CSRF Attack and Its Prevention technique in ASP.NET MVC
Download as PPTX, PDF5 likes1,430 views
Cross-Site Request Forgery (CSRF) is an attack that compels an authenticated user to unknowingly execute harmful actions on a trusted web application. The document discusses various types of CSRF attacks, including reflected and local/stored attacks, and outlines countermeasures such as the use of secret tokens and validation checks. It includes details on the tools and technologies involved in both executing and mitigating these attacks.
![Case Scenario
Http Get:
Can be forged easily using HTML tags like img, anchor and so on.
<a href=“http://bank.com/transfer.do?acct=MARIA&amount=10000”>View my
pictures</a>
Http Post:
Use of JavaScript code to perform HTTP POST request.
<form action="http://bank.com/transfer.do" method="POST">
<input type="hidden" name="acct" value="MARIA"/>
<input type="hidden" name="amount" value="100000"/>
<input type="submit" value="View my pictures"/>
</form>
<body onload="document.forms[0].submit()">](https://image.slidesharecdn.com/ss-g2-final-csrf-ppt-150503213218-conversion-gate02/85/CSRF-Attack-and-Its-Prevention-technique-in-ASP-NET-MVC-7-320.jpg)
CSRF Attack and Its Prevention technique in ASP.NET MVC
- 1. Cross Site Request Forgery Attack INSTRUCTOR: PRESENTED BY: Prof. Dr. Edward Babulak Renu Dongol Suvash Shah Uttam Karmacharya
- 2. Overview Introduction Background Types of CSRF Attack Case Scenario Countermeasure Tools and Technology Conclusion
- 3. Introduction Cross-site request forgery is an attack that forces an end user to execute unwanted actions on a web application in which they're currently authenticated. A successful CSRF attack can force the user to perform state changing requests like transferring funds, changing their email address, and so forth.
- 4. Background CSRF Attack is only successful if the user is currently authenticated because browser uses the session Id. The attacker from his own site is attacking the user on the trusted site that’s why it is called cross site attack. The forged http request is sent by the attacker on behalf of user without user’s consent so it is forgery request. It uses the http get and http post method for making the request.
- 5. Types of CSRF Attack Reflected CSRF attacks Done using a blog, an email message or an instant message with URL. Usually this kind of attack fails. Local/stored CSRF attacks Social sites where users are allowed to post images or links. This kind of attack succeeds.
- 6. Basic requirement for attack Trusted Site Malicious Site Authenticated User
- 7. Case Scenario Http Get: Can be forged easily using HTML tags like img, anchor and so on. <a href=“http://bank.com/transfer.do?acct=MARIA&amount=10000”>View my pictures</a> Http Post: Use of JavaScript code to perform HTTP POST request. <form action="http://bank.com/transfer.do" method="POST"> <input type="hidden" name="acct" value="MARIA"/> <input type="hidden" name="amount" value="100000"/> <input type="submit" value="View my pictures"/> </form> <body onload="document.forms[0].submit()">
- 8. Figure 1: Cross Site Request Forgery Attack on Http Get
- 9. Figure 2: Cross Site Request Forgery Attack on Http Post
- 10. Demo on CSRF Attack
- 11. Counter Measure Referrer Header Approach Client side validation. Checks the domain name. Secret Token Approach Server side validation. Checks the token value sent by server in every http post request.
- 13. Demo on CSRF Counter Measure
- 14. Tools and Technology Server: IIS, MS SQL Coding language: C#, SQL, JavaScript, HTML Tools: Microsoft Visual Studio, MS SQL Server Management Studio 2012, Firefox, IE 11, Chrome, SEEDUbuntu9.11 VM OS: Windows 8.1
- 15. Conclusion Request can be send to the trusted site along with the required cookies using browser's feature. Gained knowledge on how to forge the http request into two different ways i.e. Http Get and Http Post. We can use secret token approach as it’s counter measure.
- 17. Thank you!! Any Questions?