Embed Size (px)
Citation preview
Node.js Authentication and Data Security !
Jonathan LeBlanc !Twitter: @jcleblanc !Book: http://bit.ly/iddatasecurity!
Release Date: !August 2016 !!Book Details: !http://bit.ly/iddatasecurity!
Identity & Data Security Book!
Security is Hard !
1: 123456 !2: password !3: 12345678 !4: qwerty !5: 12345 !6: 123456789 !7: football!8: 1234 !9: 1234567 !
Top 25 Passwords of 2015!
10: baseball!11: welcome!12: 1234567890 !13: abc123 !14: 111111 !15: 1qaz2wsx !16: dragon!17: master!
18: monkey!19: letmein!20: login!21: princess!22: qwertyuiop!23: solo !24: passw0rd !25: starwars!
Protecting Identity !
Password Attack Vectors !
Brute Force Attacks!Calculate all key variations within a given length, then trying each one until the password is guessed. !Protect via: Key stretching, CAPTCHA, 2FA !!Dictionary Attacks!Use a list of predetermined words/phrase to guess password. !Protect via: Salting!!Rainbow Tables!Use precalculated password hashes to break encryption. !Protect via: Salting !
Protecting Against Password Attacks!
Salting and Peppering !
//hashing identical messages with no salt !hash('mechagodzilla') = ! 162e0a91026a28f1f2afa11099d1fcbdd9f2e351095ebb196c90e10290ef1227 !hash('mechagodzilla') = ! 162e0a91026a28f1f2afa11099d1fcbdd9f2e351095ebb196c90e10290ef1227 !!//hashing identical messages with random salt !hash('mechagodzilla' + '458cf2979ef27397db67077775225334') = ! f3499a916612e285612b32702114751f557a70606c32b54b92de55153d40d3b6 !hash('mechagodzilla' + 'ef5b72eff781b09a0784438af742dd6e') = ! 7e29c5c48f44755598dec3549155ad66f1af4671091353be4c4d7694d71dc866 !hash('mechagodzilla' + 'cc989b105a1c6a5f0fb460e29dd272f3') = ! 6dedd3dbb0639e6e00ca0bf6272c141fb741e24925cb7548491479a1df2c215e!
Hashing with and without salts!
Storing Salts!Store alongside the hash!
!Salt Reuse!Salts should be be unique per password!
!Salt Length!Same size as hash? 64 bits? 128 bits? !
Considerations when using Salts!
bcrypt!Designed for password security, based on the blowfish cipher, CPU & RAM intensive. !!PBKDF2 !Comes from RSA laboratories, performs the HMAC (hash + key) over a specific number of iterations. !!scrypt!Designed to make it costly to perform large-scale hardware attacks by requiring large amounts of memory!
Password Encryption Algorithms!
!var bcrypt = require('bcrypt'); !!app.post("/register", function(req, res){ ! //capture user login information! var username = req.body.username; ! var password = req.body.password; ! ! //generate salt, then hash! bcrypt.genSalt(10, function(err, salt) { ! bcrypt.hash(password, salt, function(err, key) { ! console.log('key: ' + key.toString('hex')); ! console.log('salt: ' + salt.toString('hex')); ! }); ! }); !}); !!
Hashing with bcrypt!
!var bcrypt = require('bcrypt'); !!app.post("/login", function(req, res){ ! //capture user login information! var username = req.body.username; ! var password = req.body.password; !! //fetch user record from database ! //required info: stored hash! ! //compare password from login to stored user hash! bcrypt.compare(password, hash, function(err, res){ ! //returns true or false! }); !}); !!
Login Hash Comparison with bcrypt!
!var crypto = require('crypto'); !!app.post("/register", function(req, res){ ! //capture user login information! var username = req.body.username; ! var password = req.body.password; ! ! //generate salt, then hash! crypto.randomBytes(32, function(ex, salt){ ! crypto.pbkdf2(password, salt, 4096, 512, 'sha256', function(err, key){ ! if (err) throw err; ! //store username, hashed password, and salt in your database! }); ! }); !}); !!
Hashing with PBKDF2!
!var crypto = require('crypto'); !!app.post("/login", function(req, res){ ! //capture user login information! var username = req.body.username; ! var password = req.body.password; !! var dbsalt = 'USER RECORD SALT FROM YOUR DATABASE'; ! var dbhash = 'USER RECORD KEY FROM YOUR DATABASE'; !! //generate hash with login attempt, then compare to stored user hash! crypto.pbkdf2(password, dbsalt, 4096, 512, 'sha256', function(err, comparehash){ ! if (err) throw err; ! if (dbhash.toString('hex') === comparehash.toString('hex')){ ! //passwords match! } else { ! //passwords don't match! } ! }); !}); !!
Login Hash Comparison with PBKDF2!
Refreshing Hashes !
Protecting Data !
Ideal Scenario: SSL/TLS !
Domain Validation (DV) !Certificate authority (CA) validates domain access only!
Certificate Types!
Organization Validation (OV) !!CA validates DV and basic organization information!
Certificate Types!
Extended Validation (EV) !CA validates DV, OV, and legal existance of the organization!
Certificate Types!
//generate private key and self-signed certificate valid for 1 year !openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout server.key -out server.crt!
Generate your self-signed certificate and private key!
//package requirements!var fs = require('fs'), ! https = require('https'), ! querystring = require('querystring'), ! bodyParser = require('body-parser') ! app = require('express')(); !!//support JSON & URL encoded bodies !app.use(bodyParser.json()); !app.use(bodyParser.urlencoded({ ! extended: true !})); !
Setting up Express server for HTTPS traffic!
//handle all POST requests !app.post('/', function (req, res){ ! var message = req.body; ! res.send('Message received:' + querystring.stringify(message)); !}); !!//set certificate options !var options = { ! key: fs.readFileSync('server.key'), ! cert: fs.readFileSync('server.crt'), ! passphrase: 'YOUR KEY PASSWORD' !}; !!//create server with certificate options !https.createServer(options, app).listen(3000, function () { ! console.log('Server started: Listening on port 3000'); !}); !
Setting up Express server for HTTPS traffic!
Synchronous Cryptography !
Single User Environment !
Encryption (ECB, CBC, OFB, CFB, CTR) !Data privacy and confidentiality mode. Attacker cannot obtain info on the plaintext data. !!Authentication(CMAC) !Data authenticity mode. Receiver can validate whether cleartext came from intended sender. !!Authenticated Encryption (CCM, GCM, KW/KWP/TKW) !Includes both data privacy and authenticity. !
Modes of Operation!
var crypto = require('crypto'); !!var text = "Encryption Testing AES"; !var key = crypto.randomBytes(32); //256 bit shared secret !var iv = crypto.randomBytes(16); //initialization vector - 16 bytes !var algorithm = 'aes-256-ctr'; //cypher and mode of operation !!//encrypt !var cipher = crypto.createCipher(algorithm, key, iv); !var encrypted = cipher.update(text, 'utf8', 'hex'); !encrypted += cipher.final('hex'); !console.log("Encrypted: " + encrypted); !
Configuring and encrypting message!
//---- !// data sent to server: ciphertext (encrypted var) !// data known by server: key !//---- !!//cypher and mode of operation !var algorithm = 'aes-256-gcm'; !!//decrypt !var decipher = crypto.createDecipher(algorithm, key, iv); !var decrypted = decipher.update(encrypted, 'hex', 'utf8'); !decrypted += decipher.final('utf8'); !console.log("Decrypted: " + decrypted);!
Decrypting ciphertext!
Security Fundamentals Wrapup!
Thank You! !!Slides: http://slideshare.net/jcleblanc!
Jonathan LeBlanc !Twitter: @jcleblanc !Book: http://bit.ly/iddatasecurity!
