Man in the Middle Attacks & Superfish - Computerphile

After this video I can't help but imagine each of the computerfile guys are kept seated in a different corner of that room and the camera just swivels around when he needs to make a new video

You know something's bad when you hear Tom Scott say "never ever"

There was so much potential at 4:46 to fix the drawing by attaching a circle to the end of the factory and making it look like a giant key.

2:21 - "And they can only be unlocked by that server, because maths."
10/10 best explanation of public and private key crypto. XD

even if superfish had been secure its still a super sketchy thing that lenovo was shipping their computers with adware

This seems so easy when Tom Scott explains it. Everything seems easy when Tom Scott explains it.
Tom Scott, would you mind becomming a teacher at my school?

So good to see Tom Scott on Computerphile again.

*sees intro*
*NOTICES I'M ON A LENOVO LAPTOP*

That golden moment of pure sadness and dissappointment of Tom at 6:35

"lenovo promised not to do it again" *the fact that they did it in the first place is mind-boggling*

The private key is not shared with the certificate authority either. Simply because they don't need it.
Regarding the possibility that NSA have keys to do MITM attacks: it's basically the same problem Turing faced when he broke Enigma. If they can do that, they can use it only as a very last resort and only when the message is extremely important because as soon as someone will find out which authority they use (and when you use it, it's only a matter of time), everyone will dump the authority and they would need to start from scratch again.

"Extremely illegal, so DON'T do that!"
You'd think that the people doing that honestly don't care about that.

2:46 he meant "Here's my Public Key". I'd advise that you add an annotation just so no one gets confused.

8:58 - Anyone else go up and click the green padlock in the URL at this point in the video?

Ahh, so that's why the red _"Insecure connection"_ screen pops up when I'm running a local server and I goto a domain which points to localhost.

Just a heads up, the NSA is cracking encryption based on 1024 bit primes, at a rate of roughly 1 per year including RSA and subsequent iterations. sooo we should have switched to 2048 bit by now, but at this point 4096 should be being prepped.

the computerphile thumbnails look like those old goosebump book covers that were around ages ago

I just looked up some other famous hacks of the year and I found out that just about _a month_ after this video was uploaded, it was revealed that Dell _basically did the same damn thing_! It was the _exact_ same principle and even after the Superfish debacle, Dell _still_ didn't react and kept quiet until the vulnerability was made public.

4:26: I'm quite sure you mean to say public key. Do not ever send your private key to your CA people :-).

Unfortunately, this is one of the misplaced trust aspects of networking which is carried forward into IPv6. Router advertisements carry no validation; anything attached to the network can claim to be a router and set a prefix for the network. It's the same sad story for NDP. Yes, there is SEND, but it's an addon afterthought which is by no means mandatory to implement.
wow...not just echo, but ringing echo as well. There has to be a happy medium between this and dragging everyone into a studio.

Internet Factory would make a great album name.

Tom's face when he asks 'how do I draw a certificate authority?'

Great video, not only the step by step explanation but really appreciate how "little" emphasis you showed to the particular incident. This a HUGE issue overall and applies far more than just Superfish installed on a single machine, not just because xyz company wants to see what you are doing. But because someone ELSE can use it for FAR more malicious purposes.

1:58 - Why is Robert Miles just randomly sitting in the room with them? XD Just to have a listen?

Wooo! Tom Scott!

"All servers look like computers of 99s"
-Tom Scott

Computerphile videos involving Mr. Scott are by far my favorite. Theyre all great, but I really enjoy how he talks about things.

*listens to the start*
*looks at computer*
well crap...

Tom! You do NOT send the private key over for signing by the CA, only the public key.

I love that the advert that was shown before this video started, at least for me, was for Lenovo.

Tom Scott's videos on Computerphile are my favorite videos!

Great work, you guys go into more depth than the average tutorials and the information is strong.

Wwhhhhhhhhhhat?! They did _what_?!
I knew preinstalled OSes were unusable but that's playing in a totally different league there.

4:25 No, Mr. Scott, the reason it's called a PRIVATE key is that it's private; you don't send it anywhere but your own server. The CA only needs your public key to apply its signature.

I love Tom Scott and his massive simplifications. Keep on doing what you're doing Tom!

It'd be great if you'd make a video on the rootkit they installed on all of their laptops too: Lenovo Service Engine (LSE). Apparently, even if you wiped the harddrive and installed Windows from a disk they didn't provide, it'd still install their crapware, because it's hidden in the BIOS. I've heard it was even updating itself over an unsecured connection, so anyone could man-in-the-middle it to install their own rootkit without users knowing.

First part : This is so sketchy even the NSA would probably only ever use it scarcely
Second part : An advertising company and manufacturer used this on loads of computers to try to make some extra cash

Bloatware like superfish is the reason that whenever I get a new laptop the first thing I do is format the disk and install windows directly from Microsoft. Most stuff business pre-load on your computer is totally useless, but at least once it has been legitimately dangerous.

This was such a great thorough explanation and build-up. I would probably send this video to people just to teach them about SSL.

I love seeing +Tom Scott on this channel but every time I do he reminds how much of my internet life is built on ignoring the security holes everywhere in it.

Good thing I bought a Lenovo in 2012. It shouldn't have anything on it, and I haven't noticed anything wrong.

(3:45) This video was published on October 2015.
Last time I checked, you still have to pay for this security.

This is a good case for Microsoft demanding that OEM manufacturers providing untouched installation media for Windows and clean installations without any 3rd party software for new OEM machines. Having worked for Microsoft Support I can tell you that most problems people have with Windows, especially when new versions are launched (Vista is a good example), are caused by OEMs that don't know what they are doing. Pre-installing lots of craplets, incompatible drivers, bungling up the installation of language packs or straight up changing/removing parts of Windows.
I'm not sure if that is still the case but the only major OEM manufacturer that provided clean Windows installation media was Dell. All the others only had "recovery discs" which contained all the crap pre-installed software.

Please Tom Scott on more often, He's amazing at explaining concepts and is just generally entertaining.

"Yeah, this is the bit of software that was installed on rpetty much every consumer Lenovo laptop." Yeah, so I was gripped by fear for a minute, there, because I had definitely been using a ThinkPad for over a year when this video came out. Luckily, I looked up Superfish, and apparently Lenovo began to bundle Superfish adware with their computers in September of 2014, which was a few months after I got mine.
Thinking back, I'm pretty sure that I still ended up dealing with Superfish at some point, but it wasn't because Lenovo put it there, it was because I was eighteen and consequently a huge dumbass.

Love the videos with Tom,just hopes he does more stuff similar to this in his channel.

We had fun in Rwanda a couple of years back. The tax department forced everyone who runs a business to install electronic billing machine (EBM) software onto their computer in order to issue electronic receipts for every sale, no matter what size business you had. Many foreigners sensibly bought second laptops to install it, because they didnt' trust installing government software onto their personal computers. I kind of assumed that I was probably already monitored, and didn't have the money for a new laptop just for taxes, so I installed it on my personal laptop which was already pretty old. In fact, it was so old that it promptly crashed about a month later. It was illegal to remove the software from your computer without government permission, but it was late on a Friday night. My options were to go without a computer all weekend until the offices opened on Monday and I could tell them what happened, or go ahead and reinstall Windows. I opted for the latter and sent an e-mail explainig what I was doing and why. I was promptly issued with a $200 fine! I kicked up a storm on Twitter, shouting about how unethical it was to be forced to install government software in the first place, and they backed down, but wow was I angry about it. They've since relented and now offer people the ability to create EBMs online, but it did very little for the country's image or trust among business owners. I don't think there's any method on earth that can protect you when the government says you have to install their software by law. 😏

I love Tom's videos. :D

Also the way superfish was written you never got the red warning, even if a website had a wrong certificate. The superfish in the middle always inserted its "valid" certificate.

Tom Scott on Computerphile, what a day to be alive!

you really know how to simplify complex subjects, why I love computer/numberphile.

Which each episode of computerphile I watch I get more and more paranoid about my online safety, eh I won't change anything though.

And this is why you NEVER EVER EVER EVER EVER EVER, use the factory image for ANYTHING!
And Certificate authorities need to be above governments not tied down to one country , a bit like that building in France where the keep the kilo.

There should be zero debate over whether the NSA should or not.

Lenovo promised to not do it again... but they did. :(

amazing video that touches upon one of the biggest security concerns with Internet usage

+Art of the Problem has a great series on the language of coins and public key encryption.

Yes! Finally another Tom Scott Computerphile episode!

Got my Master's in CS 5 years ago, but I wish that back then I had some lectures that were explained this well, as for most of your video's Tom. You are such a clear speaker, (as goes for the speakers in most computerphile video's).
I mean, even though I know about most topics; refreshing my knowledge via these video's doesn't hurt a bit, it feels great!
Keep'em coming.

quick clarification: superfish was the company that made the adware, the program was called visualdiscovery.

It's always good when its Tom :)

You should consider doing a segment on the thrust of the paper "Imperfect Forward Secrecy: How Diffie-Hellman Fails in Practice".

Tom Scott is an amazing teacher , perhaps the best teacher in computerphile

This channel is a godsend for anyone studying for Security +

computerphile needs more tom scott

I would think that both of the two vulnerabilities (the CA and device) could potentially be resolved by a sort of an 'odd man out' protocol that would periodically ask all of your CAs for a list of the CAs that they trust, and if only very few or none of them trust a CA you have, that CA is removed.

Tom needs to be on this channel more often. Get right on that, Computerphile.

9:37 - RIP Tom Scott, died of NSA...

Great video as always computerphile/scott!

Great explanation to a complex topic. Thanks.

You know whats also rather strange ? Google not noticing a massive amount of multi-user traffic coming from a single attacker ip ... usually there is fair usage policy where this kind of activity (an entire DNS provider had to fall as well I presume) from a single/small amount of ip address should definitely raise a flag

Thank you for making these videos

One thing to keep in mind, the 'Trusted' Certifying authorities are subject to the will of the domain in which they reside. What happens if an official of the regime comes to them and put a bag of cash and a gun on the table and tells them to choose? The man in the middle gets an official stamp of approval.

Really informative stuff! Thanks!

Lovely explained. Way to go Tom Scott

It's cool looking back at this video and seeing him comment on a free certificate authority being in the works and today... We have that with Let's Encrypt!

That pen scratching on paper gave me goose bumps

What happens to device that are too old, and didn't come with the public keys for the certificate authorities ?

That sound the marker makes on that sheet of paper gets my hairs on end !!!! Darn !!!

Correction: Your private key is *not* shared with CAs. This would be a terrible security issue if that were the case. The private key should never be shared with anyone.

the thing is is that you can do an attack perfectly if you set up a hotspot then you are the server

I've noticed some ISPs add adverts to traffic also, is that different than the Lenovo superfish malware nightmare? How secure are firewall caches?

Exactly what I was looking for, thank you. :)

This man talking to the points, Thanks a lot man .

Tom is an excellent story teller. probably the best in the planet .. :D

Tom Scott, how is it that I've been watching you on UA-cam for over a decade and you didn't look a day over 20 when I first saw you. You still look the same 10 years later. It's uncanny mate, the way you hold your age. How ' you do it?

Question.
Tom said over there that the attacker, after reading the encrypted transmission/key, could change it to his own to do MITM attacks. Why would they though? Is it not easier and safer for them to keep it the same?

I have a question, Tom. what's stopping the big certificate agences from performing their own man in the middle attack? they have their own private key and have their public key loaded onto every single computer on the internet.

6:13 well at least he's using the best search engine.

Regarding the Google false signing, how does this pass the initial signing check? Does the browser check all CA's for one that verify the key vs the domain and will consider it confirmed if one CA responds with confirmation of the key's validity?

Funilly enough Superfish is also the name of a javascript library we use at my current work as well as the chippy down the road.

Oh shit the guy who does the AI videos was there. Dope.

I dropped my Lenovo by accident a couple years ago, which broke the hard drive and rendered that version of Windows unrecoverable. It's so strange, but I guess that was a really good thing; I switched out the hard drive and just installed linux, since I didn't know about the OEM key under the battery and didn't feel like torrenting, and haven't gone back since.

is there a way for an SSL website to double-check the public key the client is using in a manner that a MITM attacker couldn't detect/manipulate?

You should have mentioned HSTS and key pinning as mechanisms for making HTTPS more secure. :)

Another issue: What if the attacker sitting on your network tells your computer that google prefers http over https, encrypts your packets, and forwards them to google?

I can't get over Superfish not even having the foresight to generate a new private/public keypair for each installation. They just hardcoded the same private key in every single installation. I can't believe nobody working on Superfish at the time saw this coming.

I like the use of "maths" as a verb in this video.

Tom can you do a video about set the routing table correct in networksetup?
Thanks in advance.

ARP spoofing still works just fine on a sadly large number of devices. Quite useful when you need to sniff the network traffic from a closed device and you have a crappy consumer router.