当前位置:首页 > 报告详情

解码信号:理解端到端加密的真正隐私保障.pdf

上传人: 竿*** 编号:981916 2025-11-29 86页 12.90MB

1、#BHUSA BlackHatEventsDecoding Signal:Understanding the Real Privacy Guarantees of E2EEIbrahim M.ElSayed#BHUSA BlackHatEvents Setting the scene Attack surface 1:1 Messages Linked devices ConclusionAgenda#BHUSA BlackHatEvents$whoami Ibrahim M.ElSayed (the_st0rm)Security Engineer Meta Signal Lacework F

2、ocus on Static Analysis Messaging application enthuthiast Whatsapp-2018 NSO attacks#BHUSA BlackHatEventsDisclaimer Opinions shared are my own,not my employer The focus is purely technical Any app comparisons made are focused only technology-based and do not reference specific products by name#BHUSA

3、BlackHatEventsWhat to expect?A security review(Im not a crypto expert)Close collaboration with the Signal team Focus on Signal 1:1 Messaging(no groups/calls)Takeaways:how signal works,privacy guarantees and vulnz(all fixed)#BHUSA BlackHatEventsMethodology Design:What the system is supposed to do Int

4、ent:What the engineer understood Implementation:The actual code that was written.Execution:How the code behaves in practice#BHUSA BlackHatEventsMethodology-Vulnerability classes Language-specific:Memory corruption in C+Application-specific:SQL injection Logic-based:Broken authorization Product-speci

5、fic:Unique to the apps domain e.g.,leaking if 2 users are communicating#BHUSA BlackHatEventsUnderstanding Signals Architecture#BHUSA BlackHatEventsSending a mail#BHUSA BlackHatEvents#BHUSA BlackHatEvents Backend Services Mostly Java and Rust Clients Library Rust Android:Kotlin+Java iOS:Swift+ObjC De

6、sktop:Electron AppAttack Surface#BHUSA BlackHatEventsAttack Surface Backend Services Chat server:230K Storage Server:40K Clients Signal Library:100K LoC Rust Android:300K Desktop:300K iOS:500K(90%Swift)#BHUSA BlackHatEventsAttack Surface Expectation of E2EE applications Server is malicious Network i

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
根据《Decoding Signal: Understanding the Real Privacy Guarantees of E2EE》一文,以下是全文关键点: 1. Signal 1:1 Messaging 的安全架构: - 使用 Java 和 Rust 编写的后端服务。 - 客户端支持多种语言,如 Kotlin/Java (Android)、Swift/ObjC (iOS) 和 Electron (桌面)。 2. 攻击面: - 后端服务包括聊天服务器(约230K行代码)和存储服务器(约40K行代码)。 - 客户端包括 Signal 库(约100K行 Rust)、Android(约300K行)、桌面(约300K行)和 iOS(约500K行,90% Swift)。 3. 隐私保障: - 使用 AES-256-GCM 加密用户资料。 - 消息内容使用 Diffie-Hellman 密钥交换进行加密,确保向后和未来保密性。 4. 漏洞: - 平文信封漏洞:某些客户端未正确实施仅允许特定错误报告情况的平文消息,导致恶意服务器可注入消息。 - 链接设备同步漏洞:Android 客户端接受来自任何人的 SyncMessages,而不仅仅是链接设备。 5. 修复: - 所有发现的问题都已修复。 6. 方法论: - 安全工程师对 Signal 进行了静态分析,并与 Signal 团队紧密合作。
揭秘隐私保障!" 安全工程师视角!" 隐私如何保障?"
客服
商务合作
小程序
服务号
折叠