Gwendal Patat,Mohamed Sabt,Pierre-Alain Fouque

DOI: https://doi.org/10.56553/popets-2023-0112

2023-08-10

Abstract:Thanks to HTML5, users can now view videos on Web browsers without installing plug-ins or relying on specific devices. In 2017, W3C published Encrypted Media Extensions (EME) as the first official Web standard for Digital Rights Management (DRM), with the overarching goal of allowing seamless integration of DRM systems on browsers. EME has prompted numerous voices of dissent with respect to the inadequate protection of users. Of particular interest, privacy concerns were articulated, especially that DRM systems inherently require uniquely identifying information on users' devices to control content distribution better. Despite this anecdotal evidence, we lack a comprehensive overview of how browsers have supported EME in practice and what privacy implications are caused by their implementations. In this paper, we fill this gap by investigating privacy leakage caused by EME relying on proprietary and closed-source DRM systems. We focus on Google Widevine because of its versatility and wide adoption. We conduct empirical experiments to show that browsers diverge when complying EME privacy guidelines, which might undermine users' privacy. For instance, we find that many browsers gladly give away the identifying Widevine Client ID with no or little explicit consent from users. Moreover, we characterize the privacy risks of users tracking when browsers miss applying EME guidelines regarding privacy. Because of being closed-source, our work involves reverse engineering to dissect the contents of EME messages as instantiated by Widevine. Finally, we implement EME Track, a tool that automatically exploits bad Widevine-based implementations to break privacy.

Cryptography and Security

Lihe Zhang,Xiangwei Kong,Cheng Yang,Huchuan Lu

2006-01-01

Abstract:At present, mobile terminals haven't any function of rights management, and cryptology-based method can't resolve all the copyright problems in mobile digital distribution service. With the urge demand of digital rights management in digital distribution service, a scheme based on watermark technique(WDRM) is proposed in this paper. It doesn't need the cooperation from mobile terminals. In the paper we mainly discuss the scheme theory, architecture, service process, algorithms choice and performance. In the end, the compare between WDRM and cryptology-based OMADRM is given. Analysis shows that the scheme is feasible and secure.

Amir Rafi,Carlton Shepherd,Konstantinos Markantonakis

2023-08-03

Abstract:Digital rights management (DRM) solutions aim to prevent the copying or distribution of copyrighted material. On mobile devices, a variety of DRM technologies have become widely deployed. However, a detailed security study comparing their internal workings, and their strengths and weaknesses, remains missing in the existing literature. In this paper, we present the first detailed security analysis of mobile DRM systems, addressing the modern paradigm of cloud-based content delivery followed by major platforms, such as Netflix, Disney+, and Amazon Prime. We extensively analyse the security of three widely used DRM solutions -- Google Widevine, Apple FairPlay, and Microsoft PlayReady -- deployed on billions of devices worldwide. We then consolidate their features and capabilities, deriving common features and security properties for their evaluation. Furthermore, we identify some design-level shortcomings that render them vulnerable to emerging attacks within the state of the art, including micro-architectural side-channel vulnerabilities and an absence of post-quantum security. Lastly, we propose mitigations and suggest future directions of research.

Cryptography and Security

Ahaan Dabholkar,Sourya Kakarla,Dhiman Saha

DOI: https://doi.org/10.48550/arXiv.2103.16360

2021-03-30

Cryptography and Security

Abstract:Numerous studies have shown that streaming is now the most preferred way of consuming multimedia content and this is evidenced by the proliferation in the number of streaming service providers as well as the exponential growth in their subscriber base. Riding on the advancements in low cost electronics, high speed communication and extremely cheap data, Over-The-Top (OTT) music streaming is now the norm in the music industry and is worth millions of dollars. This is especially true in India where major players offer the so called freemium models which have active monthly user bases running in to the millions. These services namely, Gaana, Airtel Wynk and JioSaavn attract a significantly bigger audience than their 100% subscription based peers like Amazon Prime Music, Apple Music etc. Given their ubiquity and market dominance, it is pertinent to do a systematic analysis of these platforms so as to ascertain their potential as hotbeds of piracy. This work investigates the resilience of the content protection systems of the four biggest music streaming services (by subscriber base) from India, namely Airtel Wynk, Ganna, JioSaavn and Hungama. By considering the Digital Rights Management (DRM) system employed by Spotify as a benchmark, we analyse the security of these platforms by attempting to steal the streamed content efficiently. Finally, we present a holistic overview of the flaws in their security mechanisms and discuss possible mitigation strategies. To the best of our knowledge, this work constitutes the first attempt to analyze security of OTT music services from India. Our results further confirm the time tested belief that security through obscurity is not a long term solution and leaves such platforms open to piracy and a subsequent loss of revenue for all the stakeholders.

Wu Xinyan,Zhou Yujie

DOI: https://doi.org/10.3969/j.issn.1009-8054.2006.12.054

2006-01-01

Abstract:Besides the video codec, Digital Rights Management has become a core technology in IPTV.It is used to protect the rights of content, and control how the subscribers use the content. Our thesis is based on the OMA DRM standard, and we propose a practical DRM solution to the Transport Stream. In the end, we verify the encryption effi- ciency by our own developed system.

Samuel Todd Bromley,John Sheppard,Mark Scanlon,Nhien-An Le-Khac

DOI: https://doi.org/10.48550/arXiv.2012.01107

2020-12-02

Abstract:Kodi is of one of the world's largest open-source streaming platforms for viewing video content. Easily installed Kodi add-ons facilitate access to online pirated videos and streaming content by facilitating the user to search and view copyrighted videos with a basic level of technical knowledge. In some countries, there have been paid child sexual abuse organizations publishing/streaming child abuse material to an international paying clientele. Open source software used for viewing videos from the Internet, such as Kodi, is being exploited by criminals to conduct their activities. In this paper, we describe a new method to quickly locate Kodi artifacts and gather information for a successful prosecution. We also evaluate our approach on different platforms; Windows, Android and Linux. Our experiments show the file location, artifacts and a history of viewed content including their locations from the Internet. Our approach will serve as a resource to forensic investigators to examine Kodi or similar streaming platforms.

Multimedia,Cryptography and Security

Adam Janovsky,Davide Maiorca,Dominik Macko,Vashek Matyas,Giorgio Giacinto

DOI: https://doi.org/10.48550/arXiv.2205.05573

2022-07-07

Abstract:Cryptography has been extensively used in Android applications to guarantee secure communications, conceal critical data from reverse engineering, or ensure mobile users' privacy. Various system-based and third-party libraries for Android provide cryptographic functionalities, and previous works mainly explored the misuse of cryptographic API in benign applications. However, the role of cryptographic API has not yet been explored in Android malware. This paper performs a comprehensive, longitudinal analysis of cryptographic API in Android malware. In particular, we analyzed $603\,937$ Android applications (half of them malicious, half benign) released between $2012$ and $2020$, gathering more than 1 million cryptographic API expressions. Our results reveal intriguing trends and insights on how and why cryptography is employed in Android malware. For instance, we point out the widespread use of weak hash functions and the late transition from insecure DES to AES. Additionally, we show that cryptography-related characteristics can help to improve the performance of learning-based systems in detecting malicious applications.

Cryptography and Security

Tian Chen,Xie Lanchi,Wang Xingjun

DOI: https://doi.org/10.1109/icndc.2013.33

2013-12-01

Abstract:With the internet's influence, an obvious trend can be seen that digital TV industry will embrace multi-screen and IP-based technology. Due to Chinese specific political environment, how to make sure the TV's contents controllable has become a key problem when the contents are accepted by more and more non-TV terminals like Android phones. In this paper, we focus on digital home network environment where Android terminals receive TV contents and display them with authorization. We introduce a new architecture for Android applications where an installed app works as a translator can run mobile code (Code that's loaded from server at runtime) through our defined android xml drama. What's more, we build an Android Digital Right Management (DRM) system referenced by China DRM Technical specification on that architecture. We show that DRM can effectively protect TV contents and mobile code can provide at least 2 benefits: first, it can protect some important code from exposure; second, it can keep the Android app's flexibility.

Min Huang,Kai Bu,Hanlin Wang,Kaiwen Zhu

DOI: https://doi.org/10.1109/cyberc.2016.14

2016-01-01

Abstract:Malware has started grabbing its undeserved share long before the blossom of Android ecosystem. Injected with malware, malicious applications (apps) may threat users in various ways like financial charges and information stealing. When the severity of a deluge of malware was first noticed, malware detectors delivered unsatisfactory detection accuracy, which further degenerated upon simple transformation of malicious apps. Now years later, we are eager to re-examine the robustness of malware detectors. A surprisingly disappointed finding is that even known malicious apps can evade quite a few detectors. We also find that repackaging with extracted exploitable code instead of readily available malware samples can evade more signature-based detectors. Furthermore, we find Android OS features of Service and Broadcast exploitable to enable malicious apps stealthily active on phones. We implement all these findings through DroidRide, a framework toward making Android malware less catchable to detectors and more active on phones. Our prototype based on two example apps-AndroRAT and MIUI Notes-demonstrates DroidRide's effectiveness in malware evasion. Toward defending against DroidRide alike evasion, we further suggest feasible design enhancements of malware detectors and Android OS.

Xiyuan Zhang,Gang Xiong,Zhen Li,Chen Yang,Xinjie Lin,Gaopeng Gou,Binxing Fang

DOI: https://doi.org/10.1016/j.cose.2023.103623

IF: 5.105

2023-12-09

Computers & Security

Abstract:Traffic-based video identification attack is a side-channel attack that allows an attacker to identify transmitted online videos from encrypted network traffic. Existing attacks face two types of challenges: 1) YouTube's improved streaming technology renders them invalid or impacted; 2) real-world diverse traffic makes them underperform. In this paper, we provide the first study of YouTube's technical improvements and reveal its three key features: i) the mechanism that replaces the MPD file, ii) variable combined segments, and iii) various buffering processes. Based on the above analysis, we propose a Robust and easily scalable Video Identification Attack against YouTube called RoVIA. RoVIA extracts video fingerprints from video file headers and reference sequences from video traffic. RoVIA uses the reference sequence to generate candidate sequences in the pre-built video fingerprint library and achieves video identification by measuring sequence similarity. Experimental results show that RoVIA achieves open-world accuracy of 0.967, 0.924, and 0.863 in open-world, fixed-quality, and poor network experiments. Furthermore, RoVIA's scalability allows the target classes to be adjusted by updating the fingerprint library without collecting new samples and retraining parameters. This study aims to demonstrate the vulnerabilities of YouTube streaming technology and the potential consequences of its malicious use. We also propose two YouTube-friendly countermeasures to help developers build effective defenses.

computer science, information systems

Xinqi Jin,Fan Dang,Qi-An Fu,Lingkun Li,Guanyan Peng,Xinlei Chen,Kebin Liu,Yunhao Liu

DOI: https://doi.org/10.1145/3495243.3560521

IF: 6.075

2024-01-01

IEEE Transactions on Mobile Computing

Abstract:Streaming services have billions of mobile subscribers, yet video piracy has cost service providers billions. Digital Rights Management (DRM), however, is still far from satisfactory. Unlike DRM, which attempts to prohibit the creation of pirated copies, fingerprinting may be used to track out the source of piracy. Nevertheless, the idea of piracy tracing is not widely used at the moment, since existing fingerprinting-based streaming systems fail to serve numerous users. In this paper, we present the design and evaluation of StreamingTag, a scalable piracy tracing system for mobile streaming services. StreamingTag adopts a segment-level fingerprint embedding scheme to remove the need of re-embedding the fingerprint into the video for each new viewer. The key innovations of StreamingTag include a scalable and CDN-friendly delivery framework, a polarized and randomized SVD watermarking scheme suitable for short segments, and a collusion-resistant fingerprinting scheme optimized for large-scale streaming services. Experiment results show the good QoS of StreamingTag in terms of preparation latency, bandwidth consumption, and video fidelity. Compared with existing SVD watermarking schemes, the proposed watermarking scheme improves the watermark extraction accuracy by 2.25x at most and 1.5x on average. Compared with existing collusion-resistant fingerprinting schemes, the proposed scheme catches more colluders and improves the recall rate by 26%.

Adil Ahmad,Mehdi Hussain

DOI: https://doi.org/10.12928/mf.v4i1.5762

2022-03-31

Mobile and Forensics

Abstract:Mobile applications of video streaming platforms store a lot of information on mobile devices which can have both positive and negative impacts. Positive, in the sense that it could assist law enforcement agencies in solving crime, and the negative impact is that it could be accessed by malicious actors. In this study, we forensically investigate the Netflix, Amazon Prime Video, and iFlix android applications. The major focus is on identifying stored artifacts on the mobile devices left behind by the android video streaming applications. It will give law enforcement agencies and forensic investigators a clear direction when it comes to extracting evidence to solve a crime. On the other hand, it will notify the mobile application developers on how to further improve the security of their mobile applications.

Ran Dubin,Amit Dvir,Ofir Pele,Ofer Hadar

DOI: https://doi.org/10.1109/tifs.2017.2730819

IF: 7.231

2017-12-01

IEEE Transactions on Information Forensics and Security

Abstract:Desktops can be exploited to violate privacy. There are two main types of attack scenarios: active and passive. We consider the passive scenario where the adversary does not interact actively with the device, but is able to eavesdrop on the network traffic of the device from the network side. In the near future, most Internet traffic will be encrypted and thus passive attacks are challenging. Previous research has shown that information can be extracted from encrypted multimedia streams. This includes video title classification of non HTTP adaptive streams. This paper presents algorithms for encrypted HTTP adaptive video streaming title classification. We show that an external attacker can identify the video title from video HTTP adaptive streams sites, such as YouTube. To the best of our knowledge, this is the first work that shows this. We provide a large data set of 15000 YouTube video streams of 2100 popular video titles that was collected under real-world network conditions. We present several machine learning algorithms for the task and run a thorough set of experiments, which shows that our classification accuracy is higher than 95%. We also show that our algorithms are able to classify video titles that are not in the training set as unknown and some of the algorithms are also able to eliminate false prediction of video titles and instead report unknown. Finally, we evaluate our algorithm robustness to delays and packet losses at test time and show that our solution is robust to these changes.

computer science, theory & methods,engineering, electrical & electronic

Tongxin Li,Xueqiang Wang,Mingming Zha,Kai Chen,XiaoFeng Wang,Luyi Xing,Xiaolong Bai,Nan Zhang,Xinhui Han

DOI: https://doi.org/10.1145/3133956.3134021

2017-01-01

Abstract:As a critical feature for enhancing user experience, cross-app URL invocation has been reported to cause unauthorized execution of app components. Although protection has already been put in place, little has been done to understand the security risks of navigating an app's WebView through an URL, a legitimate need for displaying the app's UI during cross-app interactions. In our research, we found that the current design of such cross-WebView navigation actually opens the door to a cross-app remote infection, allowing a remote adversary to spread malicious web content across different apps' WebView instances and acquire stealthy and persistent control of these apps. This new threat, dubbed Cross-App WebView Infection (XAWI), enables a series of multi-app, colluding attacks never thought before, with significant real world impacts. Particularly, we found that the remote adversary can collectively utilize multiple infected apps' individual capabilities to escalate his privileges on a mobile device or orchestrate a highly realistic remote Phishing attack (e.g., running a malicious script in Chrome to stealthily change Twitter's WebView to fake Twitter's own login UI). We show that the adversary can easily find such attack "building blocks" (popular apps whose WebViews can be redirected by another app) through an automatic fuzz, and discovered about 7.4% of the most popular apps subject to the XAWI attacks, including Facebook, Twitter, Amazon and others. Our study reveals the contention between the demand for convenient cross-WebView communication and the need for security control on the channel, and makes the first step toward building OS-level protection to safeguard this fast-growing technology.

Sundar Krishnan,William Bradley Glisson

DOI: https://doi.org/10.48550/arXiv.2402.06869

2024-02-10

Abstract:These days, there are many ways to watch streaming videos on television. When compared to a standalone smart television, streaming devices such as Roku and Amazon Fire Stick have a plethora of app selections. While these devices are platform agnostic and compatible with smartphones, they can still leave behind crumbs of sensitive data that can cause privacy, security, and forensic issues. In this paper, the authors conduct an experiment with streaming devices to ascertain digital footprints from network traffic and mobile forensics that they leave behind.

Cryptography and Security

Nikola Jovanović,Robin Staab,Martin Vechev

2024-06-24

Abstract:LLM watermarking has attracted attention as a promising way to detect AI-generated content, with some works suggesting that current schemes may already be fit for deployment. In this work we dispute this claim, identifying watermark stealing (WS) as a fundamental vulnerability of these schemes. We show that querying the API of the watermarked LLM to approximately reverse-engineer a watermark enables practical spoofing attacks, as hypothesized in prior work, but also greatly boosts scrubbing attacks, which was previously unnoticed. We are the first to propose an automated WS algorithm and use it in the first comprehensive study of spoofing and scrubbing in realistic settings. We show that for under $50 an attacker can both spoof and scrub state-of-the-art schemes previously considered safe, with average success rate of over 80%. Our findings challenge common beliefs about LLM watermarking, stressing the need for more robust schemes. We make all our code and additional examples available at <a class="link-external link-https" href="https://watermark-stealing.org" rel="external noopener nofollow">this https URL</a>.

Machine Learning,Artificial Intelligence,Cryptography and Security

Meghna Bal

DOI: https://doi.org/10.1080/09584935.2023.2204220

2023-05-04

Contemporary South Asia

Abstract:Telegram, an encrypted digital messaging application, is an emerging hotbed for digital piracy. It has several features that make it attractive for pirates, including the ability to share large files at scale, coupled with an emphasis on privacy and security that allows for such sharing to be carried out largely anonymously. Telegram gained prominence in academic literature as a safe haven for activities in the digital realm that have increasingly found themselves subject to institutional censure. However, while most studies have delved into the matter of online video piracy on Telegram, perspectives on the economic models and revenues relied on by Telegram pirates in India remain largely unexplored. This paper proposes to discuss Telegram's ascent as a significant medium in the Audio-Visual piracy market in India and will more specifically analyse the mechanisms of piracy monetization (payment services, and ad-revenue generators) which represent an important stake in pirates' strategies. Finally, the paper argues that the analysis in terms of economic models represents a valuable contribution to current debates on copyright enforcement. The methodology relies on both primary and secondary sources complemented with semi-structured interviews with pirates and an entertainment industry professional.

Davide Bove

2023-11-17

Abstract:In the realm of mobile security, where OS-based protections have proven insufficient against robust attackers, Trusted Execution Environments (TEEs) have emerged as a hardware-based security technology. Despite the industry's persistence in advancing TEE technology, the impact on end users and developers remains largely unexplored. This study addresses this gap by conducting a large-scale analysis of TEE utilization in Android applications, focusing on the key areas of cryptography, digital rights management, biometric authentication, and secure dialogs. To facilitate our extensive analysis, we introduce Mobsec Analytika, a framework tailored for large-scale app examinations, which we make available to the research community. Through the analysis of 170,550 popular Android apps, our analysis illuminates the implementation of TEE-related features and their contextual usage. Our findings reveal that TEE features are predominantly utilized indirectly through third-party libraries, with only 6.7% of apps directly invoking the APIs. Moreover, the study reveals the underutilization of the recent TEE-based UI feature Protected Confirmation.

Cryptography and Security

Diego Bendersky,Ariel Futoransky,Luciano Notarfrancesco,Carlos Sarraute,Ariel Waissbein

DOI: https://doi.org/10.48550/arXiv.1006.2356

2010-06-12

Abstract:Software digital rights management is a pressing need for the software development industry which remains, as no practical solutions have been acclamaimed succesful by the industry. We introduce a novel software-protection method, fully implemented with today's technologies, that provides traitor tracing and license enforcement and requires no additional hardware nor inter-connectivity. Our work benefits from the use of secure triggers, a cryptographic primitive that is secure assuming the existence of an ind-cpa secure block cipher. Using our framework, developers may insert license checks and fingerprints, and obfuscate the code using secure triggers. As a result, this rises the cost that software analysis tools have detect and modify protection mechanisms. Thus rising the complexity of cracking this system.

Cryptography and Security

Carlo Meijer,Veelasha Moonsamy,Jos Wetzels

DOI: https://doi.org/10.48550/arXiv.2009.04274

2020-09-09

Cryptography and Security

Abstract:The continuing use of proprietary cryptography in embedded systems across many industry verticals, from physical access control systems and telecommunications to machine-to-machine authentication, presents a significant obstacle to black-box security-evaluation efforts. In-depth security analysis requires locating and classifying the algorithm in often very large binary images, thus rendering manual inspection, even when aided by heuristics, time consuming. In this paper, we present a novel approach to automate the identification and classification of (proprietary) cryptographic primitives within binary code. Our approach is based on Data Flow Graph (DFG) isomorphism, previously proposed by Lestringant et al. Unfortunately, their DFG isomorphism approach is limited to known primitives only, and relies on heuristics for selecting code fragments for analysis. By combining the said approach with symbolic execution, we overcome all limitations of their work, and are able to extend the analysis into the domain of unknown, proprietary cryptographic primitives. To demonstrate that our proposal is practical, we develop various signatures, each targeted at a distinct class of cryptographic primitives, and present experimental evaluations for each of them on a set of binaries, both publicly available (and thus providing reproducible results), and proprietary ones. Lastly, we provide a free and open-source implementation of our approach, called Where's Crypto?, in the form of a plug-in for the popular IDA disassembler.