DOCSLIB.ORG

Security and Privacy in Large-Scale Infrastructure

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Security and Privacy in Large-Scale Infrastructure Die approbierte Originalversion dieser Dissertation ist in der Hauptbibliothek der Technischen Universität Wien aufgestellt und zugänglich. http://www.ub.tuwien.ac.at The approved original version of this thesis is available at the main library of the Vienna University of Technology. http://www.ub.tuwien.ac.at/eng Security and Privacy in Large-scale Infrastructure DISSERTATION submitted in partial fulfillment of the requirements for the degree of Doktor der Technischen Wissenschaften by Ing. Dipl.-Ing. Adrian Dabrowski, BSc Registration Number 0025933 to the Faculty of Informatics at the TU Wien Advisor: Privatdoz. Mag.rer.soc.oec. Dipl.-Ing. Dr.techn. Edgar R. Weippl The dissertation has been reviewed by: Thorsten Holz Stefanie Rinderle-Ma Vienna, 1st June, 2018 Adrian Dabrowski Technische Universität Wien A-1040 Wien Karlsplatz 13 Tel. +43-1-58801-0 www.tuwien.ac.at Acknowledgements I am thankful to have found that one special person – I wish to marry – that accepted the circumstances of my career choice and the deprivations and demands entailed with it. Additionally, I thank my parents for enabling me my studies. Furthermore, I could not have mastered these demanding and eventful times without Katharina Krombholz, Martina Lindorfer, and Martin Schmiedecker. I really appreciate your openness and the ability to give constructive feedback. You probably do not know how important your help and our support group is to me. When I started this endeavor, I was very naïve: Writing my Master’s Thesis was quite fun, so why not do it again – this time bigger and with proper science? Could not be that hard, could it? Subsequently, I engaged in a roller coaster ride, where I had to grow technically, academ- ically, and personally. I will leave it up to the committee to determine its sufficiency. Additionally I learned, how enigmatic academic funding – especially in security – can be. Luckily, I had an advisor, Edgar Weippl, with profound expertise in navigating the rough high seas of funding. Without him, I would not have been able to explore so many different research directions and expand my horizons. I still fell short to learn that short-term gratification should not hamper my long-term goals. In general, I need to learn to say no. Albeit demanding times, they where very diverse and highly interesting. I do not like to miss them. A friend once told me, a thesis is finished once you loose all aspirations. Here it is. iii Kurzfassung Große, kritische Infrastruktursysteme entwickeln sich nur langsam weiter und sind schwer zu modifizieren. Das ist in einer vernetzten Welt, die nach immer kürzeren Aktualisie- rungszyklen verlangt, ein Nachteil und unter Umständen gefährlich. Besonders große und komplexe Systeme können sich anders Verhalten, als das Einzelverhalten der Komponen- ten vermuten ließe. Dieses Zusammenspiel kann zu einer destruktiven Interferenz bei den Sicherheitseigenschaften des Gesamtsystems führen. Die vorliegende Dissertation untersucht verschiedene emergente und systemische Sicherheitsherausforderungen von besonders großen oder kritischen Systemen sowie von Systemen mit einer großen Installati- onsbasis auf der Ebene ausgewählter Komponenten als auch des ganzen Systems. Sie wirft einen Blick auf Sicherheitsprobleme und Lösungen von Stromnetzen, Mobilfunknetzen, Mehrdeutigkeit bei der Datenkodierung, Seitenkanälen in Webbrowsern, sowie die Privat- sphäre von Bildern in sozialen Netzwerken. Sie beschreibt nicht nur Angriffe, sondern auch Entdeckungs- und Abwehrmethoden. Die Ergebnisse wurden in Standardisierungsgremien eingebracht, um die Sicherheit zukünftiger Systeme zu verbessern. Für Stromnetze beschreiben wir neuartige Angriffe, die den physischen Teil dieser cyber- physikalischen Systeme als Angriffsvektor nutzen. Wir demonstrieren, wie stromkon- sumierende Geräte synchronisierte Verbrauchsspitzen produzieren können, welche die Regelungsleistung überstrapazieren. Dies kann durch automatische Notabschaltungen zu großflächigen Stromausfällen führen. Für Mobilfunknetze beschreiben wir Methoden, um falsche Basisstationen (IMSI Catchers) und andere Angriffe zu erkennen – sowohl von der Kunden- als auch von der Betreiberseite. Wir konnten unsere Ansätze auf einem echten Mobilfunknetz mit 4 Millionen Teilnehmern testen. Für mobile Browser untersuchen wir Seitenkanalangriffe, die den Browserverlauf verraten. Zum Schluss beschäftigen wir uns mit der Privatsphäre von Bildern in sozialen Netzwerken und anderen Bild-Datenbanken mit dem Ziel, Individuen die Kontrolle über ihre Abbildungen zu ermöglichen. Alle fünf Teile dieser Arbeit behandeln Sicherheits- und Datenschutzprobleme, welche aus der Komposition von Features, falschen Annahmen oder impliziten Vertrauen entstehen. Kompositorische Unsicherheit resultiert z.B. aus der Zusammensetzung von Methoden oder Standards, die sich in ihren Sicherheitseigenschaften gegenseitig destruktiv beeinflus- sen. Falsche Unabhängigkeitsannahmen können die operativen Grundlagen von Systemen bedrohen. Nicht überprüftes, implizites Vertrauen gibt Angreifern, die vorgeben eine privilegierte Komponente zu sein, unnötige Macht über ihre Opfer. v Abstract Large-scale and critical infrastructure systems face unique challenges: they are slow to evolve and difficult to modify, which is especially problematic in a connected world that demands ever shorter update cycles. Additionally, complex systems might behave unexpectedly compared to the behavior of their components. The latter can destructively interfere with security properties of the system as a whole. This thesis explores different emergent and systemic security challenges of large-scale systems by looking at security problems and solutions of power grids, mobile cell phone networks, building blocks such as ambiguity in data encoding, side-channels in privacy- enhancing systems, and privacy in social networks. However, we do not solely describe attacks, but also engage in detection, mitigation, and defense efforts as well as standard- ization to improve the security of future systems. The five systems and components have been studied as follows: In power grids, we describe novel attack techniques vie the physical part of these cyber-physical systems. We demonstrate how connected devices can produce synchronized power-usage peaks that outperform the grid’s reaction abilities and can lead to blackouts. In mobile phone networks, we describe the ability to detect fake base stations (IMSI Catchers) and other attacks from both the customer’s and the operator’s side. We were able to evaluate our approaches on a real mobile network with 4 million subscribers. On mobile browsers, we examine side-channels that can lead to the leakage of private browsing history. With social networks and other picture databases rapidly proliferating photographs of individuals at large scale as well as enriching those pictures with metadata, we explore the possibilities to empower individuals to gain more control over their pictures. In all five parts of this thesis, we encounter security and privacy problems due to a composition of subsystems, wrong premises, or unverified trust. Compositional insecurity stems from multiple methods or standards that, if combined, interfere destructively on security properties or guarantees. Wrong independence premises destroy statistical requirements, threatening the operational foundations of systems. Unverified trust gives impersonating attackers needlessly power over their victims. We discuss these challenges and their impact on large-scale systems on the level of selected components as well as for the whole system. vii Contents Kurzfassungv Abstract vii Contents ix 1 Introduction1 1.1 Power Grids................................. 2 1.2 Mobile Phone networks .......................... 3 1.3 Mobile and Handheld Devices....................... 5 1.4 Individual Picture Privacy......................... 7 1.5 Other Publications............................. 8 I Power Grids 11 2 Breaking the Independence Primitive 13 2.1 Context................................... 14 2.2 Background................................. 15 2.3 Threat Scenario............................... 20 2.4 Evaluation: Power-Modulation ...................... 24 2.5 Evaluation: Grid Effects.......................... 28 2.6 Discussion.................................. 34 2.7 Related Work................................ 37 2.8 Conclusion ................................. 38 II Mobile Phone Radio Networks 39 3 Background and Mobile Phone Networks Security Problems 41 3.1 Overview and Introduction ......................... 41 3.2 Mobile Network Background........................ 42 3.3 Systematization of Vulnerabilities..................... 48 3.4 Cause Overview............................... 55 ix 3.5 Root Cause: Specification Issue...................... 56 3.6 Root Cause: Implementation Issue.................... 63 3.7 Root Cause: Protocol Context Discrepancy............... 65 3.8 Root Cause: Wireless Channel ...................... 67 3.9 Fake Base Stations Attacks in Detail................... 67 3.10 Capabilities of Fake Base Stations .................... 68 3.11 Mobile Communications Acronyms.................... 74 4 Client-side Mobile Phone Network Attack Detection 77 4.1 Preface ................................... 78 4.2 History and Motivation .......................... 78 4.3 Background................................. 79 4.4 IMSI Catcher Artifacts and Detectability ................ 80 4.5 Catching an IMSI Catcher......................... 84 4.6 Implementation............................... 85
Load more

Recommended publications
  • An Empirical Survey on How Much Security and Privacy Customers Want in Instant Messengers
    SECURWARE 2016 : The Tenth International Conference on Emerging Security Information, Systems and Technologies An Empirical Survey on how Much Security and Privacy Customers Want in Instant Messengers Thomas Paul Hans-Joachim Hof MuSe – Munich IT Security Research Group Munich University of Applied Sciences Munich University of Applied Sciences Lothstrasse 64, Munich, Germany Lothstraße 64, Munich, Germany e-mail: [email protected] e-mail: [email protected] Abstract— Instant messengers are popular communication developers of future instant messengers to decide on tools used by many people for everyday communication, as security features to implement. well as for work related communication. Following the This paper is structured as follows: Section II discusses disclosure of a massive surveillance system by Edward related work. Section III presents the design of the user Snowden, many users became aware of the risks of unsecure survey. Section IV discusses in detail the findings of the communication. Users increasingly ask for secure communication. However, unsecure instant messengers are still user survey. Section V presents the features of an ideal popular nowadays. This could be due to the fact, that, besides instant messenger fulfilling all the user preferences the large number of available instant messengers, no instant identified by the survey. A market simulation is used to messenger fully satisfies the users preferences. To research the show the potential of this ideal instant messenger. Section acceptance of security mechanisms in instant messengers, this VI summarizes the findings of the paper. paper presents an evaluation of user preferences for secure instant messengers. A user survey was conducted to rate the II.
    [Show full text]
  • Investigating Mobile Messaging Security
    Technische Universitat¨ Munchen¨ Department of Informatics Interdisciplinary Project in Electrical Engineering Investigating Mobile Messaging Security Elias Hazboun Technische Universitat¨ Munchen¨ Department of Informatics Interdisciplinary Project in Electrical Engineering Investigating Mobile Messaging Security Untersuchung von Mobile Messaging Sicherheit Author Elias Hazboun Supervisor Prof. Dr.-Ing. Georg Carle Advisor Dr. Matthias Wachs, Quirin Scheitle Date April 27, 2016 Informatik VIII Chair for Network Architectures and Services Abstract In this report we document our work in analyzing the security of a selection of mobile messaging apps. Focusing on network based security, we studied traffic generated by the apps to gain an understanding of the current state of applying encryption and authentication protocols. Our findings show a positive trend in security with developers steadily improving security with newer app updates partly due to the increased scrutiny from the community and academia. Although not all apps analyzed had perfect state of the art security properties, none have shown any major vulnerabilities exploited by normal adversaries. It was also evident that only one app - namely TextSecure - is using the industry standard TLS for server-client authentication and security while others have opted for custom made protocols and algorithms. I Contents 1 Introduction 1 1.1 Research Question . .2 1.2 Outline . .2 2 Background and Related Work 3 2.1 Methodology . .3 2.1.1 App Selection . .3 2.1.2 Approach . .3 2.2 Definition of Security Concepts . .4 2.2.1 Layers of Encryption . .4 2.2.2 Transport Layer Security Protocol (TLS) . .5 2.2.3 Perfect Forward Secrecy (PFS) . .5 2.2.4 Asynchronous Messaging Security .
    [Show full text]
  • Enterprise Edition
    Secure Communication. Simplified. SAFECHATS Problem Most companies use popular insecure email and ⛔ messaging services to communicate confidential information P The information flow within the Company is ⛔ disorganized Metadata is exposed and available to third-party ⛔ services SAFECHATS Introducing SAFECHATS Ultra-secure communication solution P Designed with security in mind SAFECHATS Why SAFECHATS? ✔ Information is always end-to-end encrypted by default P ✔ All-in-one communication suite: • Text messaging (one-on-one and group chats) • Voice calls • File transfers (no size and file type limits) SAFECHATS How does SAFECHATS solve the problem? ✔ Customizable white label solution ✔ Integrates with existing softwareP infrastructure ✔ Enterprise-wide account and contact list management, supervised audited chats for compliance SAFECHATS What makes SAFECHATS different? ✔ Your own isolated cloud environment or on-premise deployment P ✔ Customizable solution allows to be compliant with internal corporate security policies ✔ No access to your phone number and contact list SAFECHATS Screenshot Protection ✔ Notifications on iOS P ✔ DRM protection on Android SAFECHATS Identity Verification ✔ Protection from man-in-the-middle attacksP ✔ SMP Protocol SAFECHATS Privacy Features ✔ Show / hide messages and files P ✔ Recall messages and files ✔ Self-destructing messages and files SAFECHATS Additional Protection ✔ History retention control P ✔ Application lock: • PIN-code • Pattern-lock on Android devices • Touch ID on iOS devices SAFECHATS How does SAFECHATS
    [Show full text]
  • Cryptography Whitepaper
    Cryptography Whitepaper Threema uses modern cryptography based on open source components that strike an optimal balance between security, performance and message size. In this whitepaper, the algorithms and design decisions behind the cryptography in Threema are explained. VERSION: JUNE 21, 2021 Contents Overview 4 Open Source 5 End-to-End Encryption 5 Key Generation and Registration 5 Key Distribution and Trust 6 Message Encryption 7 Group Messaging 8 Key Backup 8 Client-Server Protocol Description 10 Chat Protocol (Message Transport Layer) 10 Directory Access Protocol 11 Media Access Protocol 11 Cryptography Details 12 Key Lengths 12 Random Number Generation 13 Forward Secrecy 14 Padding 14 Repudiability 15 Replay Prevention 15 Local Data Encryption 15 iOS 15 Android 16 Key Storage 16 iOS 16 Android 16 Push Notifications 17 iOS 17 Android 17 Threema • Cryptography Whitepaper Address Book Synchronization 17 Linking 18 ID Revocation 19 An Example 19 Profile Pictures 19 Web Client 20 Architecture 20 Connection Buildup 21 WebRTC Signaling 22 WebRTC Connection Buildup 22 Trusted Keys / Stored Sessions 23 Push Service 23 Self Hosting 24 Links 24 Threema Calls 24 Signaling 24 Call Encryption 24 Audio Encoding 25 Video Encoding 25 Privacy / IP Exposure 25 Threema Safe 26 Overview 26 Backup Format 27 Encryption 27 Upload/Storage 27 Backup Intervals 28 Restore/Decryption 28 Running a Custom Threema Safe Server 28 Threema • Cryptography Whitepaper Overview Threema uses two different encryption layers to protect messages between the sender and the recipient. • End-to-end encryption layer: this layer is between the sender and the recipient. • Transport layer: each end-to-end encrypted message is encrypted again for transport between the client and the server, in order to protect the header information.
    [Show full text]
  • How Secure Is Textsecure?
    How Secure is TextSecure? Tilman Frosch∗y, Christian Mainkay, Christoph Badery, Florian Bergsmay,Jorg¨ Schwenky, Thorsten Holzy ∗G DATA Advanced Analytics GmbH firstname.lastname @gdata.de f g yHorst Gortz¨ Institute for IT-Security Ruhr University Bochum firstname.lastname @rub.de f g Abstract—Instant Messaging has gained popularity by users without providing any kind of authentication. Today, many for both private and business communication as low-cost clients implement only client-to-server encryption via TLS, short message replacement on mobile devices. However, until although security mechanisms like Off the Record (OTR) recently, most mobile messaging apps did not protect confi- communication [3] or SCIMP [4] providing end-to-end con- dentiality or integrity of the messages. fidentiality and integrity are available. Press releases about mass surveillance performed by intelli- With the advent of smartphones, low-cost short-message gence services such as NSA and GCHQ motivated many people alternatives that use the data channel to communicate, to use alternative messaging solutions to preserve the security gained popularity. However, in the context of mobile ap- and privacy of their communication on the Internet. Initially plications, the assumption of classical instant messaging, fueled by Facebook’s acquisition of the hugely popular mobile for instance, that both parties are online at the time the messaging app WHATSAPP, alternatives claiming to provide conversation takes place, is no longer necessarily valid. secure communication experienced a significant increase of new Instead, the mobile context requires solutions that allow for users. asynchronous communication, where a party may be offline A messaging app that claims to provide secure instant for a prolonged time.
    [Show full text]
  • Listener Feedback #170
    Security Now! Transcript of Episode #409 Page 1 of 40 Transcript of Episode #409 Listener Feedback #170 Description: Steve and Leo discuss the week's major security events and discuss questions and comments from listeners of previous episodes. They tie up loose ends, explore a wide range of topics that are too small to fill their own episode, clarify any confusion from previous installments, and present real world 'application notes' for any of the security technologies and issues we have previously discussed. High quality (64 kbps) mp3 audio file URL: http://media.GRC.com/sn/SN-409.mp3 Quarter size (16 kbps) mp3 audio file URL: http://media.GRC.com/sn/sn-409-lq.mp3 SHOW TEASE: It's time for Security Now!. Steve Gibson is here. What a great show ahead. Questions, answers. We'll talk more about PRISM, more insight there. You've got to stay tuned. This is the show to keep your privacy and security up. Security Now! is next. Leo Laporte: This is Security Now! with Steve Gibson, Episode 409, recorded June 19th, 2013: Your questions, Steve's answers, #170. It's time for Security Now!, the post-NSA edition. Steve Gibson is here, our Explainer in Chief, the guy who does all the security and privacy and is really our guru in that realm. Hello, Steve. Good to see you. Steve Gibson: Hey, Leo. Great to be with you again. And we have largely, as expected, a follow-up to last week's blockbuster theory of how PRISM works, as I expected. Actually I probably had double the number of email that I normally pull from the mailbag, which would have only been in half of the period of time.
    [Show full text]
  • Vergleich Standard-Messenger Whatsapp Benötigt Zwingend Den Zugriff Auf Alle Kontakte Der Anwender
    Staatskanzlei Aufsichtsstelle Datenschutz Staatskanzlei, Aufsichtsstelle Datenschutz, 8510 Frauenfeld An diverse Adressaten 058 345 53 41, [email protected] Frauenfeld, den 5. August 2020 Vergleich Standard-Messenger WhatsApp benötigt zwingend den Zugriff auf alle Kontakte der Anwender. Bereits aus diesem Grund kann WhatsApp für die Kommunikation im Schulbereich nicht empfohlen werden. Damit die Schulen einen Überblick über die Funktionsweise von weiteren Messen- gerdiensten erhalten, wurden die verbreiteten Applikationen Signal, Threema, Telegram und Wire (etc.) näher geprüft. Es bestehen noch sehr viele weitere Applikationen und verschiedene Versionen, auf welche hier nicht eingegangen wird. Identifikation Kontakte-hashed Backup Open-Source Berechtigungen Signal Rufnummer ja 6 Fünferblöcke ja (Github) 55 Zugriffsarten Threema Keine (Rufnummer ja lokales Backup von nein (nur der nicht eruierbar, da oder Mail sind frei- Zugangsdaten oder Verschlüsselungs- kein offener Code willig) von allen Daten prozess ist veröf- möglich fentlicht) Telegram Rufnummer ja in Cloud ja (Github) 52 Zugriffsgangsar- ten Wire Mail oder Rufnum- ja in lokale Datei ja (Github) 19 Zugriffsarten mer WhatsApp Rufnummer alle Kontakte müs- unverschlüsselt auf nein nicht eruierbar, da sen freigeschaltet Google Drive kein offener Code werden! Klapp Mail nicht eruierbar, da extern; nicht genau nein nicht eruierbar, da kein offener Code eruierbar, da kein kein offener Code offener Code Mattermost frei wählbar kein Zugriff nötig auf Schulserver ja keine Die als datenschutzrechtlich gut befundenen Eigenschaften sind grün markiert. Die Applikation Signal gilt heute grundsätzlich als sehr datenschutzfreundlich. Der einzi- ge Nachteil von Signal ist, dass die Rufnummer zur Identifikation zwingend angegeben werden muss. Aus dem Quellcode ergibt sich, dass Signale vom Benutzer sehr viele Regierungsgebäude, 8510 Frauenfeld Tel.
    [Show full text]
  • Oxygen Forensic® Detectivev.9.3
    Release notes April 2017 Oxygen Forensic® Detective v.9.3 HUAWEI CLOUD DATA DECRYPTION OF ICLOUD WHATSAPP BACKUP Huawei Consumer Business Group is recognized as the third Oxygen Forensics is proud to introduce the ability to decrypt largest smartphone manufacturer by market share. We at WhatsApp backup data extracted from iCloud. To decrypt data Oxygen Forensics always strive to provide our customers with you need to enter a code received via SMS or a phone call the most up-to-date tools for data extraction and analysis. into the specified field of Oxygen Forensic® Cloud Extractor. The latest Oxygen Forensic® Detective enables you to acquire Once the backup is fully decoded you can view and analyze data from Huawei cloud via login/password or token. You gain contacts, group and private chats with all the attachments. immediate access to messages, calls, device list and general Access to WhatsApp backup in iCloud is possible via login/ information of Huawei devices saved to the cloud. password or token that can be extracted from a mobile device. PORTABLE OXYGEN FORENSIC® VIEWER APPLE NOTES DECODING Our Oxygen Forensic® Viewer is now available in Starting from iOS 9.3 Apple Inc. offered an a portable version. It requires no installation or opportunity to the customers to lock their notes activation. All you need to do is to download the with a password. The updated Oxygen Forensic® program archive from your customer area and Detective extracts and decrypts notes created in unpack it to any specified folder on PC. Apple devices running iOS 9.x and 10.x.
    [Show full text]
  • Examining the Role of Privacy in Virtual Migration
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by AIS Electronic Library (AISeL) Examining the Role of Privacy in Virtual Migration Examining the Role of Privacy in Virtual Migration: The Case of WhatsApp and Threema Full paper Michel Schreiner Thomas Hess Ludwig-Maximilians-Universität Ludwig-Maximilians-Universität München München [email protected] [email protected] Abstract WhatsApp is a widely used instant messaging application on smartphones. However, owing to privacy deficiencies in WhatsApp, alternative services that emphasize privacy protection, such as Threema, have emerged. Thus, the question arises whether users would switch from WhatsApp to Threema for privacy reasons, and what the factors are that would affect their switching intention. To answer these questions, we develop a research model examining the role of privacy in virtual migration, using the push-pull- mooring (PPM) migration framework as a theoretical lens. Based on the results of an online survey of 220 German-speaking smartphone users, we found that privacy protection is relevant to users’ switching intention in two ways: as a push effect encouraging users to leave WhatsApp, and as a pull effect attracting users to Threema. However, while our results suggest that peer influence facilitates WhatsApp users’ switching intention, switching costs appear to be a strong barrier. Keywords Privacy protection, messaging applications, service switching, push-pull-mooring framework. Introduction In recent years, privacy has increasingly become a determining factor in consumers’ use of internet services. Various popular service providers, like Facebook and Google, have specifically attracted negative public attention for admitting that they collect, store, and analyze personal information on their users.
    [Show full text]
  • Multi-Device Secure Instant Messaging
    SoK: Multi-Device Secure Instant Messaging Antonio Dimeo, Felix Gohla, Daniel Goßen, Niko Lockenvitz {antonio.dimeo, felix.gohla, daniel.gossen, niko.lockenvitz}@student.hpi.de Hasso Plattner Institute, University of Potsdam April 17, 2021 Abstract The secure multi-device instant messaging ecosystem is diverse, varied, and under- represented in academia. We create a systematization of knowledge which focuses on the challenges of multi-device messaging in a secure context and give an overview of the current situation in the multi-device setting. For that, we analyze messenger documentation, white papers, and research that deals with multi-device messaging. This includes a detailed description of different patterns for data transfer between devices as well as device management, i.e. how clients are cryptographically linked or unlinked to or from an account and how the initial setup can be implemented. We then evaluate different instant messengers with regard to relevant criteria, e.g. whether they achieve specific security, usability, and privacy goals. In the end, we outline interesting areas for future research. Contents 1 Introduction3 1.1 Group Messaging vs. Multi-Device Messaging............... 4 1.2 Methodology.................................. 4 2 Multi-Device Messaging7 2.1 Context...................................... 7 2.2 Transferring Data Between Different Devices of One User........ 7 2.2.1 Storing Data on a Server........................ 8 2.2.2 Using Messages to Exchange Data.................. 9 2.3 Transferring Data to a Different User..................... 11 2.3.1 Without End-to-end Encryption................... 11 2.3.2 End-to-end Encryption With Shared Group Key.......... 13 2.3.3 End-to-end Encryption Per Recipient...............
    [Show full text]
  • A Comparison of Chat Applications in Terms of Security and Privacy
    See discussions, stats, and author profiles for this publication at: https://www.researchgate.net/publication/334537058 A Comparison of Chat Applications in Terms of Security and Privacy Conference Paper · July 2019 CITATION READS 1 1,071 3 authors: Johnny Botha Carien van 't Wout Council for Scientific and Industrial Research, South Africa Council for Scientific and Industrial Research, South Africa 8 PUBLICATIONS 19 CITATIONS 9 PUBLICATIONS 1 CITATION SEE PROFILE SEE PROFILE Louise Leenen University of the Western Cape 57 PUBLICATIONS 302 CITATIONS SEE PROFILE Some of the authors of this publication are also working on these related projects: Network Threats View project Ant Colony Induced Decision Trees for Intrusion Detection View project All content following this page was uploaded by Johnny Botha on 18 July 2019. The user has requested enhancement of the downloaded file. A Comparison of Chat Applications in Terms of Security and Privacy J. Botha1, C. Van ‘t Wout1, L. Leenen2 1Council for Scientific and Industrial Research (CSIR), Pretoria, South Africa 2 University of the Western Cape [email protected] 1 [email protected] 2 [email protected] Abstract: Mobile messaging or chat Applications (Apps) have gained increasing popularity over the past decade. Large amounts of data are being transmitted over the internet when people make use of these Apps. Metadata and personal information are being collected and stored every day while consumers are seeking protection against surveillance as well as against attacks from hackers. There are countless Apps available but some are leading the way in popularity, platform availability and features. WhatsApp, one of the leading Apps, revealed in 2016 that it had more than one billion users.
    [Show full text]
  • Arxiv:1601.04848V1 [Cs.NI]
    Analyzing Locality of Mobile Messaging Traffic using the MATAdOR Framework Quirin Scheitle, Matthias Wachs, Johannes Zirngibl, and Georg Carle Technical University of Munich (TUM) Department of Informatics Chair for Networking Services and Architectures Email: {scheitle, wachs, carle}@net.in.tum.de, {zirngibl}@in.tum.de This is a preprint of the publication to appear at PAM 2016. Last update: 14 Jan 2016. Abstract. Mobile messaging services have gained a large share in global telecom- munications. Unlike conventional services like phone calls, text messages or email, they do not feature a standardized environment enabling a federated and potentially local service architecture. We present an extensive and large-scale analysis of communication patterns for four popular mobile messaging services between 28 countries and analyze the locality of communication and the resulting impact on user privacy. We show that server architectures for mobile messaging services are highly centralized in single countries. This forces messages to dras- tically deviate from a direct communication path, enabling hosting and transfer countries to potentially intercept and censor traffic. To conduct this work, we developed a measurement framework to analyze traffic of such mobile messag- ing services. It allows to conduct automated experiments with mobile messaging applications, is transparent to those applications and does not require any modi- fications to the applications. Keywords: Mobile Messaging·Security·WhatsApp·WeChat·Threema·TextSecure 1 Introduction arXiv:1601.04848v1 [cs.NI] 19 Jan 2016 Mobile messaging services like WeChat or WhatsApp see a steady increase in both ac- tive users and messages sent, with a particular success in emerging markets like China, Brazil or Malaysia [18,30].
    [Show full text]