CWE-922: Insecure Storage of Sensitive Information
Learn about CWE-922 (Insecure Storage of Sensitive Information), its security impact, exploitation methods, and prevention guidelines.
What is Insecure Storage of Sensitive Information?
• Overview: Insecure Storage of Sensitive Information refers to storing sensitive data without properly restricting access. This oversight allows unauthorized users to read or modify sensitive data, leading to theft or tampering.
• Exploitation Methods:
- Attackers can exploit this vulnerability by gaining unauthorized read or write access to the stored sensitive data.
- Common attack patterns include exploiting weak file permissions, leveraging unencrypted storage, and accessing unsecured databases.
• Security Impact:
- Direct consequences include unauthorized data disclosure, data integrity issues, and data loss.
- Potential cascading effects involve compromised user privacy, loss of trust, and legal ramifications.
- Business impact can lead to financial loss, reputational damage, and regulatory penalties.
• Prevention Guidelines:
- Specific code-level fixes include implementing access controls such as role-based access control (RBAC) and encrypting sensitive data both at rest and in transit.
- Security best practices involve regularly auditing access permissions, using strong encryption algorithms, and applying the principle of least privilege.
- Recommended tools and frameworks include using secure storage libraries, database security tools, and encryption frameworks like OpenSSL.
Technical Details
Likelihood of Exploit: Not specified
Affected Languages: Not Language-Specific
Affected Technologies: Not specified
Vulnerable Code Example
Certainly! Let's improve the code examples and address the issues you've mentioned:
Python Example
import json
def store_sensitive_info(user_data):
# Vulnerable code: Sensitive information is stored in plain text
with open('user_data.json', 'w') as file:
json.dump(user_data, file) # Sensitive data is stored in a readable format
Explanation:
In this code snippet, sensitive user information such as passwords, credit card numbers, or personal details are being stored in a plain text JSON file. This makes the data easily accessible to anyone who gains access to the file, leading to a significant security risk.
How to fix Insecure Storage of Sensitive Information?
Fixed Code Example
from cryptography.fernet import Fernet
import json
def generate_key():
# Generate a key for encryption
return Fernet.generate_key()
def store_sensitive_info(user_data, key):
# Create a Fernet object with the provided key
fernet = Fernet(key)
# Convert user data to JSON-formatted bytes
user_data_bytes = json.dumps(user_data).encode()
# Encrypt the user data
encrypted_data = fernet.encrypt(user_data_bytes)
# Store the encrypted data
with open('user_data.json', 'wb') as file:
file.write(encrypted_data) # Encrypted data is securely stored
Key Changes:
- Symmetric Encryption: A strong symmetric encryption algorithm (Fernet) from the
cryptographylibrary is used to encrypt user data before writing it to the file. - Key Management: The encryption key is generated using
Fernet.generate_key(). This key must be securely stored and managed separately from the data. - Data Serialization: The user data is serialized to a JSON-formatted byte string before encryption.
- Binary Storage: Encrypted data is written to the file in binary mode (
'wb'), ensuring that sensitive information is not stored in plain text.
By implementing these changes, the sensitive information is protected against unauthorized access, even if the storage file is compromised.