COMPUTER SCIENCE STUDENTS

presents

Hardening Four

Who?

The Prof

Professor of Cybersecurity

with a Ph.D. from Cambridge University

and over twenty years’ experience

on how to approach real-world

security problems with logical rigour.

Giampaolo Bella

The Students

Person 1
Luca Steccanella
Person 2
Amira Bouali
Person 3
Eleonora Carrabino
Person 4
Angelo Zinna
Person 4
Pietro Biondi

Why?

As computer science students attending the Internet Security course of professor Giampaolo Bella, we have been fascinating by this consistent and complex universe.


We are interested in solving security problems associated with the development, deployment and maintenance of large-scale software-based system.
A better managment of security is a great challenge to provide technical and social developement in a reality where individuals are directly involved (online safety, privacy, cybersecurity risks).

Our interest in cyber security is increasing day by day and the opportunities given by the University Of Catania are beeing essential to our studies.

What?


Scenario


Many cameras (broadly exposed on the net) connected to a centralized server, the data stream can be seen only by clients connected to the server via internal network.

Objective

  • Redirect data stream
  • Take control of all cameras
  • Add new cameras
  • Get access to the central server as root

Attack

  • Dos with Syn flooding to crash a camera. Then Social engeneering phishing to get IP Address and user credentials (playing the "Camera installer" role)
  • Cameras exploits
  • Theft of SSH keys
  • Access to the main server with the stolen keys
  • Priviledge escalation via kernel vulnerability (server cannot be easly restarted)
  • Post exploiting

Defense

  • Use a system where it's necessary sending email or calling the Supervisor (however bypassable)
  • Use a better Firewall configuration
  • Use NIPS and HIPS on camera network
  • Use SeLinux or Apparmor to limit attacks and give more protection to the keys
  • Use SeLinux or Apparmor on the server (priviledge escalation go out of context)
  • Use a Livepatching system on the server (expensive)
  • Use a minimal Docker container, such as Alpine Linux, without exposed services, just with a minimal mapping to have a working communication.

When?

10th December 2018 - 10 AM to 1 PM

The event will continue in the afternoon!

WSF 18

Where?

Aula G

Dipartimento di Matematica e Informatica

Università di Catania

|

Viale Andrea Doria n°6

Ingresso Ovest via Santa Sofia n° 64 - Ingresso Est via Passo Gravina

Share the event!