SlideShare a Scribd company logo

JavaScriptを使って学ぶEnd-to-Endセキュリティ 第3回

J
Jun Kurihara

The document provides an overview of end-to-end (E2E) security using JavaScript, discussing various cryptographic methods including AES and RSA. It details the pros and cons of different encryption techniques, key management, and implementation examples using Node.js and browser environments. The author, Jun Kurihara, also presents JavaScript code snippets for encryption and decryption processes.

Technology
1 of 61
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
JavaScript End-to-End 3 1),2) 1) 2) January 26, 2020 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 1 / 61
Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 2 / 61
1 2 End-to-End (E2E) Web E2E JavaScript (AES) AES( ) Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 3 / 61
: 1 PK SK 2 PK SK 3 D PK X 4 X SK D Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 4 / 61
⇒ AES Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 5 / 61
AES pros/cons RSA 1 AES 1 Diffie-Hellman Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 6 / 61
: Web Web : Bash, Git Node.js, npm, yarn Google Chrome and/or Firefox Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 7 / 61
( ) 1 &JS 2 AES 3 4 MAC Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 8 / 61
Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 9 / 61
⇓ JavaScript RSA (Elliptic Curve Cryptography)2 2 2 Elliptic Curve Diffie-Hellman; ECDH Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 10 / 61
RSA RSA Cryptography 1977 Rivest-Shamir-Edelman 3 2000 ( ) RFC 8017 (PKCS#1 v2.2) ANSI X9.31 IEEE 1363 CRYPTREC 1024–4096bits 3 4 3 4 RSA-OAEP( ) RSA-PSS( ) Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 11 / 61
Elliptic-Curve Cryptography 5 1985 Victor Miller Neal Koblitz Diffie-Hellman(DH)6 ECDH DSA7 ECDSA RFC8442 CRYPTREC IEEE P1363 TLS Bitcoin 256–521bits (Compact form) ECDH ECDH-Ephemeral 8 5 6 RFC2631 https://tools.ietf.org/html/rfc2631 7 NIST FIPS 186-4 https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf 8 Forward Secrecy( ) Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 12 / 61
AES Pros/Cons Pros Cons AES (128bits ) SoC 9 (RSA: 2048bits ) ⇒ 9 Intel AES-NI Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 13 / 61
AES RSA 10 1 AES RSA 128 3072 256–383 192 7680 384–511 256 15360 512– AES RSA 24 10 Recommendation for Key Management, Special Publication 800-57 Part 1 Rev. 4, NIST, 01/2016. https://csrc.nist.gov/publications/detail/sp/800-57-part-1/rev-4/final Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 14 / 61
AES-128 RSA-3072 AES: = 0, 1, . . . , 2128 − 1 1 RSA: = 2 ( ) RSA Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 15 / 61
Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 16 / 61
JavaScript (Node.js) src/commands-browser.html Node.JS Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 17 / 61
E2E Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 18 / 61
: Node.js (> v10) yarn 11 Google Chrome ( ) Firefox Visual Studio Code WebStorm 11 : npm i -g yarn Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 19 / 61
JavaScript GitHub 12 Clone $ git clone https://github.com/junkurihara/slides-e2e-security-js.git $ cd sample03 $ yarn install $ yarn build 12 https://github.com/junkurihara/slides-e2e-security-js/ Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 20 / 61
RSA Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 21 / 61
RSA RSA D PK ⇒ RSA 13 RSA 13 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 22 / 61
RSA 2 14 PKCS#1-v1.5 Padding Optimal Asymmetric Encryption Padding (OAEP) 14 PKCS#1 (RFC8017) https://tools.ietf.org/html/rfc8017 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 23 / 61
PKCS#1-v1.5 Padding RSA RSAES-PKCS1-v1 5 M D = 0x00 || 0x02 || RandomSequence || 0x00 || M 15 PKCS#1 v2.2 RFC8017) CRYPTREC 16 15 1998 Bleinchenbacher’s Attack 2018 Internet (ROBOT Attack) 16 https://www.cryptrec.go.jp/method.html Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 24 / 61
Optimal Asymmetric Encryption Padding (OAEP) 17 RSA RSA-OAEP RSAES (RSA Encryption Scheme) - OAEP M All or Nothing Transform (AONT) D D = AONT(M, RandomSeed) PKCS#1-v1.5 Padding PKCS#1 v2.2 (RFC8017) OAEP RSA OAEP 17 M. Bellare and P. Rogaway, “Optimal Asymmetric Encryption,” in Proc. EUROCRYPTO 1994, pp. 92–111, LNCS 950, 1994. Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 25 / 61
: OAEP Masked Seed, Masked Data Block Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 26 / 61
JavaScript RSA-OAEP sample string $ yarn execute rsa-oaep-demo ’hello world’ <Input Data> hello world <Generated RSA Key Pair (PEM Form)> Public Key: 30820122300d06092a864....... // (DER) Private Key: 308204bc020100300d060....... // (DER) ======= <Encrypted Data (in Base64)> 9f28a2acbd7cd5bc748f3....... // ’hello world’ RSA-OAEP ======= <Decrypted Data> hello world // ======= Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 27 / 61
( ): RSA $ yarn execute rsa-keygen <Generated RSA Key Pair (DER Form)> Public Key: 30820122300d06092a864886f70d010...... Private Key: 308204be020100300d06092a864886f...... RSA-OAEP (-p ) $ yarn execute rsa-oaep-encrypt ’hello world’ -p ’308201223......’ <Encrypted Data (in HexString)> 8da122191b1ec6da72afe88c96cfbb3...... // RSA-OAEP (-s ) $ yarn execute rsa-oaep-decrypt ’8da122191b1ec6da72afe88c96cfbb3......’ -s ’308204be020100300d06092a864886f......’ <Decrypted Data> hello world Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 28 / 61
RSA-OAEP RSA (src/test-api.js) // bits = 2048 const jscu = getJscu(); // jscu Node.js Crypto, WebCrypto const keyPair = await jscu.pkc.generateKey( ’RSA’, {modulusLength: bits} // 2048bits RSA ); RSA-OAEP (src/test-api.js) const jscu = getJscu(); // jscu Node.js Crypto, WebCrypto // DER (Uint8Array) jscu const publicKey = new jscu.Key(’der’, publicDer); const encrypted = await jscu.pkc.encrypt( uint8ArrayData, // publicKey, {hash: ’SHA-256’} // OAEP ’SHA-256’ ); Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 29 / 61
RSA-OAEP (src/test-api.js) const jscu = getJscu(); // jscu Node.js Crypto, WebCrypto // DER (Uint8Array) jscu const privateKey = new jscu.Key(’der’, privateDer); const decrypted = await jscu.pkc.decrypt( uint8ArrayEncryptedData, privateKey, {hash: ’SHA-256’} // ); jscu Node.js Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 30 / 61
RSAES-OAEP WebCrypto API( ) Node.js Crypto 18 RSAES-PKCS1-v1 5 JS OAEP ⇒ SSL/TLS ROBOT 18 WebCrypto jscu purejs (IE ) Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 31 / 61
(ECDH) Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 32 / 61
1 ECDH Elliptic-Curve Diffie-Hellman (ECDH) ECDH ⇒ ( ) AES Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 33 / 61
(EC)DH : (A) (B) 19 19 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 34 / 61
: ECDH 20 2 : (PK1, SK1) (PK2, SK2) SharedRandomBits = ECDH(PK1, SK2) = ECDH(PK2, SK1). ECDH (Compact form) 20 EC DH Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 35 / 61
JavaScript ECDH sample 2 $ yarn execute check-ecdh <ECC Key Pair A (DER Form)> Public Key: 3059301306072a8648ce3d020106082... // A Private Key: 308193020100301306072a8648ce3d0... // A ======= <ECC Key Pair B (DER Form)> Public Key: 3059301306072a8648ce3d020106082... // B Private Key: 308193020100301306072a8648ce3d0... // B ======= // A B Shared Bits from Public Key A and Private Key B: c55393fc681811141... // B A Shared Bits from Public Key B and Private Key A: c55393fc681811141... Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 36 / 61
ECDH src/test-api.js const jscu = getJscu(); const jscec = getJscec(); //js-crypto-ec jscu // DER jscu JWK const publicKey = new jscu.Key(’der’, publicDer); const privateKey = new jscu.Key(’der’, privateDer); const publicJwk = await publicKey.export(’jwk’); const privateJwk = await privateKey.export(’jwk’); // const derived = await jscec.deriveSecret(publicJwk, privateJwk); jscu ECDH+AES API ECDH ECDH Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 37 / 61
ECDH WebCrypto API( ) Node.js Crypto 21 21 [ ] encrypt API deriveBits( ) [Node.js] ECDH Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 38 / 61
2 AES (=ECDH ) AES ⇒ HKDF (RFC5869) Concat KDF (RFC8039)22 etc.... HKDF 22 JOSE https://tools.ietf.org/html/rfc8037 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 39 / 61
JavaScript ECDH AES ECDH, HDKF, AES AES ⇓ RSA 23 23 AES ( 256bits ) Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 40 / 61
( ) EC (2 2 ) $ yarn execute ecc-keygen <Generated ECC Key Pair (DER Form)> Public Key: 3059301306072a8648ce3d020...... Private Key: 308193020100301306072a864..... $ yarn execute ecc-keygen <Generated ECC Key Pair (DER Form)> Public Key: 3059301306072a8648ce3d020..... Private Key: 308193020100301306072a864..... Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 41 / 61
ECDH+HKDF+AES-CBC $ yarn execute ecdh-aes-encrypt ’hello world’ -p ’3059301306072a8648ce3d020106082a8648c......’ // -s ’308193020100301306072a8648ce3d0201060......’ // <Shared Bits> // ECDH 51a1a502d01917e6ae0c7cd69cc7078d4a07d0172d271555d001485621551eef <Derived AES Key> // HDKF Key: f52372329867b83ee4e2cada7452a909e85b1ffc2401c5e3b7e7aa7bf9363f7b HKDF-Salt: 1dffbb6a9a0b91929b690116e3abd75b4a984e4d8686fcd9e35b4bd0220ebfe7 HKDF-Hash: SHA-256 <Encrypted data> // AES-CBC Data: e36ded44e0e27a8f01d160feb54b1c30 Initial Vector: e9799bff5bdbd3400b1c753e5d5506ff // Key, Salt, IV, Encrypted Data Msgpack <Msgpacked encrypted and kdf data> 82a9656e6372797074656482a464617461d...... Msgpack serialize Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 42 / 61
ECDH+HKDF+AES-CBC // msgpack $ yarn execute ecdh-aes-decrypt ’82a9656e6372797074656482a46461......’ -p ’3059301306072a8648ce3d0201060......’ // -s ’308193020100301306072a8648ce3......’ // <Shared Bits> // ECDH 51a1a502d01917e6ae0c7cd69cc7078d4a07d0172d271555d001485621551eef <Derived AES Key> // msgpack f52372329867b83ee4e2cada7452a909e85b1ffc2401c5e3b7e7aa7bf9363f7b <Decrypted Data> // hello world Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 43 / 61
ECDH, HKDF, AES : src/commands-node.js // Shared bits const sharedBits = await ecdh(publicKeyA, privateKeyB); // HKDF key derivation const aesKey = await deriveKeyFromMasterSecret(sharedBits, 32); // AES-CBC encryption const encrypted = await encryptAES(data, aesKey.key); // packing for ease const packed = msgpack.encode({encrypted, kdfParams: aesKey.kdfParams}); Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 44 / 61
: src/commands-node.js const depack = msgpack.decode(uint8ArrayData); // Shared bits const sharedBits = await ecdh(publicKeyB, privateKeyA); // HKDF key derivation const aesKey = await deriveKeyFromMasterSecret( sharedBits, 32, depack.kdfParams.salt, depack.kdfParams.hash ); // AES-CBC decryption const decrypted = await decryptAES( depack.encrypted.data, aesKey.key, depack.encrypted.iv ); Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 45 / 61
Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 46 / 61
2 RSA-OAEP ECDH, KDF, AES Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 47 / 61
n n ( ) SK Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 48 / 61
1 AES ⇒ 2 Perfect Forward Secrecy ⇒ Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 49 / 61
AES Hybrid Encryption, Key Encapsulation K AES 24 K 24 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 50 / 61
AES K ( ) AES AES AES CDN 25 25 DRM Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 51 / 61
Perfect Forward Secrecy (Perfect) Forward Secrecy ⇓ 1 Ephemeral Scheme Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 52 / 61
SSL/TLS ⇒ Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 53 / 61
Ephemeral Scheme AES & Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 54 / 61
ECDH Ephemeral Scheme 26 ECDH-Ephemeral (ECDHE)27 ⇒ i.e., Forward secrecy Ephemeral Ephemeral ? 26 RSA Ephemeral Scheme RSA-4096 AES-256 27 TLS https://tools.ietf.org/html/rfc8422 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 55 / 61
Ephemeral ? ⇓ Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 56 / 61
Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 57 / 61
RSA: OAEP (RSAES-OAEP) ECDH: AES : Ephemeral Scheme: Perfect Forward Secrecy JavaScript / Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 58 / 61
: MAC : SHA2, SHA3 : HMAC/CMAC : RSA Signature/ECDSA Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 59 / 61
: iTransfy by Zettant Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 60 / 61
: : recruit@zettant.com URL: https://www.zettant.com Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 61 / 61

More Related Content

PDF
JavaScriptを使って学ぶEnd-to-Endセキュリティ 第4回
Jun Kurihara
 
PDF
JavaScriptを使って学ぶEnd-to-Endセキュリティ 第1回
Jun Kurihara
 
PDF
JavaScriptを使って学ぶEnd-to-Endセキュリティ 第2回
Jun Kurihara
 
PDF
JavaScriptを使って学ぶEnd-to-Endセキュリティ Appendix
Jun Kurihara
 
PDF
Whitepaper: Digipass Authentication for Pulse Connect Secure
Kappa Data
 
PPTX
Crypto academy
Paul Gillingwater, MBA
 
PPTX
Authentication in Node.js
Jason Pearson
 
PDF
Computer security module 3
Deepak John
 
JavaScriptを使って学ぶEnd-to-Endセキュリティ 第4回
Jun Kurihara
 
JavaScriptを使って学ぶEnd-to-Endセキュリティ 第1回
Jun Kurihara
 
JavaScriptを使って学ぶEnd-to-Endセキュリティ 第2回
Jun Kurihara
 
JavaScriptを使って学ぶEnd-to-Endセキュリティ Appendix
Jun Kurihara
 
Whitepaper: Digipass Authentication for Pulse Connect Secure
Kappa Data
 
Crypto academy
Paul Gillingwater, MBA
 
Authentication in Node.js
Jason Pearson
 
Computer security module 3
Deepak John
 

Similar to JavaScriptを使って学ぶEnd-to-Endセキュリティ 第3回 (20)

PDF
Java script and web cryptography (cf.objective)
ColdFusionConference
 
PDF
Web cryptography javascript
Jose Manuel Ortega Candel
 
PDF
BlueHat v18 || Record now, decrypt later - future quantum computers are a pre...
BlueHat Security Conference
 
PDF
Onward15
sarah_nadi
 
PDF
IRJET- Survey on Blockchain based Digital Certificate System
IRJET Journal
 
PDF
introduction to jsrsasign
Kenji Urushima
 
PPTX
39110832_39110863Project (1)certificategeneration.pptx
SaaimSherif
 
PDF
Public key Infrastructure (PKI)
Venkatesh Jambulingam
 
PDF
One library for all Java encryption
Dan Cvrcek
 
PDF
C0281010016
inventionjournals
 
PDF
I26043047
IJERA Editor
 
PDF
Chapter 10 cryptography-public encryption
Syaiful Ahdan
 
PDF
Introduction to cryptography for software developers
Intopalo Digital Oy
 
PDF
When Crypto Attacks! (Yahoo 2009)
Nate Lawson
 
PDF
Lec 4 Public Key Cryptography & Digital Identity 2022f.pdf
junaidkhalid631
 
PDF
Improving Network Security by Modifying RSA Algorithm
paperpublications3
 
PDF
HKG18-402 - Build secure key management services in OP-TEE
Linaro
 
PDF
DATA SECURITY ANALYSIS AND SECURITY EXTENSION FOR SMART CARDS USING JAVA CARD
ijait
 
PPTX
How to do Cryptography right in Android Part One
Arash Ramez
 
PDF
IRJET- Public Key Infrastructure (PKI) Understanding for Vxworks RTOS using A...
IRJET Journal
 
Java script and web cryptography (cf.objective)
ColdFusionConference
 
Web cryptography javascript
Jose Manuel Ortega Candel
 
BlueHat v18 || Record now, decrypt later - future quantum computers are a pre...
BlueHat Security Conference
 
Onward15
sarah_nadi
 
IRJET- Survey on Blockchain based Digital Certificate System
IRJET Journal
 
introduction to jsrsasign
Kenji Urushima
 
39110832_39110863Project (1)certificategeneration.pptx
SaaimSherif
 
Public key Infrastructure (PKI)
Venkatesh Jambulingam
 
One library for all Java encryption
Dan Cvrcek
 
C0281010016
inventionjournals
 
I26043047
IJERA Editor
 
Chapter 10 cryptography-public encryption
Syaiful Ahdan
 
Introduction to cryptography for software developers
Intopalo Digital Oy
 
When Crypto Attacks! (Yahoo 2009)
Nate Lawson
 
Lec 4 Public Key Cryptography & Digital Identity 2022f.pdf
junaidkhalid631
 
Improving Network Security by Modifying RSA Algorithm
paperpublications3
 
HKG18-402 - Build secure key management services in OP-TEE
Linaro
 
DATA SECURITY ANALYSIS AND SECURITY EXTENSION FOR SMART CARDS USING JAVA CARD
ijait
 
How to do Cryptography right in Android Part One
Arash Ramez
 
IRJET- Public Key Infrastructure (PKI) Understanding for Vxworks RTOS using A...
IRJET Journal
 
Ad

More from Jun Kurihara (7)

PDF
プライバシ保護のためのインターネットアーキテクチャの進化 (2025-07-11)
Jun Kurihara
 
PDF
TLS 1.3におけるハイブリッド耐量子鍵交換 - Hybrid Post Quantum Key Exchange for TLS 1.3
Jun Kurihara
 
PDF
植松友彦先生 著 「研究読本」の2022年バージョン副読本
Jun Kurihara
 
PDF
Hybrid Public Key Encryption (HPKE)
Jun Kurihara
 
PDF
Mutualized Oblivious DNS (μODNS): Hiding a tree in the wild forest
Jun Kurihara
 
PDF
DNS におけるセキュリティ&プライバシ動向
Jun Kurihara
 
PDF
Modern Authentication -- FIDO2 Web Authentication (WebAuthn) を学ぶ --
Jun Kurihara
 
プライバシ保護のためのインターネットアーキテクチャの進化 (2025-07-11)
Jun Kurihara
 
TLS 1.3におけるハイブリッド耐量子鍵交換 - Hybrid Post Quantum Key Exchange for TLS 1.3
Jun Kurihara
 
植松友彦先生 著 「研究読本」の2022年バージョン副読本
Jun Kurihara
 
Hybrid Public Key Encryption (HPKE)
Jun Kurihara
 
Mutualized Oblivious DNS (μODNS): Hiding a tree in the wild forest
Jun Kurihara
 
DNS におけるセキュリティ&プライバシ動向
Jun Kurihara
 
Modern Authentication -- FIDO2 Web Authentication (WebAuthn) を学ぶ --
Jun Kurihara
 
Ad

Recently uploaded (20)

PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PDF
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
PDF
KodekX | Application Modernization Development
KodekX
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Cloud computing and distributed systems.
kkkkkhan
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
A Presentation on Artificial Intelligence
memembruh336
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
Electronic commerce courselecture one. Pdf
OmerMohamed64
 
KodekX | Application Modernization Development
KodekX
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
Approach and Philosophy of On baking technology
30anthuong17
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 

JavaScriptを使って学ぶEnd-to-Endセキュリティ 第3回

  • 1. JavaScript End-to-End 3 1),2) 1) 2) January 26, 2020 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 1 / 61
  • 2. Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 2 / 61
  • 3. 1 2 End-to-End (E2E) Web E2E JavaScript (AES) AES( ) Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 3 / 61
  • 4. : 1 PK SK 2 PK SK 3 D PK X 4 X SK D Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 4 / 61
  • 5. ⇒ AES Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 5 / 61
  • 6. AES pros/cons RSA 1 AES 1 Diffie-Hellman Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 6 / 61
  • 7. : Web Web : Bash, Git Node.js, npm, yarn Google Chrome and/or Firefox Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 7 / 61
  • 8. ( ) 1 &JS 2 AES 3 4 MAC Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 8 / 61
  • 9. Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 9 / 61
  • 10. ⇓ JavaScript RSA (Elliptic Curve Cryptography)2 2 2 Elliptic Curve Diffie-Hellman; ECDH Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 10 / 61
  • 11. RSA RSA Cryptography 1977 Rivest-Shamir-Edelman 3 2000 ( ) RFC 8017 (PKCS#1 v2.2) ANSI X9.31 IEEE 1363 CRYPTREC 1024–4096bits 3 4 3 4 RSA-OAEP( ) RSA-PSS( ) Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 11 / 61
  • 12. Elliptic-Curve Cryptography 5 1985 Victor Miller Neal Koblitz Diffie-Hellman(DH)6 ECDH DSA7 ECDSA RFC8442 CRYPTREC IEEE P1363 TLS Bitcoin 256–521bits (Compact form) ECDH ECDH-Ephemeral 8 5 6 RFC2631 https://tools.ietf.org/html/rfc2631 7 NIST FIPS 186-4 https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-4.pdf 8 Forward Secrecy( ) Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 12 / 61
  • 13. AES Pros/Cons Pros Cons AES (128bits ) SoC 9 (RSA: 2048bits ) ⇒ 9 Intel AES-NI Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 13 / 61
  • 14. AES RSA 10 1 AES RSA 128 3072 256–383 192 7680 384–511 256 15360 512– AES RSA 24 10 Recommendation for Key Management, Special Publication 800-57 Part 1 Rev. 4, NIST, 01/2016. https://csrc.nist.gov/publications/detail/sp/800-57-part-1/rev-4/final Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 14 / 61
  • 15. AES-128 RSA-3072 AES: = 0, 1, . . . , 2128 − 1 1 RSA: = 2 ( ) RSA Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 15 / 61
  • 16. Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 16 / 61
  • 17. JavaScript (Node.js) src/commands-browser.html Node.JS Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 17 / 61
  • 18. E2E Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 18 / 61
  • 19. : Node.js (> v10) yarn 11 Google Chrome ( ) Firefox Visual Studio Code WebStorm 11 : npm i -g yarn Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 19 / 61
  • 20. JavaScript GitHub 12 Clone $ git clone https://github.com/junkurihara/slides-e2e-security-js.git $ cd sample03 $ yarn install $ yarn build 12 https://github.com/junkurihara/slides-e2e-security-js/ Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 20 / 61
  • 21. RSA Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 21 / 61
  • 22. RSA RSA D PK ⇒ RSA 13 RSA 13 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 22 / 61
  • 23. RSA 2 14 PKCS#1-v1.5 Padding Optimal Asymmetric Encryption Padding (OAEP) 14 PKCS#1 (RFC8017) https://tools.ietf.org/html/rfc8017 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 23 / 61
  • 24. PKCS#1-v1.5 Padding RSA RSAES-PKCS1-v1 5 M D = 0x00 || 0x02 || RandomSequence || 0x00 || M 15 PKCS#1 v2.2 RFC8017) CRYPTREC 16 15 1998 Bleinchenbacher’s Attack 2018 Internet (ROBOT Attack) 16 https://www.cryptrec.go.jp/method.html Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 24 / 61
  • 25. Optimal Asymmetric Encryption Padding (OAEP) 17 RSA RSA-OAEP RSAES (RSA Encryption Scheme) - OAEP M All or Nothing Transform (AONT) D D = AONT(M, RandomSeed) PKCS#1-v1.5 Padding PKCS#1 v2.2 (RFC8017) OAEP RSA OAEP 17 M. Bellare and P. Rogaway, “Optimal Asymmetric Encryption,” in Proc. EUROCRYPTO 1994, pp. 92–111, LNCS 950, 1994. Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 25 / 61
  • 26. : OAEP Masked Seed, Masked Data Block Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 26 / 61
  • 27. JavaScript RSA-OAEP sample string $ yarn execute rsa-oaep-demo ’hello world’ <Input Data> hello world <Generated RSA Key Pair (PEM Form)> Public Key: 30820122300d06092a864....... // (DER) Private Key: 308204bc020100300d060....... // (DER) ======= <Encrypted Data (in Base64)> 9f28a2acbd7cd5bc748f3....... // ’hello world’ RSA-OAEP ======= <Decrypted Data> hello world // ======= Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 27 / 61
  • 28. ( ): RSA $ yarn execute rsa-keygen <Generated RSA Key Pair (DER Form)> Public Key: 30820122300d06092a864886f70d010...... Private Key: 308204be020100300d06092a864886f...... RSA-OAEP (-p ) $ yarn execute rsa-oaep-encrypt ’hello world’ -p ’308201223......’ <Encrypted Data (in HexString)> 8da122191b1ec6da72afe88c96cfbb3...... // RSA-OAEP (-s ) $ yarn execute rsa-oaep-decrypt ’8da122191b1ec6da72afe88c96cfbb3......’ -s ’308204be020100300d06092a864886f......’ <Decrypted Data> hello world Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 28 / 61
  • 29. RSA-OAEP RSA (src/test-api.js) // bits = 2048 const jscu = getJscu(); // jscu Node.js Crypto, WebCrypto const keyPair = await jscu.pkc.generateKey( ’RSA’, {modulusLength: bits} // 2048bits RSA ); RSA-OAEP (src/test-api.js) const jscu = getJscu(); // jscu Node.js Crypto, WebCrypto // DER (Uint8Array) jscu const publicKey = new jscu.Key(’der’, publicDer); const encrypted = await jscu.pkc.encrypt( uint8ArrayData, // publicKey, {hash: ’SHA-256’} // OAEP ’SHA-256’ ); Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 29 / 61
  • 30. RSA-OAEP (src/test-api.js) const jscu = getJscu(); // jscu Node.js Crypto, WebCrypto // DER (Uint8Array) jscu const privateKey = new jscu.Key(’der’, privateDer); const decrypted = await jscu.pkc.decrypt( uint8ArrayEncryptedData, privateKey, {hash: ’SHA-256’} // ); jscu Node.js Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 30 / 61
  • 31. RSAES-OAEP WebCrypto API( ) Node.js Crypto 18 RSAES-PKCS1-v1 5 JS OAEP ⇒ SSL/TLS ROBOT 18 WebCrypto jscu purejs (IE ) Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 31 / 61
  • 32. (ECDH) Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 32 / 61
  • 33. 1 ECDH Elliptic-Curve Diffie-Hellman (ECDH) ECDH ⇒ ( ) AES Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 33 / 61
  • 34. (EC)DH : (A) (B) 19 19 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 34 / 61
  • 35. : ECDH 20 2 : (PK1, SK1) (PK2, SK2) SharedRandomBits = ECDH(PK1, SK2) = ECDH(PK2, SK1). ECDH (Compact form) 20 EC DH Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 35 / 61
  • 36. JavaScript ECDH sample 2 $ yarn execute check-ecdh <ECC Key Pair A (DER Form)> Public Key: 3059301306072a8648ce3d020106082... // A Private Key: 308193020100301306072a8648ce3d0... // A ======= <ECC Key Pair B (DER Form)> Public Key: 3059301306072a8648ce3d020106082... // B Private Key: 308193020100301306072a8648ce3d0... // B ======= // A B Shared Bits from Public Key A and Private Key B: c55393fc681811141... // B A Shared Bits from Public Key B and Private Key A: c55393fc681811141... Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 36 / 61
  • 37. ECDH src/test-api.js const jscu = getJscu(); const jscec = getJscec(); //js-crypto-ec jscu // DER jscu JWK const publicKey = new jscu.Key(’der’, publicDer); const privateKey = new jscu.Key(’der’, privateDer); const publicJwk = await publicKey.export(’jwk’); const privateJwk = await privateKey.export(’jwk’); // const derived = await jscec.deriveSecret(publicJwk, privateJwk); jscu ECDH+AES API ECDH ECDH Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 37 / 61
  • 38. ECDH WebCrypto API( ) Node.js Crypto 21 21 [ ] encrypt API deriveBits( ) [Node.js] ECDH Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 38 / 61
  • 39. 2 AES (=ECDH ) AES ⇒ HKDF (RFC5869) Concat KDF (RFC8039)22 etc.... HKDF 22 JOSE https://tools.ietf.org/html/rfc8037 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 39 / 61
  • 40. JavaScript ECDH AES ECDH, HDKF, AES AES ⇓ RSA 23 23 AES ( 256bits ) Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 40 / 61
  • 41. ( ) EC (2 2 ) $ yarn execute ecc-keygen <Generated ECC Key Pair (DER Form)> Public Key: 3059301306072a8648ce3d020...... Private Key: 308193020100301306072a864..... $ yarn execute ecc-keygen <Generated ECC Key Pair (DER Form)> Public Key: 3059301306072a8648ce3d020..... Private Key: 308193020100301306072a864..... Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 41 / 61
  • 42. ECDH+HKDF+AES-CBC $ yarn execute ecdh-aes-encrypt ’hello world’ -p ’3059301306072a8648ce3d020106082a8648c......’ // -s ’308193020100301306072a8648ce3d0201060......’ // <Shared Bits> // ECDH 51a1a502d01917e6ae0c7cd69cc7078d4a07d0172d271555d001485621551eef <Derived AES Key> // HDKF Key: f52372329867b83ee4e2cada7452a909e85b1ffc2401c5e3b7e7aa7bf9363f7b HKDF-Salt: 1dffbb6a9a0b91929b690116e3abd75b4a984e4d8686fcd9e35b4bd0220ebfe7 HKDF-Hash: SHA-256 <Encrypted data> // AES-CBC Data: e36ded44e0e27a8f01d160feb54b1c30 Initial Vector: e9799bff5bdbd3400b1c753e5d5506ff // Key, Salt, IV, Encrypted Data Msgpack <Msgpacked encrypted and kdf data> 82a9656e6372797074656482a464617461d...... Msgpack serialize Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 42 / 61
  • 43. ECDH+HKDF+AES-CBC // msgpack $ yarn execute ecdh-aes-decrypt ’82a9656e6372797074656482a46461......’ -p ’3059301306072a8648ce3d0201060......’ // -s ’308193020100301306072a8648ce3......’ // <Shared Bits> // ECDH 51a1a502d01917e6ae0c7cd69cc7078d4a07d0172d271555d001485621551eef <Derived AES Key> // msgpack f52372329867b83ee4e2cada7452a909e85b1ffc2401c5e3b7e7aa7bf9363f7b <Decrypted Data> // hello world Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 43 / 61
  • 44. ECDH, HKDF, AES : src/commands-node.js // Shared bits const sharedBits = await ecdh(publicKeyA, privateKeyB); // HKDF key derivation const aesKey = await deriveKeyFromMasterSecret(sharedBits, 32); // AES-CBC encryption const encrypted = await encryptAES(data, aesKey.key); // packing for ease const packed = msgpack.encode({encrypted, kdfParams: aesKey.kdfParams}); Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 44 / 61
  • 45. : src/commands-node.js const depack = msgpack.decode(uint8ArrayData); // Shared bits const sharedBits = await ecdh(publicKeyB, privateKeyA); // HKDF key derivation const aesKey = await deriveKeyFromMasterSecret( sharedBits, 32, depack.kdfParams.salt, depack.kdfParams.hash ); // AES-CBC decryption const decrypted = await decryptAES( depack.encrypted.data, aesKey.key, depack.encrypted.iv ); Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 45 / 61
  • 46. Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 46 / 61
  • 47. 2 RSA-OAEP ECDH, KDF, AES Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 47 / 61
  • 48. n n ( ) SK Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 48 / 61
  • 49. 1 AES ⇒ 2 Perfect Forward Secrecy ⇒ Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 49 / 61
  • 50. AES Hybrid Encryption, Key Encapsulation K AES 24 K 24 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 50 / 61
  • 51. AES K ( ) AES AES AES CDN 25 25 DRM Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 51 / 61
  • 52. Perfect Forward Secrecy (Perfect) Forward Secrecy ⇓ 1 Ephemeral Scheme Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 52 / 61
  • 53. SSL/TLS ⇒ Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 53 / 61
  • 54. Ephemeral Scheme AES & Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 54 / 61
  • 55. ECDH Ephemeral Scheme 26 ECDH-Ephemeral (ECDHE)27 ⇒ i.e., Forward secrecy Ephemeral Ephemeral ? 26 RSA Ephemeral Scheme RSA-4096 AES-256 27 TLS https://tools.ietf.org/html/rfc8422 Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 55 / 61
  • 56. Ephemeral ? ⇓ Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 56 / 61
  • 57. Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 57 / 61
  • 58. RSA: OAEP (RSAES-OAEP) ECDH: AES : Ephemeral Scheme: Perfect Forward Secrecy JavaScript / Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 58 / 61
  • 59. : MAC : SHA2, SHA3 : HMAC/CMAC : RSA Signature/ECDSA Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 59 / 61
  • 60. : iTransfy by Zettant Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 60 / 61
  • 61. : : recruit@zettant.com URL: https://www.zettant.com Jun Kurihara (Zettant Inc./U-Hyogo) E2E Security with JS 03 January 26, 2020 61 / 61