DOCSLIB.ORG

2018 SC BAR CONVENTION Breakfast Ethics Sunday, January 21

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
2018 SC BAR CONVENTION Breakfast Ethics Sunday, January 21 2018 SC BAR CONVENTION Breakfast Ethics Sunday, January 21 presented by The South Carolina Bar Continuing Legal Education Division http://www.scbar.org/CLE SC Supreme Court Commission on CLE Course No. 180813 2018 SC BAR CONVENTION Breakfast Ethics Sunday, January 21 Security Is Only As Good As the Weakest Link: Legal Tech Security Measures Every Lawyer Must Take Barron K. Henley Digital Security Measures Every Lawyer Must Take Barron K. Henley, Esq. [email protected] Affinity Consulting Group, LLC 1550 Old Henderson Rd., Suite S-150 Columbus, OH 43220 614.340.3444 www.affinityconsulting.com ©2017 Affinity Consulting Group Digital Security Measures Every Lawyer Must Take Table of Contents I. Premise of This Seminar ............................................................................................. 1 II. Definitions ................................................................................................................. 1 A. Business Disaster .................................................................................................... 1 B. Disaster Avoidance.................................................................................................. 1 III. Causes of Business Disasters ....................................................................................... 2 A. Data Loss or Data Disclosure................................................................................... 2 1. Human error................................................................................................ 2 2. Hardware failure ......................................................................................... 2 3. Fire or natural disaster ................................................................................ 2 4. Temperature ............................................................................................... 2 5. Virus - ransomware - malware .................................................................... 2 6. Synchronization issues ................................................................................ 2 7. Criminal Acts of Others ............................................................................... 2 8. Malicious acts of employees ....................................................................... 2 B. Natural Disasters ..................................................................................................... 3 C. Fire .......................................................................................................................... 3 D. Power Failure .......................................................................................................... 3 E. Internet Failure ....................................................................................................... 3 F. Death, Disability or Departure of Principal or Key Employee ................................. 3 G. Theft ........................................................................................................................ 3 IV. Your Ethical Duties ..................................................................................................... 4 A. SC RULE 1.1 - Competence ...................................................................................... 4 B. SC RULE 1.1 - Maintaining Competence Comment [6] ........................................... 4 C. ABA MODEL RULE 1.1 - Maintaining Competence Comment [8] ........................... 4 D. SC RULE 1.6 - Confidentiality of Information .......................................................... 4 E. ABA MODEL RULE 1.6 - Confidentiality of Information .......................................... 4 F. SC RULE 1.6 - Comment 19 ..................................................................................... 5 G. ABA MODEL RULE 1.6 Comment 18 ....................................................................... 5 H. SC RULE 1.6 Comment 20 ....................................................................................... 5 Table of Contents Page 2 I. SC RULE 5.1 - Responsibilities of partners, managers and supervisory lawyers .................................................................................................................... 5 J. SC RULE 5.3 - Responsibilities Regarding Nonlawyer Assistants ............................ 6 V. Tools and Protocols To Protect Client Data ................................................................. 7 A. Encryption Defined ................................................................................................. 7 B. Lawyers Must Encrypt Laptops, Tablets and Phones ............................................. 7 1. Duty To Protect ........................................................................................... 7 2. PC Encryption .............................................................................................. 8 a. BitLocker ......................................................................................... 8 b. Mac FileVault .................................................................................. 8 c. SecuriKey Pro .................................................................................. 8 d. Symantec Drive Encryption ............................................................. 8 e. AlertBoot ......................................................................................... 8 f. Folder Lock ...................................................................................... 8 g. SecureDoc Full Disk Encryption ...................................................... 8 3. Smartphones ............................................................................................... 8 4. Tablets ......................................................................................................... 8 C. Email Encryption ..................................................................................................... 8 1. Revisit SC Rule 1.6, Comment 20 ................................................................ 8 2. What The Experts Say ................................................................................. 9 3. Email Encryption Services ........................................................................... 9 a. Protected Trust ............................................................................. 10 b. SenditCertified .............................................................................. 10 c. EchoWorx Encrypted Mail ............................................................ 10 d. Hightail .......................................................................................... 10 e. Hushmail ....................................................................................... 10 f. RMail ............................................................................................. 10 g. ZixMail ........................................................................................... 10 h. ShareFile ........................................................................................ 10 4. Encrypt Email Attachments....................................................................... 10 D. Wireless Encryption .............................................................................................. 10 1. Home or Work Wireless Connections ....................................................... 10 2. Risk of Using Public WiFi ........................................................................... 10 3. How To Protect Yourself ........................................................................... 11 a. Cellphone WiFi Hotspot ................................................................ 11 b. Consumer VPN Services ................................................................ 11 E. Firewall .................................................................................................................. 12 1. What Is a Firewall ...................................................................................... 12 2. Your Obligation ......................................................................................... 12 F. Password Manager ............................................................................................... 12 Table of Contents Page 3 1. What Is a Password Manager ................................................................... 13 2. Why You Need A Password Manager ....................................................... 13 3. Good Options ............................................................................................ 13 a. Dashlane ........................................................................................ 13 b. LastPass ......................................................................................... 13 c. Sticky Password ............................................................................. 13 d. LogMeOnce ................................................................................... 13 e. TrueKey ......................................................................................... 13 f. RoboForm ..................................................................................... 13 g. Keeper Desktop ............................................................................. 13 G. Two Factor Authentication ................................................................................... 13 1. What Is Two Factor Authentication? ........................................................ 13 2. How Do You Get 2FA?
Load more

Recommended publications
  • Automating Security Checks
    Mag. iur. Dr. techn. Michael Sonntag Automating security checks Institute for Information Processing and Microprocessor Technology (FIM) Johannes Kepler University Linz, Austria E-Mail: [email protected] http://www.fim.uni-linz.ac.at/staff/sonntag.htm © Michael Sonntag 2010 Agenda Why automatization? What can be automated? Example: Skipfish How reliable are these tools? Practical examples of searching for vulnerabilities: Information collection with NMap Password cracking (John the Ripper, Ophcrack) Exploit scanning with Nessus Michael Sonntag Automating security checks 2 Why automatization? Ensuring security is not that hard for a single system You know it in detail When something is discovered, it is implemented and tested But: Many sites with many configuration options? Do you know them all? » Are they identical everywhere (versions!)? Do you have time to change everything accordingly? » Or do you depend on automatic updates/roll-out? Are you sure you did not miss one option somewhere? » Testing the same thing several times is tedious Solution: Automatic testing whether a problem exists Professionals write tests You just apply them » No need to know exactly how the attack works! Regular re-testing is possible Ad-hoc & patchy testing Systematic & comprehensive Michael Sonntag Automating security checks 3 Overlap with monitoring Some overlap with system monitoring exists Failures are just a “different kind” of attack Some problems may occur accidentally or intentionally » Example: Blacklisting of mail
    [Show full text]
  • Analysis of Password Cracking Methods & Applications
    The University of Akron IdeaExchange@UAkron The Dr. Gary B. and Pamela S. Williams Honors Honors Research Projects College Spring 2015 Analysis of Password Cracking Methods & Applications John A. Chester The University Of Akron, [email protected] Please take a moment to share how this work helps you through this survey. Your feedback will be important as we plan further development of our repository. Follow this and additional works at: http://ideaexchange.uakron.edu/honors_research_projects Part of the Information Security Commons Recommended Citation Chester, John A., "Analysis of Password Cracking Methods & Applications" (2015). Honors Research Projects. 7. http://ideaexchange.uakron.edu/honors_research_projects/7 This Honors Research Project is brought to you for free and open access by The Dr. Gary B. and Pamela S. Williams Honors College at IdeaExchange@UAkron, the institutional repository of The nivU ersity of Akron in Akron, Ohio, USA. It has been accepted for inclusion in Honors Research Projects by an authorized administrator of IdeaExchange@UAkron. For more information, please contact [email protected], [email protected]. Analysis of Password Cracking Methods & Applications John A. Chester The University of Akron Abstract -- This project examines the nature of password cracking and modern applications. Several applications for different platforms are studied. Different methods of cracking are explained, including dictionary attack, brute force, and rainbow tables. Password cracking across different mediums is examined. Hashing and how it affects password cracking is discussed. An implementation of two hash-based password cracking algorithms is developed, along with experimental results of their efficiency. I. Introduction Password cracking is the process of either guessing or recovering a password from stored locations or from a data transmission system [1].
    [Show full text]
  • Cryptanalytic Tools
    Cryptanalytic Tools Authors: Prof. Dr.-Ing. Tim Güneysu Dipl. Ing. Alexander Wild B. Sc. Tobias Schneider Ruhr-Universität Bochum Module Cryptanalytic Tools Chapter 3: Introduction to Cryptanalysis Chapter 4: Computational Complexity and Parallelism Chapter 5: Secret Parameters and Keys Chapter 6: Tools for Symmetric Cryptanalysis Chapter 7: Tools for Asymmetric Cryptanalysis Authors: Prof. Dr.-Ing. Tim Güneysu Dipl. Ing. Alexander Wild B. Sc. Tobias Schneider 1. edition Ruhr-Universität Bochum © 2015 Ruhr-Universität Bochum Universitätsstraße 150 44801 Bochum 1. edition (31. March 2015) Das Werk einschließlich seiner Teile ist urheberrechtlich geschützt. Jede Ver- wendung außerhalb der engen Grenzen des Urheberrechtsgesetzes ist ohne Zustimmung der Verfasser unzulässig und strafbar. Das gilt insbesondere für Vervielfältigungen, Übersetzungen, Mikroverfilmungen und die Einspe- icherung und Verarbeitung in elektronischen Systemen. Um die Lesbarkeit zu vereinfachen, wird auf die zusätzliche Formulierung der weiblichen Form bei Personenbezeichnungen verzichtet. Wir weisen deshalb darauf hin, dass die Verwendung der männlichen Form explizit als geschlechtsunabhängig verstanden werden soll. Das diesem Bericht zugrundeliegende Vorhaben wurde mit Mitteln des Bundesministeriums für Bildung, und Forschung unter dem Förderkennze- ichen 16OH12026 gefördert. Die Verantwortung für den Inhalt dieser Veröf- fentlichung liegt beim Autor. Contents Page3 Contents Introduction to the module books 5 I. Icons and colour codes . 5 Chapter 3 Introduction to Cryptanalysis 7 3.1 Definition of Security . 7 3.1.1 Security of Cryptographic Systems . 7 3.1.2 Categories of Attacks . 8 3.1.3 Categories of Attackers . 9 3.1.4 Secret Key Lengths . 10 3.2 Outline of this Lecture . 11 3.3 Further Reading Materials . 11 Chapter 4 Computational Complexity and Parallelism 13 4.1 Asymptotic Computational Complexity .
    [Show full text]
  • Chapter 5 Results
    CHAPTER 5 RESULTS 5.1 Results This chapter will discuss the results of the testing and comparison of the password cracking tools used. This chapter can be summarized as follows: • Research Data and Result Analysis (Locally) • Research Data and Result Analysis (Remotely) • Research Data and Result Analysis (Alphabets only) • Research Data and Result Analysis (Alphabets and a special character) 5.2 Research Data and Result Analysis (Locally) In Figure 16, Ophcrack was used to crack the local users' password with different combinations of password, alphabets, alphanumeric, alphanumeric special characters, english and non-english words. In Figure 17, Ophcrack was used to crack the same password, but excluding the 3 password that were not cracked in the previous attempt. In Figure 18, Cain was used to crack the local users' password. 35 36 Figure 16 - Ophcrack cracked 7 of 10 passwords Figure 17 - Ophcrack cracked 7 of 7 passwords 37 Figure 18 - Cain cracked 5 of 10 passwords 5.3 Research Data and Result Analysis (Remotely) First, the author scans the network for active IP address with NMAP (Figure 19). He used the command of "nmap -O 192.168.1.1-254" to scan the network, it would scan each IP address for active computer. The command -O enabled operating system detection. From the result of the scanning, there were few ports in the state of open and the services that were using those ports, 135/TCP, 139/TCP, 445/TCP and 1984/TCP. Another important detail was the OS details; it showed that the computer was running under Microsoft Windows XP Professional SP2 or Windows Server 2003.
    [Show full text]
  • Password Security - When Passwords Are There for the World to See
    Password Security - When Passwords are there for the World to see Eleanore Young Marc Ruef (Editor) Offense Department, scip AG Research Department, scip AG [email protected] [email protected] https://www.scip.ch https://www.scip.ch Keywords: Bitcoin, Exchange, GitHub, Hashcat, Leak, OWASP, Password, Policy, Rapid, Storage 1. Preface password from a hash without having to attempt a reversal of the hashing algorithm. This paper was written in 2017 as part of a research project at scip AG, Switzerland. It was initially published online at Furthermore, if passwords are fed through hashing https://www.scip.ch/en/?labs.20170112 and is available in algorithms as is, two persons who happen to use the same English and German. Providing our clients with innovative password, will also have the same hash value. As a research for the information technology of the future is an countermeasure, developers have started adding random essential part of our company culture. user-specific values (the salt) to the password before calculating the hash. The salt will then be stored alongside 2. Introduction the password hash in the user account database. As such, even if two persons use the same password, their resulting The year 2016 has seen many reveals of successful attacks hash value will be different due to the added salt. on user account databases; the most notable cases being the attacks on Yahoo [1] and Dropbox [2]. Thanks to recent Modern GPU architectures are designed for large scale advances not only in graphics processing hardware (GPUs), parallelism. Currently, a decent consumer-grade graphics but also in password cracking software, it has become card is capable of performing on the order of 1000 dangerously cheap to determine the actual passwords from calculations simultaneously.
    [Show full text]
  • Cisco Live / DEFCON / RSA / (ISC)2
    #CLUS Penetration Testing For Network Engineers Know Yourself and Enemy, Need Not Fear 100 Battles Joseph Muniz – Architect Americas BRKSEC-2460 #CLUS Cisco Webex Teams Questions? Use Cisco Webex Teams (formerly Cisco Spark) to chat with the speaker after the session How 1 Find this session in the Cisco Events App 2 Click “Join the Discussion” 3 Install Webex Teams or go directly to the team space 4 Enter messages/questions in the team space Webex Teams will be moderated cs.co/ciscolivebot#BRKSEC-2460 by the speaker until June 18, 2018. #CLUS BRKSEC-2460 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 3 WHY DO WEFAIL? #CLUS BRKSEC-2460 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 4 Behind the Headlines #CLUS BRKSEC-2460 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 5 #CLUS BRKSEC-2460 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 6 More than Computer and Phones 500B In 2030 50B In 2020 15B Devices Today #CLUS BRKSEC-2460 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 7 More than Computer and Phones 500B In 2030 50B In 2020 15B Devices Today #CLUS BRKSEC-2460 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 8 More than Computer and Phones 500B In 2030 50B In 2020 15B Devices Today #CLUS BRKSEC-2460 © 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 9 IoT Challenges Patch Delays Limited Security Development Rogue Devices #CLUS BRKSEC-2460 © 2018 Cisco and/or its affiliates.
    [Show full text]
  • New Version of L0phtcrack Makes Cracking Windows Passwords Easier Than Ever  Register
    3/1/2017 New version of L0phtCrack makes cracking Windows passwords easier than ever Register The Cybersecurity source by Rene Millman September 01, 2016 New version of L0phtCrack makes cracking Windows passwords easier than ever This article originally appeared on ­ SC Magazine UK. Nearly 20 years after the first version and the first update in six years, L0phtCrack has been upgraded to version 7 and claims a speed bump of up to 500 times on the previous version. According to L0pht Holdings, the firm behind the tool, it has been revamped with a new cracking engine which takes advantage of multi­core CPUs and multi­core GPUs. A 4­core CPU running a brute force audit with L0phtCrack 7 is now five times faster than L0phtCrack 6. It added that users with a GPU such as the AMD Radeon Pro Duo the increase is 500 times. The release of the original L0phtCrack was 19 years ago and its password cracking capability forced Microsoft to make improvements to the way Windows stored password hashes. Microsoft eventually deprecated the weak LANMAN password hash and switched to only the stronger NTLM password hash it still uses today. The developers claim that Windows passwords are easier to crack today than they were 18 years ago. “On a circa­1998 computer with a Pentium II 400 MHz CPU, the original L0phtCrack could crack a Windows NT, 8 character long alphanumeric password in 24 hours. On a 2016 gaming machine, at less hardware cost, L0phtCrack 7 can crack the same passwords stored on the latest Windows 10 in 2 hours,” said the firm in a statement.
    [Show full text]
  • Computer Forensics CCIC Training Chapter 4: Understanding the Registry
    Computer Forensics CCIC Training Chapter 4: Understanding the Registry Lauren Pixley, Cassidy Elwell, and James Poirier March 2020 (Version 3) This work by California Cybersecurity Institute is licensed under a Attribution-NonCommercial-NoDerivatives 4.0 International License. Introduction As you are going through your investigation, you will need to know basic information about the forensic image you are searching. To find out more about the image you are analyzing, you will need to look through the Windows Registry. The Windows Registry is basically a database that stores thousands of records with information, such as the operating system, time zone, user settings, user accounts, external storage devices, and some program data. When you look through the Windows Registry in the next section with REGEDIT, it may appear as though the registry is one large storage location. However, there are several files where the information is being stored throughout the computer. REGEDIT simply takes these files and records stored in different locations and displays them for you. There are many records in the Windows Registry that will have no forensic value to you as an examiner, but there are some pieces of information that you will find useful. This chapter will walk you through the basic structure of the registry and where you need to look to find information that is valuable to your investigation. REGEDIT In this section, you will start with the Windows registry utility known as REGEDIT.exe. You can open this by pressing the Windows key+R and then typing in “REGEDIT”. You can also click on the Start menu and type “REGEDIT” in the Search box.
    [Show full text]
  • Password Attacks and Generation Strategies
    PASSWORD ATTACKS AND GENERATION STRATEGIES Predrag Tasevski Tartu University, Faculty of Mathematics and Computer Sciences, major: Master of Science in Cyber Security May 21, 2011 Table of contents Introduction Methods Ad-hoc models Brute force Rainbow tables Examples and tools Comparison of input dictionary list Test Conclusion INTRODUCTION Password is a secret word or string of characters that is used for authentication in order to prove identity or gain access to a resource[Gill(1997)]. I Usage of password cracking tools I Methods and approaches guessing the passwords I Examples of leaks and generating password dictionaries I Comparison of already cracked passwords from available password dictionaries and I Test METHODS Password cracking is a method of guessing the attack. Types of password cracking methods[Vines(2007)]: I Dictionary I Hybrid I Brute force Ad-hoc models Dictionary attacks - colander rules Example Capitalization the rst letter, adding three digits to the end, changing the letter `a' to `@' etc. Hybrid it adds simple numbers or symbols to the password attempt. Brute force Brute force are fraction of the total words that are made by users creating their passwords. Brute force attacks methods: I Pure brute force [Group(2010)] I Letter frequency analysis attack [Stitson(2003)] I Markov models [Shmatikov Arvind(2005)] I Targeted brute force attacks [WEIR(2010b)] Rainbow tables (1) Rainbow tables are using the reduction functions to create multiple parallel chains within a single "rainbow" table. I Increases the probability of a correct crack for a given table size, the use of multiple reduction functions also greatly increases the speed of look-ups [JeXChen(2011)].
    [Show full text]
  • How to Handle Rainbow Tables with External Memory
    How to Handle Rainbow Tables with External Memory Gildas Avoine1;2;5, Xavier Carpent3, Barbara Kordy1;5, and Florent Tardif4;5 1 INSA Rennes, France 2 Institut Universitaire de France, France 3 University of California, Irvine, USA 4 University of Rennes 1, France 5 IRISA, UMR 6074, France [email protected] Abstract. A cryptanalytic time-memory trade-off is a technique that aims to reduce the time needed to perform an exhaustive search. Such a technique requires large-scale precomputation that is performed once for all and whose result is stored in a fast-access internal memory. When the considered cryptographic problem is overwhelmingly-sized, using an ex- ternal memory is eventually needed, though. In this paper, we consider the rainbow tables { the most widely spread version of time-memory trade-offs. The objective of our work is to analyze the relevance of storing the precomputed data on an external memory (SSD and HDD) possibly mingled with an internal one (RAM). We provide an analytical evalua- tion of the performance, followed by an experimental validation, and we state that using SSD or HDD is fully suited to practical cases, which are identified. Keywords: time memory trade-off, rainbow tables, external memory 1 Introduction A cryptanalytic time-memory trade-off (TMTO) is a technique introduced by Martin Hellman in 1980 [14] to reduce the time needed to perform an exhaustive search. The key-point of the technique resides in the precomputation of tables that are then used to speed up the attack itself. Given that the precomputation phase is much more expensive than an exhaustive search, a TMTO makes sense in a few scenarios, e.g., when the adversary has plenty of time for preparing the attack while she has a very little time to perform it, the adversary must repeat the attack many times, or the adversary is not powerful enough to carry out an exhaustive search but she can download precomputed tables.
    [Show full text]
  • Ophcrack USB Booting Windows Password Recovery for Windows XP Or Vista
    Ophcrack USB Booting Windows Password Recovery for Windows XP or Vista Labels: How To, Password, Solutions, USB BOOT, Windows We have already seen using Ophcrack Live CD for Cracking Windows XP and Windows Vista Passwords. The thing is that now a days we do not use CDs anymore, we use USB drives for our day to day activities. Now what if you want to run Ophcrack from your USB drive instead of wasting money on a CD or if your CD ROM Drive is not working? Moreover using USB drives are more convenient and common these days. Here I have an Ideal solution for this question. But if you are not interested in recovering the password or you simply want to reset or delete the password then there is much easier technique which requires only a 3 MB file instead of Ophcrack. Just see how to Reset windows Password Using a USB drive or a CD In this method we will be using a program called 7-ZIP for extracting the ISO file and some batch files for making the drives bootable. USB Requirement: • Minimum 512 MB for Windows XP • Minimum 1 GB for Windows Vista Or Windows 7 Beta • Format: FAT32 I have tried this method in Windows XP, Windows Vista, and Windows 7 Beta and it works perfectly fine. Follow the steps below: Step 1: Download the ISO File For Ophcrack Live CD 2.1.0 From the links below: (Choose according to your operating system). If you have already downloaded skip this step. Windows XP: Size: 452 MB http://downloads.sourceforge.net/ophcrack/ophcrack-xp-livecd-2.1.0.iso Windows Vista or 7: Size: 532 MB http://downloads.sourceforge.net/ophcrack/ophcrack-vista-livecd-2.1.0.iso Step 2: Download the ZIP File For making USB boot version of Ophcrack Live CD From the link below: Size: 414 KB http://www.techrena.net/downloads/usbboot.zip Step 3: Extract the usbboot.zip file at any location of your computer, not in the USB drive.
    [Show full text]
  • Password Cracking and Countermeasures in Computer Security: a Survey
    Password Cracking and Countermeasures in Computer Security: A Survey Aaron L.-F. Han*^ Derek F. Wong* Lidia S. Chao* * 푁퐿푃2퐶푇 Lab, University of Macau, Macau SAR ^ ILLC, University of Amsterdam, Science Park 107, 1098 XG Amsterdam [email protected] [email protected] [email protected] Abstract—With the rapid development of internet technologies, communicating entities. The peer entity authentication social networks, and other related areas, user authentication provides for the corroboration of the identity of a peer entity becomes more and more important to protect the data of the in an association for use of a connection at the establishment users. Password authentication is one of the widely used or at times during the data transfer phase, which attempts to methods to achieve authentication for legal users and defense provide confidence that an entity is not performing either a against intruders. There have been many password cracking masquerade or an unauthorized replay of a previous methods developed during the past years, and people have connection. been designing the countermeasures against password There are usually four means of authenticating user cracking all the time. However, we find that the survey work identity based on: something the individual knows (e.g. on the password cracking research has not been done very password, PIN, answers to prearranged questions), much. This paper is mainly to give a brief review of the password cracking methods, import technologies of password something the individual possesses (token, e.g. smartcard, cracking, and the countermeasures against password cracking electronic keycard, physical key), something the individual is that are usually designed at two stages including the password (static biometrics, e.g.
    [Show full text]