The buzz as of late around the security and networking communities has been about the NSA and their catalog or spy toolkit. I’ve spent time in my career thinking about and doing infosec and I did a brief stint working for the FBI in a project called NCDIR. I like to think that I can provide at least a peripherally competent commentary about it [take it with a grain of salt]. Instead of thinking about the morality of it or the violation of privacy that everyone else seems to be focused on, I want to think about the mechanics.
If one takes the emotion and outrage out of the equation, there are some really interesting tools here. My initial thoughts, though, are “how is the backdoor installed?” and “how is the data harvested?” There are cases where I’m sure the backdoors are installed via local access and the data is harvested in uninteresting ways like optical taps, wireless bridges, etc., however, what how about in cases where this isn’t possible? What about when the equipment is in a bunker with no viable wireless in or out, it’s have to be done either in-band or via a tap, which would require physical access. It’d be interesting to see a BroIDS or Snort policy for the “DNT Implant Communications Protocol” once that is deconstructed.
As far as installation of the backdoor, how about the case about when interception of hardware in transit isn’t an option and physical access is also not viable? The implications of remotly exploitable network equipment for things such as this are very-wide scoped and extremely unpleasant. One can assume that if our government can exploit something like this, so can another nation-state. Not good. Not good at all. How much of our gear is manufactured abroad? They have physical access because they build it, one could assert that it is plausible that “they” could insert whatever they wanted in the hardware. Again, I’m not a hardware engineer, but I can speculate.
I’d be really interested in seeing if data is being harvested inline, without a tap and how that is being done. It’s implied in some of the descriptions of the *THROUGH listings that there is inline control available. What I’d really be interested in seeing is someone that can capture that traffic flow data in an upstream device. Flow data doesn’t lie, and it is highly likely that there is a router in the path somewhere exporting flow data that isn’t obfuscating traffic by being compromised. Where is the traffic going? How is it transported (encrypted, for sure, but how?)
How does this change how we, as network engineers, feel about RMA’d hardware? If the manufacturers don’t know about modded boot ROMS, it’s likely that RMA’d hardware is being shipped all over with backdoors that were intended for someone else in it. Oh, and another thing, this is an old document. 2008 is a lifetime ago in terms of networking and computing technology. I saw no mention of the Juniper SRX, Juniper MX, Cisco ASR, Brocade MLX/CES or Alcatel-Lucent devices. I’d bet real money all of that exists now.
Additionally, what about FIPS 140? I want to believe this can come into play, but admittedly I don’t know a lot about FIPS, just what I’ve read on the NIST site. How does FIPS assist in preventing the software hacks? Or does it? As far as most of the the network equipment backdoors, they imply that boot time code modifies the OS, can cryptographic checks aide in rooting some of these out? I have not done much in this aspect of security, but I have to believe there is a way to detect this kind of boot time modification of the OS.
This opens up an entirely new aspect of SDN, too. When your control plane is decoupled and likely running on a linux box of some sort, the targeting of “the network” becomes far more simple of a compromise. Ever done linux forensics? Most of the hacks are fairly low-brow. Root one box and you have access to the control plane of a data center, internet backbone or campus network. What about all of the white box network devices that are just linux like Arista and Cumulus Networks? Now we’re managing linux boxes like we are with Juniper and FreeBSD, except they are less customized and more vanilla (read: potentially more likely to be exploitable). This is a problem. Think because you have a firewall and a NAT device you’re safe? You’re wrong [clearly]. Hardening controllers will be increasingly important, perhaps even running them on trusted unix platforms. It’s a problem that is now much easier than intercepting hardware in transit and installing backdoors into it, but an in-depth SDN security talk is an entirely different can of worms.
This just solidifies my thought that if something is so critically important that it must remain secret and secure, don’t put it on a computer. Especially one with a network connection.
3 thoughts on “Speculation and soapboxing about the leaked NSA spy catalog.”
Comments are closed.
Judging by all the failed attempts, I think securing the OS or the boot code when someone has physical access to the device have ALL failed. Not one succeeded.
I think we can safely say it won’t stop experts.
Examples of failed attempts are things like the Xbox: https://www.youtube.com/watch?v=82vf0JQS1Sk / https://www.youtube.com/watch?v=hDa-qpsrc4c
and the current mess that is UEFI/SecureBoot doesn’t sound much better: https://www.youtube.com/watch?v=V2aq5M3Q76U
He did believe in 2012 that it might eventually be secure:
http://mjg59.dreamwidth.org/12897.html
I don’t know, maybe it is possible.
If all devices (HDD, SSD, Mainboard firmware/BIOS) it talks to include its own (updatable) firmware. Good luck securing that. Even the CPU in your PC/server has microcode that can be updated/replaced (though non-persistant ?).
I believe there was a talk about the state of IPMI in servers, but I can’t find it right now. This story comes close:
http://www.securityweek.com/security-vulnerabilities-baseboard-management-controllers-rampant-research-finds
There is a security trade off between updatable and non-updatable. Non-updatable firmware don’t get security updates, updatable firmware probably won’t get updates either 😉 and an intrusion is permanent. But for manufactures updatable is just a lot cheaper to work with.
Not trying to brush this off as not-scary or not-happening, but I’m skeptical of the reality of some of this.
Not only would you have to alter the code on a JNPR/CSCO/etc router or switch, but you’d also have to alter the code of any inline firewalls to pass the secret traffic without filtering and/or logging, and alter the code of any flow generation/aggregation/analyzation software to not report on the secret traffic that it might have observed via tap/SPAN/etc.
I’m not saying it isn’t possible or isn’t being done, just that the scope of the compromises would have to be VASTLY larger than anyone has imagined if this is working very well in the real world. Most networks care enough to filter and instrument not only transit but management traffic in fine detail. I’d like to assume that someone running Bro/Snort/homegrown whatever would have noticed FBI/NSA/etc IPs hitting their control plane by bypassing ACLs somewhere.
That’s what I’m saying. I think it’s happening, I really do. However, I want to see the data. I want to understand the mechanics. Inbound connectivity is easy to bypass, look at Meraki or a C&C botnet. They do a “phone home for instructions” to it’s an outbound connection attempt, not necessarily an inbound traffic query, which is often handled differently in counters and monitoring systems. It’s easier to hide outbound because less people, statistically, study their outbound traffic patterns.