Three New Attacks Against JSON Web Tokens

Security

Discover three new attacks against JSON Web Tokens: sign-encrypt confusion, polyglot JWT, and spoofing, and learn how to prevent vulnerabilities with secure algorithms and binding.

Key takeaways
  • JSON Web Tokens (JWTs) are widely used for authentication and authorization, but they have several issues.
  • Three new attacks against JWTs have been discovered: the sign-encrypt confusion attack, the polyglot JWT attack, and the spoofing attack.
  • The sign-encrypt confusion attack occurs when a library signes a token with a public key and then encrypts it with the same key, making it vulnerable to tampering.
  • The polyglot JWT attack takes advantage of ambiguity in JWT specifications, allowing an attacker to create a valid token that can spoof an identity.
  • The spoofing attack allows an attacker to create a token that an application considers valid, but is actually forged.
  • JWT libraries often have default settings that can compromise security.
  • Authentication decisions are typically made based on claims in the token, but these claims can be spoofed.
  • Libraries often have issues with parsing JWTs, which can lead to vulnerabilities.
  • JSON Web Encryption (JWE) can be used to encrypt JWTs, but it’s often used incorrectly.
  • The status quo of using default settings and unauthenticated encryption is vulnerable to attacks.
  • Implementing a secure algorithm and using a binding is recommended.
  • To prevent spoofing attacks, it’s recommended to use a secure algorithm and validate tokens on the server-side.
  • Alternatives such as JSON Object Signing and Encryption (JOSE) and JWE can be used to improve security.
  • Proper configuration and validation are crucial for secure JWT usage.
  • Implementing a secure algorithm and using a binding can prevent vulnerabilities.
  • Libraries should be designed with security in mind.
  • Avoiding default settings and unauthenticated encryption is recommended.
  • To improve security, use a secure algorithm and validate tokens on the server-side.
  • Configuring and validating are crucial for secure JWT usage.

More talks

BrokenMesh: New Attack Surfaces of Bluetooth Mesh

BingBang: Hacking Bing.com (and much more) with Azure Active Directory

Keynote: Black Hat at 25: Where Do We Go from Here?

SAINTCON 2016 Keynote - Georgia Weidman - Nine years into mobility, has security caught up?

Open Source & Public Policy - Panel Discussion

Pere Urbon-Bayes – Apache Kafka: advice from the trenches or how to successfully fail!

"Formally Verifying Everybody's Cryptography" by Mike Dodds, Joey Dodds (Strange Loop 2022)

Don’t Throw Away the Key: What Developers Should Know about Encryption - Liz Moy - NDC TechTown 2023