Keeping Android Secrets Secure with Fingerprint Authentication and the Keystore

Transcript

1. Keeping Secrets Secure Josh Skeen | [email protected] | @mutexkid Fingerprint

   Authentication & the Android Keystore

2. Who am I? Android Developer & Instructor at Big Nerd

   Ranch Josh Skeen | [email protected] | @mutexkid

3. SecureBank http://github.com/bignerdranch/android-securebank

4. The Story So Far (typical web service situation)

5. The Story So Far (typical web service situation)

6. The Story So Far (typical web service situation)

7. The Story So Far (typical web service situation)

8. New Feature A user should be allowed to sign in

   using their fingerprint, optionally.

9. Central Problem What should i save locally if i want

   to implement fingerprint authentication, and how can i do it securely ‽

10. Getting it Wrong! Storing the password itself in the application

    Shared Preferences <map> <string name="username">johnnydoe</string> <string name="password">pizza2017</string> <boolean name="rememberUsername" value="true" /> </map> /data/data/securebankcorp.mobile.client.android/shared_prefs:

11. <map> <string name="username">johnnydoe</string> <string name="password">2A52D2D7A0F3802DB9E7AE118C99F3F1B04C07240601C0EFC8EAC0E28E22198 17B2FEC7376BD53B7D606288219D7E03AAD5A899D706BC1448D44B1D908A2DD416480652CF29F 1EEAF20AA93C4224991218E058B1C4BA4873E6363F2F0E5A35A773B21B78541EA54BFFB3D22AAE2 39A0CDD20CC50F8E6201F7B6A4D7B4AB73C46A92B0109E559343CDE6B170B1B6DAE63B42EEA8DD CCEBFC84FD610F9F9FEDFE8D8432843FEF65954D1F67919FA06AEFABF1AFEEA23B071DA478851B5E 1973664D81104B845D899CCFF437E390C40CD2D5E3038C87C4FCBD8B9F49774FB54CDC0</

    string> </map> Encrypting the password or token, but using keys and encryption constants that are defined in application code Getting it Wrong!

12. Encrypting the password or token, but using keys and encryption

    constants that are defined in application code: apktool -d release.apk Getting it Wrong!

13. Proposed Solution •Upon a user authenticating, capture the session token

    •Create a SecretKey and store it in the AndroidKeyStore •Use a Cipher w/ SecretKey to encrypt & decrypt the token •Hook it up to work with the Fingerprint API

14. code at : http://github.com/bignerdranch/android-securebank also check out: https://github.com/googlesamples/android-FingerprintDialog

15. Creating A Secret Key Android Keystore Make a (secret) Key

    Save the Key (securely!) KeyGenerator Encrypt the Data Cipher SecretKey

16. KeyStore …stores keys (and certificates)

17. AndroidKeyStore •Can store Public Keys, Private Keys, and Certificates •In

    our case, all we’ll need is a Private Key (symmetric) •Does Fancy stuff under the hood (TEE, SE, etc) •Actually a “KeystoreProvider” •Been called other things in previous versions Android Keystore Save the Key (securely!) Encrypt the Data Cipher SecretKey

18. Prep the Keystore private static final String ANDROID_KEY_STORE = "AndroidKeyStore";

    keystore = KeyStore.getInstance(ANDROID_KEY_STORE);
 keystore.load(null); KeyStoreHelper.java

19. Next Up: Creating a Secret Key KeyGenerator keyGenerator = KeyGenerator


    .getInstance(KeyProperties.KEY_ALGORITHM_AES, ANDROID_KEY_STORE);
 KeyStoreHelper.java

20. KeyGenParameterSpec KeyGenParameterSpec.Builder builder = new KeyGenParameterSpec.Builder(DEFAULT_KEY,
 KeyProperties.PURPOSE_ENCRYPT | KeyProperties.PURPOSE_DECRYPT)
 .setBlockModes(KeyProperties.BLOCK_MODE_CBC)


    .setEncryptionPaddings(KeyProperties.ENCRYPTION_PADDING_PKCS7); KeyStoreHelper.java Provides Config for how specifically we want to construct the SecretKey

21. Generate the Key keyGenerator.init(builder.build());
 keyGenerator.generateKey(); KeyStoreHelper.java

22. Under the Hood…

23. Under the Hood…

24. AES?? http://www.moserware.com/2009/09/stick-figure-guide-to-advanced.html

25. Next Up: Encrypting the Token “4be272db-22d 3-42cc-a508- d319d446cfd0” Cipher RIVN6gkFNOtrYCk77

    E8sQCc4tWRYMmMo VLyyOCWb0xk=

26. Cipher needs a SecretKey Cipher SecretKey AndroidKeyStore

27. Obtain a Cipher Instance Cipher cipher = Cipher.getInstance(KeyProperties.KEY_ALGORITHM_AES + "/"


    + KeyProperties.BLOCK_MODE_CBC + "/"
 + KeyProperties.ENCRYPTION_PADDING_PKCS7); CryptoHelper.java

28. Initializing the Cipher private void initEncryptCipher(Cipher cipher) {
 cipher.init(Cipher.ENCRYPT_MODE, keyStoreHelper.getSecretKey());


    sharedPreferencesHelper.saveIV(cipher.getIV());
 } CryptoHelper.java

29. Storing the IV (needed later!) private void initEncryptCipher(Cipher cipher) {


    cipher.init(Cipher.ENCRYPT_MODE, keyStoreHelper.getSecretKey());
 sharedPreferencesHelper.saveIV(cipher.getIV());
 } CryptoHelper.java

30. Putting It All Together: doFinal() public void encrypt(String authTokenFromServer) {


    Cipher cipher = getCipher();
 initEncryptCipher(cipher);
 byte[] bytes = cipher.doFinal(authTokenFromServer.getBytes());
 sharedPreferencesHelper.saveToken(bytes);
 } CryptoHelper.java

31. Saving the Encrypted Token SharedPreferencesHelper.java public void saveToken(byte[] encryptedToken) {


    String encoded = Base64.encodeString(encryptedToken, Base64.NO_WRAP);
 sharedPreferences .edit() .putString(SHARED_PREFERENCES_ENCRYPTED_TOKEN, encoded).apply();
 }

32. Next: Decrypting the Token Cipher RIVN6gkFNOtrYCk77 E8sQCc4tWRYMmMo VLyyOCWb0xk= “4be272db-22d 3-42cc-a508-

    d319d446cfd0”

33. Cipher for Decrypt Cipher SecretKey AndroidKeyStore Initialization Vector

34. Decrypt: Retrieve IV byte[] iv = sharedPreferencesHelper.getIV();
 IvParameterSpec ivParameterSpec =

    new IvParameterSpec(iv); CryptoHelper.java

35. Decrypt: IVParameterSpec byte[] iv = sharedPreferencesHelper.getIV();
 IvParameterSpec ivParameterSpec = new

    IvParameterSpec(iv); CryptoHelper.java

36. Decrypt: Initialize the Cipher cipher.init(Cipher.DECRYPT_MODE, keyStoreHelper.getSecretKey(), ivParameterSpec); CryptoHelper.java

37. Decrypting the Token String textToDecrypt = sharedPreferencesHelper.getEncryptedToken(); CryptoHelper.java

38. Decrypting the Token ByteArrayInputStream is = new ByteArrayInputStream(Base64.decode(textToDecrypt, Base64.DEFAULT)); CryptoHelper.java

39. Problem 2: Fingerprint Authentication FingerprintManager - system service for managing

    fingerprint reader hardware/software interaction CryptoObject - verifies the fingerprint authentication occurred and enables or revokes a Cipher object in ENCRYPT or DECRYPT mode

40. Fingerprint Sensor Technology • most are using capacitive touch •

    old tech = optical - sort of dangerous! • new tech = ultrasonic

41. Adding USE_FINGERPRINT Permission <uses-permission android:name="android.permission.USE_FINGERPRINT"/> AndroidManifest.xml

42. Adding USE_FINGERPRINT Permission requestPermissions(new String[]{Manifest.permission.USE_FINGERPRINT}, REQUEST_USE_FINGERPRINT);
 @Override
 public void onRequestPermissionsResult(int

    requestCode, @NonNull String[] permissions, @NonNull int[] grantResults) {
 if (requestCode == REQUEST_USE_FINGERPRINT && grantResults[0] == PackageManager.PERMISSION_GRANTED) {
 performFingerprintAuthentication();
 }
 }
 } LoginActivity.java

43. Fingerprint Auth: Check if Available private void performFingerprintAuthentication() {
 if

    (fingerprintManager.isHardwareDetected() && fingerprintManager.hasEnrolledFingerprints()) {
 //ready to rock. warm up the sensor
 } else {
 //no dice. show an error message, etc
 Timber.e("fingerprint not available");
 }
 } LoginActivity.java

44. KGPS: Enabling User Auth Required KeyGenParameterSpec.Builder builder = new KeyGenParameterSpec


    .Builder(DEFAULT_KEY, KeyProperties.PURPOSE_ENCRYPT |
 KeyProperties.PURPOSE_DECRYPT)
 .setBlockModes(KeyProperties.BLOCK_MODE_CBC)
 .setEncryptionPaddings(KeyProperties.ENCRYPTION_PADDING_PKCS7)
 .setUserAuthenticationRequired(true);
 throws an android.security.KeyStoreException if used w/ cipher and user’s not “authed" KeyStoreHelper.java

45. Fingerprint Auth: CryptoObject LoginActivity.java Cipher cipher = cryptoHelper.getCipher();
 cryptoHelper.initDecryptCipher(cipher);
 FingerprintManager.CryptoObject

    cryptoObject = new FingerprintManager.CryptoObject(cipher);

46. Fingerprint Manager : Authenticate LoginActivity.java fingerprintManager.authenticate(cryptoObject, authCallback);

47. Fingerprint Authentication Callbacks private void performFingerprintAuthentication() {
 Cipher cipher =

    cryptoHelper.getCipher();
 cryptoHelper.initDecryptCipher(cipher);
 FingerprintManager.CryptoObject cryptoObject = new FingerprintManager.CryptoObject(cipher);
 fingerprintManager.authenticate(cryptoObject, null, 0, new FingerprintManager.AuthenticationCallback() {
 @Override
 public void onAuthenticationFailed() {
 super.onAuthenticationFailed();
 }
 @Override
 public void onAuthenticationSucceeded(FingerprintManager.AuthenticationResult result) {
 super.onAuthenticationSucceeded(result);
 //we can now decrypt using our authenticated cipher!
 }
 @Override
 public void onAuthenticationError(int errorCode, CharSequence errString) {
 super.onAuthenticationError(errorCode, errString);
 }
 }, null);
 } LoginActivity.java

48. Decrypt, using the Authed Cipher @Override
 public void onAuthenticationSucceeded(AuthenticationResult result)

    {
 super.onAuthenticationSucceeded(result); String decryptedToken = cryptoHelper.decrypt(result.getCryptoObject());
 //we can now decrypt using our authenticated cipher
 } LoginActivity.java

49. Gotchas : Finger Deleted ?

50. Gotchas : Finger Deleted KeyPermanentlyInvalidatedException!

51. Further Keystore-Related Tricks KeyInfo: .isUserAuthenticationRequirementEnforcedBySecureHardware() .isKeyInsideSecureHardware() SecretKeyGenerator: setUserAuthenticationValidityDurationSeconds()

52. Note about Testing •robolectric “shadow object” doesn't work with keystore

    currently •real integration tests (espresso) may be best option if its important

53. Final Thoughts •Good foundation, though with security there’s never a

    “one size fits all” solution •Additional measures available - Proguard, Dexguard, SafetyNet ( is it “security theater?”) •2FA/MFA •Big Nerd Ranch Security Courses coming soon! (Android & Web) Q3ish 2017

54. Resources •code example: https://github.com/bignerdranch/securebank •SafetyNet API: https://developer.android.com/training/safetynet/index.html •Big Nerd Ranch

    Security Course: http://www.bignerdranch.com •KeyGenerator : https://developer.android.com/reference/javax/crypto/ KeyGenerator.html •AES explained with stick figures: www.moserware.com/2009/09/stick-figure-guide-to- advanced.html •IDA https://www.hex-rays.com/products/ida/ •FRIDA https://www.frida.re/docs/android/

55. Thanks! Josh Skeen | [email protected] | @mutexkid

56. https://github.com/bignerdranch/stockwatcher Josh Skeen | [email protected] | @mutexkid