Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Cooking with Credentials

Eric Mann
January 14, 2021
Technology
0
42

Cooking with Credentials

There are many different ways to authenticate users to your application in PHP land. This talk will take a deep look into at least three different patterns for user authentication to keep your system secure. Everything we’ll be doing is password-focused, moving from the simplest methods to the most complex. We will only discuss actually-secure PHP authentication, but presenting multiple approaches will give you and your team superb flexibility when you move from theory to implementation.

Eric Mann

January 14, 2021
Tweet

More Decks by Eric Mann

See All by Eric Mann
Evolution of PHP Security
ericmann
0
13
PHP, Meet AI
ericmann
0
9
Asynchronous Awesome
ericmann
0
110
WordPress, Meet AI
ericmann
0
27
OWASP Top Ten in Review
ericmann
0
28
Monkeys in the Machine
ericmann
0
170
Asynchronous Awesome
ericmann
0
270
Evolution of PHP Security
ericmann
0
330
Web Application Security Update: Top Vulnerabilities
ericmann
0
130

Other Decks in Technology

See All in Technology
Railsで4GBのデカ動画ファイルのアップロードと配信、どう実現する?
asflash8
1
140
[FOSS4G 2024 Japan LT] LLMを使ってGISデータ解析を自動化したい!
nssv
0
140
家具家電付アパートの冷蔵庫をIoT化してみた!
scbc1167
0
140
元旅行会社の情シス部員が教えるおすすめなre:Inventへの行き方 / What is the most efficient way to re:Invent
naospon
2
180
Forget efficiency – Become more productive without the stress
ufried
0
230
LINEヤフー株式会社における音声言語情報処理AI研究開発@SP/SLP研究会 2024.10.22
lycorptech_jp
PRO
2
260
GraphRAGを用いたLLMによるパーソナライズド推薦の生成
naveed92
0
190
Amazon CloudWatch Network Monitor 導入ガイド_デモ説明付き
yukimmmm
0
150
形式手法の 10 メートル手前 #kernelvm / Kernel VM Study Hokuriku Part 7
ytaka23
5
710
Deno+JSRでパッケージを作って公開する
askua
0
100
Fargateを使った研修の話
takesection
0
160
ライブラリでしかお目にかかれない珍しい実装
mikanichinose
2
290

Featured

See All Featured
Build your cross-platform service in a week with App Engine
jlugia
229
18k
Thoughts on Productivity
jonyablonski
67
4.3k
Fontdeck: Realign not Redesign
paulrobertlloyd
82
5.2k
Scaling GitHub
holman
458
140k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
46
2.1k
The Language of Interfaces
destraynor
154
24k
[RailsConf 2023] Rails as a piece of cake
palkan
51
4.9k
Agile that works and the tools we love
rasmusluckow
327
21k
Practical Orchestrator
shlominoach
186
10k
Typedesign – Prime Four
hannesfritz
40
2.4k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
665
120k
BBQ
matthewcrist
85
9.3k

Transcript

  1. 1

  2. 2 Hello. Eric Mann Director of Engineering, Vacasa

  3. 3

  4. 4 What is a password? Basic authentication flows Cooking with

    salt Cooking with pepper Socially distant passwords Further resources and study

  5. 5 Something you know that is information kept secret from

    others but which can be used to authenticate your identity to a system requiring identity verification and security.

  6. 6 1 First, you identify yourself to the system. This

    could be by username, email address, account ID, or some other means agreed-upon with the system. 2 Next, you have to prove you are who you say you are by confirming some pre-shared, secret detail with the system. 3 If everything lines up, you’re authenticated and logged in!

  7. 7

  8. 8 Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce

    elit ex, consequat et tincidunt non, pharetra non. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce elit ex, consequat et tincidunt non, pharetra non.
  9. None

  10. 10

  11. 11 Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce

    elit ex, consequat et tincidunt non, pharetra non. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce elit ex, consequat et tincidunt non, pharetra non. To prevent rainbow table lookup attacks, it’s best to add a unique, random salt to each password during hashing. This dramatically slows brute force attacks and further protects your users.

  12. 12 $hash = password_hash(/** ... **/, PASSWORD_DEFAULT); /** ... **/

    if (password_verify(/** ... **/, $hash) { // ... }

  13. 13

  14. 14 Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce

    elit ex, consequat et tincidunt non, pharetra non. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce elit ex, consequat et tincidunt non, pharetra non. Even with salting, you still send the plaintext of a password over the wire to the server. If the server is misconfigured or too chatty in the logs, this plaintext could be inadvertently leaked. const pepper = new TextEncoder().encode('...'); async function getKeyMaterial(password) { let encoder = new TextEncoder(); return window.crypto.subtle.importKey( 'raw', encoder.encode(password), 'PBKDF2', false, ['deriveBits'] ); }

  15. 15 Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce

    elit ex, consequat et tincidunt non, pharetra non. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce elit ex, consequat et tincidunt non, pharetra non. async function pepperPassword(password) { let keyMaterial = await getKeyMaterial(password); let keyBuffer = await window.crypto.subtle.deriveBits( { 'name': 'PBKDF2', 'salt': pepper, 'iterations': 100000, 'hash': 'SHA-256' }, keyMaterial, 256 ); let keyArray = Array.from(new Uint8Array(keyBuffer)); return keyArray.map(b => b.toString(16).padStart(2, '0')).join(''); }

  16. 16 Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce

    elit ex, consequat et tincidunt non, pharetra non. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce elit ex, consequat et tincidunt non, pharetra non. peppered = await pepperPassword('...');

  17. 17

  18. 18 Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce

    elit ex, consequat et tincidunt non, pharetra non. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce elit ex, consequat et tincidunt non, pharetra non.

  19. 19 $salt = random_bytes(SODIUM_CRYPTO_PWHASH_SALTBYTES); $seed = sodium_crypto_pwhash(/* ... */); $keypair

    = sodium_crypto_kx_seed_keypair($seed); $public_key = sodium_crypto_kx_publickey($keypair); // POST this data to the server to register $registration = [ 'identifier' => $email, 'salt' => sodium_bin2hex($salt), 'public_key' => sodium_bin2hex($public_key) ];

  20. 20 $user = get_user_from_database($email); $keypair = sodium_crypto_kx_keypair(); $public_key = sodium_crypto_kx_publickey($keypair);

    $keys = sodium_crypto_kx_server_session_keys($keypair, $user->key); $client_secret = $keys[1]; $server_secret = $keys[0]; $message = random_bytes(32); $hash = sodium_crypto_generichash($message, $server_secret); $proof = sodium_bin2hex($message . $hash);

  21. 21 $keys = sodium_crypto_kx_server_session_keys($keypair, $server_key); $client_secret = $keys[0]; $server_secret =

    $keys[1]; $server_proof = sodium_hex2bin($server_proof); $message = substr($server_proof, 0, 32); $hash = substr($server_proof, 32); if (!hash_equals( sodium_crypto_generichash($message, $server_secret), $hash )) { exit; }

  22. 22 $keys = sodium_crypto_kx_server_session_keys($keypair, $server_key); $client_secret = $keys[0]; $server_secret =

    $keys[1]; /* ... */ $message = random_bytes(32); $hash = sodium_crypto_generichash($message, $client_secret); $proof = sodium_bin2hex($message . $hash);

  23. 23 $client_proof = sodium_hex2bin($proof); $message = substr($client_proof, 0, 32); $hash

    = substr($client_proof, 32); if (!hash_equals( sodium_crypto_generichash($message, $client_secret), $hash )) { exit; } // Store the user's email in a session for subsequent requests $_SESSION['identifier'] = $email;

  24. 24

  25. 25

  26. 26

  27. 27

  28. 28