pasShield-firefox/

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/shshengeng/passhield

Links

Open Source Insights

README ¶

pasShield - Protecting Web Passwords using Intel SGX

Introduction

pasShield is a server-side technology for protecting password databases. For users who use pasShield, they need to install the web extension of pasShield in the local Firefox browser. This web extension will perform remote attestation on the accessed server. If the server is safe, the extension icon will be changed and the highlight input fields will be be sent. For the server side of pasShield, the password protection service is a direct replacement for the standard password hash function. It computes a hash-based message authentication code (HMAC) before storing the password in the database. An adversary must obtain the HMAC key to perform an offline guessing attack on a stolen password database. Pashield generates and secures this key in a Trusted Execution Environment implemented using the Ego SDK.

Installation

To install the extension, make sure you have installed firefox browser(this addon is built for firefox) and downlowned the passhield-firefox code in your own computer, open the firefox and input address about:debugging, then click 'this firefox' on left side, then click 'Load Temporary Add-on', select the manifest.json under pasShield-firefox folder. Then, you are all set to use pasShield.

Remote attestation

Go remote attestation using Microsoft Azure Attestation. The remote attestation of an EGo enclave in combination with Microsoft Azure Attestation. It consists of a server running in an enclave and a client (the relying party) that attests the server before sending a secret. The Azure Attestation Provider simplifies the attestation process for the client.

Note: This sample only works on SGX-FLC systems with a quote provider installed.

How it works

azure attestation sample

The server generates a self-signed certificate and a report for remote attestation that includes the certificate's hash. It thereby binds the certificate to the enclave's identity.
An Attestation Request containing the report and the gernerated certificate is sent from the server to the Azure Attestation Provider. In this example, a Regional Shared Provider is used, but it is also possible to run one's own Attestation Provider.
The Azure Attestation Provider validates the Quote, which is part of the report, and ensures that the report contains the hash of the Enclave Held Data, which in this case is the self-signed certificate.
If the validation succeeds, the Attestation Provider generates a signed JSON Web Token (JWT) and returns the token to the server in the Attestation Response. The token contains the Enclave Held Data (the certificate) and information for the token verification.
The server runs HTTPS and provides the following endpoints to the client:
- /token returns the JSON Web Token. The client requests the token skipping TLS certificate verification.
- /secret receives the secret via a query parameter named s.
From the Attestation Provider's OpenID Metadata Endpoint, the client queries the public key which the token was signed with. In this case, we need to ensure the channel used to get the signing keys is secure by using TLS.
The client verifies the token's signature and the claims from the token body. If the token is valid and contains the correct report, the identity and integrity of the server is guranteed. The certificate is extracted from the report.

The client can now establish a secure TLS connection to the enclaved server using the validated certificate and send its secret.

EGo's API provides helpful functions to simplify the remote attestation with Microsoft Azure Attestation. The server can use the CreateAzureAttestationToken() function form the enclave package to conduct steps 1 - 4 and get the token. The client can use the VerifyAzureAttestationToken() function from EGo's attestation package to perform steps 6 and 7. While this function verifies the signature and the public claims of the token, the client has to verify the resulting report values.

Highlight input fields

When pasShield successfully authenticates the accessed server, it will highlight the input tag that needs to be encrypted. If the server authentication is successful, a global variable sgx_enabled will become true, and the content script will monitor this value. When it is true, the content script will get the input tag objects whose name is username and password, and change the border color of this object to green, and a div will be added behind them to show that this data will be sent through a secure channel.

Directories ¶

Path	Synopsis
src

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL