zlacker

[return to "Mozilla Standards Positions Opposes Web Integrity API"]
1. devit+fD[view] [source] 2023-07-25 08:19:28
>>danShu+(OP)
In case it's not obvious, here is how the attack works:

1. The attacker manufactures a device, such as a smartphone, generates a keypair for it, stores it on an HSM on the device (generally called a "trusted enclave"), and signs the public key of the keypair with a master key

2. The device runs the attacker's software and is designed so that whenever non-attacker software is run with elevated privileges, the HSM is informed of that fact in a way that can't be reset without rebooting (and starting again with the attacker's software). For instance, the device might use a verified boot scheme, send the key the OS is signed with to the HSM in a way that is unchangeable until reboot, and it might employ hardening like having the CPU encrypt RAM or apply an HMAC to RAM

3. The HSM produces signatures of messages that contain statements that the device is running the attacker's software, plus whatever the attacker's software wants to communicate and it won't produce them if it's running software of the user's choice as opposed to the attacker's software as established above. It also includes the signature of its public key with the master keypair, allowing accomplices to check that the device is indeed not under the user's control, but rather under the control of someone they trust to effectively limit the user's freedom

4. Optionally, that attestation is passed through the attacker's servers, which check it and return another attestation signed by themselves, allowing to anonymize the device and apply arbitrary other criteria

5. Conniving third parties can thus use this scheme to ensure that they are interacting with a device running the attacker's software, and thus that the device is restricting the user behavior as the attacker specifies. For instance, it can ensure that the device is running the accomplice's code unmodified, preventing the user from being able to run software of their choice, and it can ensure that the user is using device as desired by the attacker and their accomplices.

This attack is already running against Android smartphone users (orchestrated by Google, in the form of SafetyNet and the Play Integrity API) and iOS smartphone users (orchestrated by Apple) and this extends the attack to the web.

◧◩
2. benter+IO[view] [source] 2023-07-25 10:08:16
>>devit+fD
Actually it would be useful to present the problem using your framing - in the press, blogs, everywhere. The other side is already bending over backwards to stretch the meaning of words (their introduction about DRM being "the backbone of the open Internet" made me me sick).
◧◩◪
3. kijin+j21[view] [source] 2023-07-25 12:00:20
>>benter+IO
The framing would work just as well if we substituted for Google a certain not-exactly-friendly-with-the-U.S. regime that also happens to produce a shitload of smartphones. Whatever we don't want them to be able to do to our smartphones, we don't want Google to be able to do, either.
◧◩◪◨
4. benter+Q41[view] [source] 2023-07-25 12:18:35
>>kijin+j21
In theory - yes, but in practice TikTok gets a lot of bashing while its American equivalents manage to get away with basically the same behavior. Meta and Google aside, Uber created Greyball to avoid regulations, they even had (still have?) a special "Ripley" button to use when facing audit, so how can we expect a foreign regime to abide by our laws if we give our own companies a free pass? And when local governments try to limit Uber's unlawful[0] actions, we threaten them with freezing our investments in other sectors? [1]

[0] https://us.boell.org/en/2019/10/17/web-partner-companies-kee...

[1] https://tvpworld.com/40781592/another-letter-from-us-ambassa...

[go to top]