Slide Note
Embed
Share

Exploring the concept of using Trusted Platform Modules (TPM) for cloaking malware to achieve secure and hidden computations. This research delves into leveraging hardware-based security features to execute and safeguard malicious code, highlighting the potential threats and implications within secure computing environments.

qcol
qcol Follow

Uploaded on Sep 29, 2024 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

E N D

Presentation Transcript

  1. Cloaking Malware with the Trusted Platform Module Alan Dunn, Owen Hofmann, Brent Waters, Emmett Witchel University of Texas at Austin USENIX Security August 12, 2011

  2. Trusted Computing Goal: Secure environment for computation Trust rooted in hardware Most familiar: Trusted Platform Module (TPM) Standard by Trusted Computing Group (TCG) IC in x86 machines connected to southbridge Widely deployed (> 350 million TPMs)

  3. Uses of Trusted Computing Typical: TPM provides hardware root of trust Store cryptographic hash of executed software Perform cryptography, store secret keys Provide hardware-protected execution environment Ours: TPM provides hardware cloak for malware Only run unmodified malware Store malware secret keys No monitoring/debuggers/virtualization

  4. Conficker B Explanation Conficker B Analysis ! get_updates() gen_domains() date = get_date_from_web() calculate domains 8/13/11 8/12/11 www.google.com Secure date mechanism Contact websites aijuer.com lkpexhjz.org environment TPM can help malware writers achieve this goal: Execute computation securely in non-analyzable for domain in domains: content = fetch_content(domains) if (check_sig(content)) apply_update(content) Goal for malware writers: Secure and hidden malware sub- computation

  5. Outline Protocol Overview Protocol Implementation Defenses

  6. Protocol Overview Infected Platform Malware Distribution Platform (MDP) main() sensitive_calc() sensitive_calc() normal_calc() Put platform in known non- analyzable state Restrict payload decryption to non-analyzable state Infection Payload Loader Late launch environment

  7. Put platform in non-analyzable state Suspend all system software, jump into known software state Late launch performs jump, records program jumped to via hash Infected Platform Infection Payload Loader Late launch environment

  8. Restricting payload decryption TPM controls private key use for keypairs it generates Binding key constrained to use in non-analyzable state Certificates show Endorsement Key (EK) belongs to legitimate TPM Remote attestation proves binding key generated by same party as EK, so payload only decryptable in late launch Malware Distribution Platform (MDP) Infected Platform Binding key Malicious payload

  9. Late Launch SENTER instruction transfers control to binary, sets TPM register based upon cryptographic hash of binary Allows binary to execute securely: stop other cores, turn off interrupts For malware: Transfer control to Infection Payload Loader (IPL) IPL hash satisfies key use constraint IPL decrypts, transfers control to malicious payload

  10. Validating the Binding Key Endorsement Key (EK) unique identifying key, certified by TPM manufacturer Sign binding key with EK? Forbidden! EK identifying, compromises anonymity Sign(EK, M1) P1 Correlate transactions A P2 Sign(EK, M2)

  11. TPM Identity (EK) with Indirection (AIK) Attestation Identity Keys (AIKs) fix anonymity Privacy CA vouches that AIK represents EK Problem: Privacy CAs don t exist Solution: Malware Distribution Platform acts as Privacy CA Establish EK legitimacy, AIKs proxy for EK Sign(AIK1, M1) P1 C vouches for legitimacy of AIKs A C P2 Sign(AIK2, M2) C is a Privacy CA

  12. Can malware generate an AIK? Owner AuthData required for AIK generation Owner AuthData not needed on platform, used rarely Capture from keylogging or from memory (Windows: cached for days)

  13. Remote attestation details Infected Platform Malware Distribution Platform (MDP) Phase 1: cred AIKrepresents EK 1) Generate AIK 2) PKEK, PKAIK, Sign(SKmanuf.,H(PKEK)) 3) Verify EK sig 4) Enc(PKEK, cred || H(PKAIK)) 5) Activate AIK: if H(PKAIK) matches AIK generated on that platform, TPM releases cred

  14. Remote attestation details (contd) Infected Platform Malware Distribution Platform (MDP) Phase 2: Prove binding key is from TPM that controls EK 1) Generate binding key with use constraint 2) PKbind, key use constraint, cred, Sign(SKAIK,H(PKbind||key use constraint)) 3) Verify use constraint, cred 4) Send encrypted malicious payload 5) Late launch, decrypt and run payload Malicious payload

  15. Implementation Protocol until late launch (w/TrouSerS) Late launch (via Flicker v0.2) on Intel platforms Infection Payload Loader (IPL): decrypt, execute payload IPL run appears as 3 second system freeze on Infected Platform due to TPM key operations in late launch Three malicious payloads Conficker B-like example Secure time via Ubuntu package manifests DDoS timebomb Secret text search

  16. Defense: Whitelisting late launch binaries Hypervisor-level whitelisting Trap on SENTER, check late launch binary List of hashes of whitelisted binaries Digitally sign binaries, whitelist signing keys Problems Requires hypervisor: tough for home users Late launch binary updates Signatures: Revocation, trust management (certificate chains)

  17. Defense: Manufacturer Cooperation Manufacturer breaks TPM guarantees for analyst Fake Endorsement Key (EK) Manufacturer produces certificate for EK that is not TPM controlled Problem: EK leak can compromise TPM security properties Fake Attestation Identity Key (AIK) Manufacturer uses EK to complete AIK activation for AIK that is not TPM controlled Problem: AIK requests need manufacturer response online

  18. Defense: Physical Compromises TPM compromise has been demonstrated Simple: Grounding LPC bus allowed faking of TPM code measurement Exotic: Etching away casing, probing around tamper-resistant wiring allowed EK recovery Industry incentives to fix Further discussion in paper (e.g. cold boot)

  19. Conclusion TPM can cloak malware sub-computations, hiding them from analysts Concrete implementation of TPM-based malware cloaking Remote attestation Late launch Strengthening TPM guarantees makes attack more resilient

Related


Understanding Malware: Types, Symptoms, and Countermeasures

Understanding Malware: Types, Symptoms, and Countermeasures

kennade
Understanding Malware: Types, Usage, and Protection

Understanding Malware: Types, Usage, and Protection

zipporah
Understanding Malware: Definitions and Types

Understanding Malware: Definitions and Types

azel963
Understanding Malware and Computer Security

Understanding Malware and Computer Security

cwirk
Understanding Malware: Types, Risks, and Prevention

Understanding Malware: Types, Risks, and Prevention

andi
Hardware Security and Trusted Platform Module Overview

Hardware Security and Trusted Platform Module Overview

till_ace
Understanding Malware Analysis with OllyDbg: A Practical Approach

Understanding Malware Analysis with OllyDbg: A Practical Approach

mirren
Understanding Malicious Software and Its Impact on Computer Systems

Understanding Malicious Software and Its Impact on Computer Systems

bess_wyn
Comprehensive Malware Analysis Techniques

Comprehensive Malware Analysis Techniques

kerschner_l
Malware Dynamic Analysis Part 6 Overview

Malware Dynamic Analysis Part 6 Overview

couillard_n
Trusted Agent Training Overview

Trusted Agent Training Overview

ruer710
Understanding Cloud Computing, Edge Computing, and Their Applications

Understanding Cloud Computing, Edge Computing, and Their Applications

rudi
Overview of the Computing Community Consortium

Overview of the Computing Community Consortium

mgelst
Overview of Task Computing in Parallel and Distributed Systems

Overview of Task Computing in Parallel and Distributed Systems

schofield_m
Ensuring Platform Integrity and Trust in Cloud Computing Environments

Ensuring Platform Integrity and Trust in Cloud Computing Environments

quin897
Effective Antivirus Approaches and Malware Defense Strategies

Effective Antivirus Approaches and Malware Defense Strategies

riah
Computing Degree Plans and Offerings at School of Computing

Computing Degree Plans and Offerings at School of Computing

lenora
Understanding Parallel and Distributed Computing Systems

Understanding Parallel and Distributed Computing Systems

aleeza
Exploring Basic Concepts of Advanced Computing Techniques

Exploring Basic Concepts of Advanced Computing Techniques

leyla
Exploring Orto-Computing: Bridging the Gap Between Formal and Phenomenological Computing

Exploring Orto-Computing: Bridging the Gap Between Formal and Phenomenological Computing

pjah
Scaling Condor on XSEDE for LIGO - Collaborative Computing Project

Scaling Condor on XSEDE for LIGO - Collaborative Computing Project

himm_7
Introduction to Mobile Computing Principles and Designing Mobile Applications

Introduction to Mobile Computing Principles and Designing Mobile Applications

twil267
Introduction to Boston University's Shared Computing Cluster

Introduction to Boston University's Shared Computing Cluster

kbayl
Ensuring Secure Testing Environments in Oregon Education System

Ensuring Secure Testing Environments in Oregon Education System

kate

More Related Content

Integrity in Attestation and Isolation by Luca Wilke
Integrity in Attestation and Isolation by Luca Wilke
Exploring Emerging Technologies in Cloud Computing
Exploring Emerging Technologies in Cloud Computing
How to Identify and Mitigate Cyber Threats
How to Identify and Mitigate Cyber Threats
Corporate Account Takeover & Information Security Awareness Presentation
Corporate Account Takeover & Information Security Awareness Presentation
Information Security Tabletop Exercise: Malware & DDOS Attack
Information Security Tabletop Exercise: Malware & DDOS Attack
Understanding DNS Firewall Architecture at Virginia Tech
Understanding DNS Firewall Architecture at Virginia Tech
Ensuring Security in Persistent Key-Value Stores using Shielded Execution
Ensuring Security in Persistent Key-Value Stores using Shielded Execution
Understanding Cloud Federation and Identity Management
Understanding Cloud Federation and Identity Management
Achieving Secure and Scalable Data Access Control in Cloud Computing
Achieving Secure and Scalable Data Access Control in Cloud Computing
Comprehensive Online Competency Module Platform for Healthcare Professionals
Comprehensive Online Competency Module Platform for Healthcare Professionals
Analysis of Single Component Assessment Exam Feedback for S112 Module
Analysis of Single Component Assessment Exam Feedback for S112 Module
Parsimoni – the European IoT/Edge OS. Secure, efficient, flexible.
Parsimoni – the European IoT/Edge OS. Secure, efficient, flexible.
Healthcare Challenges in Secure Environments
Healthcare Challenges in Secure Environments
Tamper-Evident Pairing (TEP) Protocol for Secure Wireless Pairing Without Passwords
Tamper-Evident Pairing (TEP) Protocol for Secure Wireless Pairing Without Passwords
Understanding Data Centers and Cloud Computing Technologies
Understanding Data Centers and Cloud Computing Technologies
Understanding Complex Computing Problem (CCP) and Complex Computing Activity (CCA)
Understanding Complex Computing Problem (CCP) and Complex Computing Activity (CCA)
Understanding Cloud Computing and Its Components
Understanding Cloud Computing and Its Components
Impact of Cloud Computing Technology on Young Firms' Performance
Impact of Cloud Computing Technology on Young Firms' Performance
Summary of SCD Computing Metrics and Scientific Computing for January 23rd - January 30th, 2017
Summary of SCD Computing Metrics and Scientific Computing for January 23rd - January 30th, 2017
Advanced Cloud Computing Solutions with DIRAC Services
Advanced Cloud Computing Solutions with DIRAC Services
Exploring the World of Mobile Computing
Exploring the World of Mobile Computing
Explore Computing and Digital Technology Courses at CDT
Explore Computing and Digital Technology Courses at CDT
Security Challenges in Cloud Computing: A Closer Look
Security Challenges in Cloud Computing: A Closer Look
Enhancing Goodput with HTCSS and Adstash in High Throughput Computing
Enhancing Goodput with HTCSS and Adstash in High Throughput Computing