Puppetnets

Lam, Vinson; Antonatos, Spiros; Akritidis, Periklis; Anagnostakis, Kostas G.

doi:10.1145/1180405.1180434

Cited by 49 publications

(1 citation statement)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…A malicious adversary cannot sign webpages on behalf of the website under attack and thus cannot claim these sites as its origin. Unfortunately, even if all broadcast content was properly assigned to a restricted web origin, many attacks would still be possible via "blind" CSRF or PuppetNet attacks [Lam et al 2006]. These attacks can cause considerable damage, even if the same-origin principle is upheld, by the sheer virtue of being able to access the Internet using somebody else's computer.…”

Section: Countermeasuresmentioning

confidence: 99%

Attacking the Internet Using Broadcast Digital Television

Oren

Keromytis

2015

ACM Trans. Inf. Syst. Secur.

View full text Add to dashboard Cite

In the attempt to bring modern broadband Internet features to traditional broadcast television, the Digital Video Broadcasting (DVB) consortium introduced a specification called Hybrid Broadcast-Broadband Television (HbbTV), which allows broadcast streams to include embedded HTML content that is rendered by the television. This system is already in very wide deployment in Europe and has recently been adopted as part of the American digital television standard. Our analyses of the specifications, and of real systems implementing them, show that the broadband and broadcast systems are combined insecurely. This enables a large-scale exploitation technique with a localized geographical footprint based on Radio Frequency (RF) injection, which requires a minimal budget and infrastructure and is remarkably difficult to detect. In this article, we present the attack methodology and a number of follow-on exploitation techniques that provide significant flexibility to attackers. Furthermore, we demonstrate that the technical complexity and required budget are low, making this attack practical and realistic, especially in areas with high population density: In a dense urban area, an attacker with a budget of about $450 can target more than 20,000 devices in a single attack. A unique aspect of this attack is that, in contrast to most Internet of Things/Cyber-Physical System threat scenarios, where the attack comes from the data network side and affects the physical world, our attack uses the physical broadcast network to attack the data network.

show abstract

Section: Countermeasuresmentioning

confidence: 99%

Attacking the Internet Using Broadcast Digital Television

Oren

Keromytis

2015

ACM Trans. Inf. Syst. Secur.

View full text Add to dashboard Cite

show abstract

Characterizing Bots’ Remote Control Behavior

Stinson

Mitchell

Botnet Detection

View full text Add to dashboard Cite

The Risks of WebGL: Analysis, Evaluation and Detection

Belkin

Gelernter

Cidon

2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

WebGL is a browser feature that enables JavaScript-based control of the graphics processing unit (GPU) to render interactive 3D and 2D graphics, without the use of plug-ins. Exploiting WebGL for attacks will affect billions of users since browsers serve as the main interaction mechanism with the world wide web. This paper explores the potential threats derived from the recent move by browsers from WebGL 1.0 to the more powerful WebGL 2.0. We focus on two possible abuses of this feature: distributed password cracking and distributed cryptocurrency mining. Our evaluation of the attacks also includes the practical aspects of successful attacks, such as stealthiness and user-experience. Considering the danger of WebGL abuse, as observed in the experiments, we designed and evaluated a proactive defense. We implemented a Chrome extension that proved itself effective in detecting and blocking WebGL. We demonstrate in our experiments the major improvements of WebGL 2.0 over WebGL 1.0 both in performance and in convenience. Furthermore, our results show that it is possible to use WebGL 2.0 in distributed attacks under real-world conditions. Although WebGL 2.0 shows similar hash rates as CPU-based techniques, WebGL 2.0 proved to be significantly harder to detect and has a lesser effect on user experience.

show abstract

Puppetnets

Cited by 49 publications

References 30 publications

Attacking the Internet Using Broadcast Digital Television

Attacking the Internet Using Broadcast Digital Television

Characterizing Bots’ Remote Control Behavior

The Risks of WebGL: Analysis, Evaluation and Detection

Contact Info

Product

Resources

About