Loading…
This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
Welcome to the full schedule of the OWASP AppSec Research EU 2013 conference days. You’ll find the schedule for the training days at http://trainings2013.appsec.eu
View analytic
Thursday, August 22 • 5:35pm - 6:20pm
Eradicating DNS Rebinding with the Extended Same-Origin Policy

Sign up or log in to save this to your schedule and see who's attending!

The Web's principal security policy is the Same-Origin Policy (SOP), whichenforces origin-based isolation of mutually distrusting Web applications. Sincethe early days, the SOP was repeatedly undermined with variants of the DNSRebinding attack, allowing untrusted script code to gain illegitimate access toprotected network resources.  To counter these attacks, the browser vendorsintroduced countermeasures, such as DNS Pinning, to mitigate the attack. Inthis talk, we present a novel DNS Rebinding attack method leveraging the HTML5Application Cache. Our attack allows reliable DNS Rebinding attacks,circumventing all currently deployed browser-based defense measures.Furthermore, we analyze the fundamental problem which allows DNS Rebinding towork in the first place: The SOP's main purpose is to ensure securityboundaries of Web servers. However, the Web servers themselves are onlyindirectly involved in the corresponding security decision. Instead, the SOPrelies on information obtained from the domain name system, which is notnecessarily controlled by the Web server's owners. This mismatch is exploitedby DNS Rebinding. Based on this insight, we propose a light-weight extension tothe SOP which takes Web server provided information into account. Wesuccessfully implemented our extended SOP for the Chromium Web browser andreport on our implementation's interoperability and security properties.

Speakers
avatar for Ben Stock

Ben Stock

Ben Stock studied for his Bachelor at the University of Mannheim and | advanced to Technische Universität Darmstadt to graduate with a Master's | degree in IT security. His earlier work was mainly in the area of malware | and his Bachelor thesis on the Waledac botnet was awarded the CAST e.V. | award for best IT security thesis in 2010. He also played a key role in | the takedown of the Waledac botnet nowadays known as Microsoft operation... Read More →


Thursday August 22, 2013 5:35pm - 6:20pm
Großer Saal