Schneier on Security

Clive Robinson • June 14, 2018 11:18 AM

It would appear Thomas Dullien is either a little out of date or he has more depth in some areas than breadth.

For instance he poses a couple of things,

1, Do I need to trust my CPU vendor?

2, We do not know how to write real world programes that operate on untrusted hardware.

Neither is true, there are ways to mitigate untrusted hardware, that are over a hundred years old. Also NASA and others know how to write very real world programes that realy do run on untrusted hardware.

The reason these known mitigations and methods are not used much is the costs involved. That said the cost of such systems are actually less than hardware of around three to five years ago.

One reason unnecessary complexity with both legacy and carry forward happens, is that software developers do not get taught how to write code in a correctly balanced way. Which although it makes code slightly harder to understand when crossing over the 20,000ft barrier actually reduces complexity and those legacy and carry forward issues.

It’s very much to do with “left to right sequential thinking” which results in bad decisions. Specifically input error detection and occasionaly correction get moved way way to far to the left and exceptions are rarely handled in a way that is not treated as “show stopping”.

Various tests over the years show that the majority of errors are caused by incorrect handling of input either at the data level or in the program logic.

Put simply the average developer moves the error correction all in the same place as close as possible to the actual data input. Once through that the program logic is written on the very fatal assumption that the input data contains no errors… Whilst this might be true for a program written from scratch, but when you move to “code reuse” input filtering and program logic have been “de-coupled” thus the wrong or insufficient input checking happens for the program logic assumptions to be correct. Which means that you get exceptions that are not handeled correctly or at all.

Programs should be written such that the error checking and program logic are very tightly coupled. But they are wrapped in an exception handeling process that can re-wind to any previous point where the error can be handled. This type of programing even survives things like the failure of very far downstream to the right hardware. It gives the best possibility to correct any and all failures that conceiveably can be corrected without dropping data / core or out of the sky on some unfortunates head.

Further those hardware engineers that have been trained to design EmSec / TEMPEST hardened equipment very much understand how close coupling of related functionality though increasing complexity locally significantly reduces complexity in the larger system the close coupled code is part of.

Clive Robinson • June 15, 2018 1:38 PM

@ me,

Do you have any link? because i don’t think is possible.
Operating on buggy hardware i think yes, but malicious hardware not.

I’ve talked about it many times on this blog in the past with @Nick P, @Wael and several others. If you search for my name and “voting protocols” you will find plenty of comments.

To get back to NASA they built on work by New York Telephone to use redundant systems in parallel and use voting protocols based on the majority vote.

NASA used the notion that you could use three entirely diferent hardware platforms of similar performance and by using clean room design techniques and three different software teams come up with the three systems to run in parallel to feed the voting protocol system.

If an external attacker wants to infect the system, they need to,

1, write three pieces of malware for totaly different systems.

2, Infect the three systems simultaniously with the three pieces of malware.

To avoid detection.

Which if you think about it step 1 is quite didicult, but steo 2 is not realy possible. Because the infections would have to be done sequentially which in turn means the voting protocol would catch it in progress.

I hope that helps clarify things a bit for you.

Clive Robinson • June 15, 2018 4:23 PM

@ Wumpus, Fred P,

This assumes that you have the complete documentation of the hardware in such a form…

You will never get “complete documentation of the hardware” even if you are the chip designer.

So your argument is proplematic at best.

However you do not require anything more than the ISA and circuit documentation to get functionality out of a basic computer system. In fact we know with System on a Chip (SoC) based systems they can be built into products without knowing much of the documentation. The Raspberry Pi with the Broadcom chip demonstrated that as large parts of it’s functionality were held under Non Disclosure Agrement (NDA).

The point about voting protocol systems is you use different CPU chips that is three unrelated ISAs. You then use three development teams that have no contact with each other. As part of the specification they write what you might call tasklets that have clearly defined functionality including timing. Thus each tasklet has a time based signature which is designed when functioning correctly to be as near identical as possible across the three CPUs.

It’s the signatures that you put into the voting circuit. Aberant behaviour by a change in either the hardware or software will cause the signature to change.

As three different pieces of malware would be required for the three different ISAs and they can not be loaded from by an external attacker in parallel, then when the first is loaded it’s CPU gets voted out. Then you enter the terminal fault state as the second CPU gets loaded.

Clive Robinson • June 17, 2018 5:12 AM

@ questions,

Do you think it’s possible or even desirable to engineer reliable tools that reduce clever high-level down to proven low-level code?

It depends on what your final objectives are…

Lets start with a bottom up view as @Nick P has given a top down view.

In essence we do it already with compilers that reduce high level code down to any given CPU’s ISA, and the ISA is reduced down by the CPU internal microcode interpreter to Register Transfer Language (RTL) and as few as eight Arithmetic and Logic instructions that have hard coded into the CPU ALU(s). That part most high school kids get routinely mentioned in the way they are taught “Computer Science” these days, though it was not to long ago when they got taught little or nothing of it even in college CS courses that just went with High Level Languages.

Digging in a little further some ISAs are quite rich and some are quite lean instruction wise, and at one point people used to talk of Complex Instruction Set Computers (CISC) and Reduced Instruction Set Computers (RISC) and their respective architecture advantages. In reality the instructions had little to do with the underlying architectures, it was actually about how to most quickly get instructions and data from core memory into the internal CPU structures, typically the register file and what the CPU could do with it. Cray and other CPUs had very large very flexible register files and alowed quite complex functions to run entirely in CPU repeatedly thus avoiding the Core to register bottle neck.

The reality today is multiple RISC type CPU cores with moderately large register files surounded by mind boggeling cache systems and extra instruction decode to feed them that do all the clever speedup stuff Intel, AMD and ARM are having so many attack vectors with currently. In essence they have engineered themselves into an evolutionary cul der sac [Like the Saber toothed tiger was alleged to have done].

I can not remember what the current tally of instructions for the Intel architecture is and I suspect few can, but I do know they all end up as RTL and ALU instructions that are actually quite few.

More importantly looking to the future there is no reason why an ISA should not get more complex and start replacing base code libraries found in programing languages. People are talking about doing the equivalent of having FPGA logic cells built directly into CPU chips as the next generation of both Cloud and Super Computer devices. This will enable qualified programers to write algorithms directly in logic and get a five to fifty times speed improvment.

So along with going “parallel” the industry is going for even richer ISAs that are in part designed by the programer.

My intent with “tasklets” was to go massively parallel with very small very efficient CPU cores surounded by very fast memory that could be used as a very flexible register array or as what looks like conventional cache/core memory. In part because we’ve already crossed a point of processing logic density restricted by clock speed and heat death. Memory being inherently lower power as storage logic is mostly static can be packed considerably more densly or run at higher clock speeds. With judicious design there is no reason why the internal clock speed could not go through the 10GHz barrier. But the real intention was two fold, firstly to get rid of conventional task switching that kills CPU performance and secondly that the tasks have clear signitures for security hypervisors to monitor for abberant behaviour.

The problem as with parallel programing is that there are a very very few people who can do low level security coding. Thus there are not enough to securely code even OS’s let alone the uncountable number of application programs.

Back some decades ago in 1981 when the Apple ][ was still the must have personal business computer, a language was released called “The Last One”[1] it was allegadly a “Fourth Generation language” (4GL) so high level that youl’d never need another language… The reality was it was a program generator taking in user flow charts and producing BASIC code the then “lingua franca” of the computer world. The point is it started as a form of scripting language that hid low level details behind prewritten tasks and evolved it’s own form of early AI to become something that would generate those tasks. A similar approach would be for a programer to write a script and a generator produce not just the required code but in a way that it would also produce clear security signatures and hooks for the security hypervisor. Thus taking the scarce resource of security programmers and making their work more widely available.

You could consider it to be a security focused version of Model-driven engineering (MDE)[2], but that would be missing the point some what.

[1] http://www.tebbo.com/presshere/html/wf8104.htm

[2] Model-driven engineering is considered an awkward cuss lurking between third and fourth generation languages by a number of people that consider themselves unfortunate to have come across it. One main gripe is that it is far from user friendly and the processes behind it obtuse at best. However it also has it’s ardent fans. Which ever side of the devide you are it does unfortunatly have a very steep learning curve and makes you feel like your brain has been through the equivalent of a couple of rounds with the world heavy weight champion. Thus it shows usability issues that may mean it never realy hits “prime time”.

Clive Robinson • June 18, 2018 2:19 PM

@ me,

So i can have insecure hardware if i have secure hardware checking what the insecure one does? why can’t i use the secure one in first place?

You can use insecure hardware if you can verify it’s correct functioning. A voting system does this.

You are making an incorect assumption about the checking hardware. It can be a very simple state machine made of components that can be verified more easily such as diodes and resistors. Due to it’s simplicity, verifiability and non-Turing-Compleate design it can reliably verify the complex Turing Compleate CPU’s and other complex logic.

Thus the incorrect assumption, incorrectly leads to your conclusion of,

[T]hat’s not a solution i’m sorry

I can go through it with you in greater depth, but based on past experience it’s going to occupy a large amount of this thread and I would like to leave it a few days to let others get their comments in first.