Encrypted Network Traffic Analysis of Secure Instant Messaging Application: A Case Study of Signal Messenger App

Afzal, Asma; Hussain, Mehdi; Saleem, Shahzad; Shahzad, Muhammad; Ho, Anthony T. S.; Jung, Ki-Hyun

doi:10.3390/app11177789

Cited by 16 publications

(12 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…In the case of the KakaoTalk and NateOn applications, the encrypted database files can be recovered successfully without a user password [13]. Afzal et al proposed a method to extract user artifacts by analyzing the encrypted network traffic of signal messengers supporting end-to-end encryption [14].…”

Section: Instance Messenger Researchmentioning

confidence: 99%

Forensic Analysis of wxSQLite3-Encrypted Databases and Its Application

Kang,

Kim,

Hur

et al. 2024

Electronics

View full text Add to dashboard Cite

This study focuses on digital forensic investigations of the databases used in an instant messenger application. Instant messengers store and manage user data in databases, which can be encrypted for privacy protection. We proposed a method to identify and decrypt an SQLite version 3.40.0 database encrypted using wxSQLite3 version 4.9.1, and then we examined the LINE instant messenger application to validate the proposed method. As a result, we successfully acquired the wxSQLite3 passphrase, which was used to decrypt the database of the LINE messenger application. We also performed artifact analysis to enumerate the data from a digital forensics perspective. To the best of our knowledge, this study is the first to propose a method to identify and decrypt of wxSQLite3-encrypted database and its applications.

show abstract

Section: Instance Messenger Researchmentioning

confidence: 99%

Forensic Analysis of wxSQLite3-Encrypted Databases and Its Application

Kang,

Kim,

Hur

et al. 2024

Electronics

View full text Add to dashboard Cite

show abstract

“…Lab 3: iOS Network Traffic Analysis and MITM Attacks The objective of this lab is to foster an understanding of network security concepts within the context of iOS applications, enabling learners to analyze network traffic and conduct MITM attacks ethically [42] to uncover security risks and data leaks. Figure 7 illustrates the lab 3 structures and expected outcomes.…”

Section: Ios Penetration Testing Labs: Objectives Structures and Expe...mentioning

confidence: 99%

Enhancing Mobile Security through Comprehensive Penetration Testing

Roshanaei

2024

JIS

View full text Add to dashboard Cite

In today's era, where mobile devices have become an integral part of our daily lives, ensuring the security of mobile applications has become increasingly crucial. Mobile penetration testing, a specialized subfield within the realm of cybersecurity, plays a vital role in safeguarding mobile ecosystems against the ever-evolving landscape of threats. The ubiquity of mobile devices has made them a prime target for cybercriminals, and the data and functionality accessed through mobile applications make them valuable assets to protect. Mobile penetration testing is designed to identify vulnerabilities, weaknesses, and potential exploits within mobile applications and the devices themselves. Unlike traditional penetration testing, which often focuses on network and server security, mobile penetration testing zeroes in on the unique challenges posed by mobile platforms. Mobile penetration testing, a specialized field within cybersecurity, is an essential tool in the Cybersecurity specialists' toolkit to protect mobile ecosystems from emerging threats. This article introduces mobile penetration testing, emphasizing its significance, including comprehensive learning labs for Android and iOS platforms, and highlighting how it distinctly differs from traditional penetration testing methodologies.

show abstract

“…Common features of the Signal service include texts, stickers, media messages, voice messages, audio calls, video calls, typing indicators, and more. Each communication has a security number that may be checked between the persons involved [28].…”

Section: Signalmentioning

confidence: 99%

Mobile Forensic Analysis of Signal Messenger Application on Android using Digital Forensic Research Workshop (DFRWS) Framework

Riadi¹,

Herman²,

Siregar³

2022

ISI

View full text Add to dashboard Cite

Cybercrime is a crime committed using equipment connected to the internet. One of the cybercrimes that occured during the COVID-19 pandemic was the spread hoaxes about the COVID-19 vaccine which caused panic in society. Signal Messenger is one of the social media that has become a trending topic since the number of personal data security issues and the emergence of end-to-end encryption features. This research aims to find digital evidence on Signal Messenger application installed on the perpetrator's Android smartphone. This research uses Belkasoft, Magnet AXIOM, and MOBILedit Forensic Express tools and implements the Digital Forensics Research Workshop (DFRWS) framework in each stage of the research experiment. The research was carried out according to the case scenario with 11 predetermined parameters. Digital evidence is found from the Signal Messenger application: application information, account information, chat, pictures, videos, contacts, and stickers. The results of this research indicate that Belkasoft Evidence Center forensic tool is better, with an accuracy rate of 78.69%, while Magnet AXIOM is 26.23% and MOBILedit Forensic Express is 9.84%. The results of this research can be used as a reference for other forensic researchers/experts in handling similar crime cases on the Signal Messenger application to get better results.

show abstract

Encrypted Network Traffic Analysis of Secure Instant Messaging Application: A Case Study of Signal Messenger App

Cited by 16 publications

References 24 publications

Forensic Analysis of wxSQLite3-Encrypted Databases and Its Application

Forensic Analysis of wxSQLite3-Encrypted Databases and Its Application

Enhancing Mobile Security through Comprehensive Penetration Testing

Mobile Forensic Analysis of Signal Messenger Application on Android using Digital Forensic Research Workshop (DFRWS) Framework

Contact Info

Product

Resources

About