Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Mark MASTG-TEST-0016 as covered by v2 (by @guardsquare) #3026

Open
wants to merge 6 commits into
base: master
Choose a base branch
from
Open

Mark MASTG-TEST-0016 as covered by v2 (by @guardsquare) #3026

wants to merge 6 commits into from

Conversation

nmsa
Copy link
Collaborator

@nmsa nmsa commented Nov 4, 2024

Thank you for submitting a Pull Request to the OWASP MASTG. Please make sure that:

  • Your contribution is written in the 2nd person (e.g. you)
  • Your contribution is written in an active present form for as much as possible.
  • You have made sure that the reference section is up to date (e.g. please add sources you have used, make sure that the references to MITRE/MASVS/etc. are up to date)
  • Your contribution has proper formatted markdown and/or code
  • Any references to website have been formatted as [TEXT](URL “NAME”)
  • You verified/tested the effectiveness of your contribution (e.g.: is the code really an effective remediation? Please verify it works!)

This PR closes #2947.

cpholguera
cpholguera requested changes Nov 4, 2024
View reviewed changes
Document/0x05e-Testing-Cryptography.md Outdated Show resolved Hide resolved
tests-beta/android/MASVS-CRYPTO/MASTG-TEST-0204.md Outdated Show resolved Hide resolved
tests-beta/android/MASVS-CRYPTO/MASTG-TEST-0204.md Outdated Show resolved Hide resolved
tests/android/MASVS-CRYPTO/MASTG-TEST-0016.md Outdated
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please double check:

  1. Do we have a new test that tests for "Identify all instances of SecureRandom that are not created using the default constructor. Specifying the seed value may reduce randomness." (paragraph 2). If not, we should add one.
  2. Are we using all the links from this test in the new ones?
  1. Do we have some indication about "You can use @MASTG-TECH-0033 on the mentioned classes and methods to determine input / output values being used.". This may be useful to determine if it's a security-relevant context. Otherwise, we should reverse engineer the code surrounding the found methods to determine if they seem to be used in a security-relevant context. (adding this could be as simple as adding a short paragraph in the Evaluation section of MASTG-TEST-0204)

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

  1. The suggestion does not apply anymore. The recent documentation about SecureRandom explains that the provided seed supplements the seed, does not replace it. I was not sure where to document this.
  2. Will add the missing ones.
  3. Will adjust

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

After checking, both CMU links (which I did not include) are currently very outdated, and their recommendations do not apply anymore. I am mentioning one of them in the mitigations, but tbh even there some of the recommendations are slightly incorrect.

nmsa
nmsa commented Nov 6, 2024
View reviewed changes
mitigations/android-use-secure-random.md Outdated
The default [no-argument constructor of `SecureRandom`](https://wiki.sei.cmu.edu/confluence/display/java/MSC02-J.+Generate+strong+random+numbers "Generation of Strong Random Numbers") is usually recommended for generating secure random values, as it uses the system-specified seed value to generate a 128-byte-long random number.

Providing an hard coded seed to the constructor of `SecureRandom` is [discouraged in Android Documentation](https://developer.android.com/privacy-and-security/risks/weak-prng?source=studio#weak-prng-java-security-securerandom), as it may lead to introducing deterministic behavior of `SecureRandom` in some implementations.
`SecureRandom` documentation explains that [the provided seed supplements, rather than replacing the existing seed](https://developer.android.com/reference/java/security/SecureRandom?hl=en#setSeed(byte[])), but this may not apply if an [old security provider](https://android-developers.googleblog.com/2016/06/security-crypto-provider-deprecated-in.html) is being used.
Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I included this to cover for this weird corner case, so that the mitigation explains all the relevant points.

@nmsa nmsa requested a review from cpholguera November 6, 2024 10:12
TheDauntless
TheDauntless reviewed Nov 7, 2024
View reviewed changes
Copy link
Collaborator

@TheDauntless TheDauntless left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

A few typo/grammer fixes

mitigations/android-use-secure-random.md Outdated Show resolved Hide resolved
mitigations/android-use-secure-random.md Outdated Show resolved Hide resolved
tests-beta/android/MASVS-CRYPTO/MASTG-TEST-0204.md Outdated Show resolved Hide resolved
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@TheDauntless TheDauntless TheDauntless left review comments

@cpholguera cpholguera Awaiting requested review from cpholguera

Requested changes must be addressed to merge this pull request.

Assignees
No one assigned
Labels
Android changes-requested MASTG Refactor MASVS-CRYPTO
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

MASTG v1->v2 MASTG-TEST-0016: Testing Random Number Generation (android)
3 participants
@nmsa @TheDauntless @cpholguera