Presentation is loading. Please wait.

Presentation is loading. Please wait.

Defending against Sybil Devices in Crowdsourced Mapping Services

Published byDamian Short Modified over 5 years ago

Similar presentations

Presentation on theme: "Defending against Sybil Devices in Crowdsourced Mapping Services"— Presentation transcript:

1 Defending against Sybil Devices in Crowdsourced Mapping Services

2 = Mobile = Life Mobile phones for content, payment, authentication
Mobile devices are virtual representations of ourselves. =

3 But Is This a Safe Assumption?
App User = real phone + real person?

4 Can We “Authenticate” Devices?
Register via account Require CAPTCHAs 2FA via phone number Validate IMEI number Create fake account Out-source to third party Temporary SMS services Spoofed IMEI

5 In This Talk Sybil device problem
Software scripts emulating as real devices Allowing a single user to control many devices In the context of Waze (popular navigation app) Techniques generating Sybil devices Attacks on Waze: injecting fake events, user location tracking Defense against Sybil devices

6 Key Features Social features User reported events
50M active users Real-time traffic update using millions of users’ locations User reported events Accidents, construction, police cars, etc. Alert user of nearby events Social features See nearby users on the map Say “hi” and message nearby users

7 Sybil Devices in Waze Sybil devices have significant impact on Waze
Inject fake data, retrieve sensitive information Existing work: mobile emulators Two Israeli students used emulators to created fake traffic jams in 2014 Not scalable: ~10 emulators per PC Virtualize devices using scripts Scalable: 1,000 – 10,000 Sybil devices per server Overwhelm normal users’ data Launch special large scale attacks

8 Create Sybil Devices using Script
Intuition Goal: emulate a full mobile client Server communicates with client via limited APIs Mimic API calls to replace full client Plaintext traffic Controlled by us Waze Client Waze Server HTTPS Proxy HTTPS HTTPS We can create 10,000 Sybil devices on a single PC

9 Attack #1: Polluting Waze Database
Fake road-side events. Any type of event at any location Potentially affect 1+billion Google Maps users Fake traffic hotspots Simulate cars driving slowly Large groups of Sybil devices to overwhelm normal users’ data Before After Users are re-routed

10 Attack #2: User Location Tracking
Follow (stalk) any Waze user in real-time Waze marks nearby users on the map Pinpoint to exact GPS location Specific hotels, gas stations, etc. Remain invisible Move in and out quickly Track users in the background Waze uploads GPS in the background Track users across days Use creation time as GUID

11 A Tracking Example

12 effective and practical
Tracking Experiments Extremely dense user population Fast moving target user Highway 101 LA downtown GPS Captured GPS Missed Tracking attack is effective and practical

13 The Story of Us and Waze

14 Conversation with Waze
Time Notify Waze and Google Nov 1st code change: remove background GPS upload Oct Pitch work to Fusion Fusion report on tracking Media attention Apr Apr +21 more Public PR release 2nd code change: disable social function Apr More news coverage +16 more May Work with Waze

15 Waze’s Security Measures
Remove background GPS upload Hide start/end location Hide GPS when not moving Remove username Scramble creation time Require SMS verification to see identifiable information Disable social feature in versions <= 3.5 Use special encoding for app-to-server APIs Oct Apr Apr May May May Time Track active users Start collaboration Use temporary SMS services to pass verification Validate via experiments Yes, we can still track Waze users Much less location information being shared Crack encoding within a day Validate via experiments

16 Broad Implications on Other Apps
Sybil device problem is not specific to Waze E.g. Foursquare, Yelp, Uber, Lyft, Tinder, Whisper We reverse engineer their APIs, and create light-weight clients using scripts Tinder/Whisper Locate (triangulate) users Uber/Lyft Track drivers Fake rides

17 Today Good defense: Yik Yak Market for selling attack tools
Use HMAC[1] to ensure message integrity Embed key in code Require decompiling code Market for selling attack tools Plugin apps for Didi in China Spoof location Filter orders Snatch orders [1] HMAC: Hash-based Message Authentication Code

18 Thank you! Questions?

Download ppt "Defending against Sybil Devices in Crowdsourced Mapping Services"

Similar presentations

Cross-Site Scripting Issues and Defenses Ed Skoudis Predictive Systems © 2002, Predictive Systems.

Cross-Site Scripting Issues and Defenses Ed Skoudis Predictive Systems © 2002, Predictive Systems.
Location Cheating: A Security Challenge to Location- based Social Network Services Wenbo He 1, Xue Liu 2, Mai Ren 1 1 University of Nebraska-Lincoln 2.

Location Cheating: A Security Challenge to Location- based Social Network Services Wenbo He 1, Xue Liu 2, Mai Ren 1 1 University of Nebraska-Lincoln 2.
1 Integrating personal and public transport information Fred Gangemi, Steer Davies Gleave June 21 th 2012.

1 Integrating personal and public transport information Fred Gangemi, Steer Davies Gleave June 21 th 2012.
 Guy Jacob  Roee Shapiro Project B Spring, 2009 Cloudio  Project Supervisor: Eddie Bortnikov  Lab Chief Engineer: Dr. Ilana David.

 Guy Jacob  Roee Shapiro Project B Spring, 2009 Cloudio  Project Supervisor: Eddie Bortnikov  Lab Chief Engineer: Dr. Ilana David.
CAP6135: Malware and Software Vulnerability Analysis Examples of Term Projects Cliff Zou Spring 2012.

CAP6135: Malware and Software Vulnerability Analysis Examples of Term Projects Cliff Zou Spring 2012.
1 Team Management System (TMS) By DACCIT Pvt. Ltd., Indore.

1 Team Management System (TMS) By DACCIT Pvt. Ltd., Indore.
Mobile site proposal. Chroma Agency An award-winning digital agency We build engaging and sustainable digital products Equally strong in design, technology.

Mobile site proposal. Chroma Agency An award-winning digital agency We build engaging and sustainable digital products Equally strong in design, technology.
MODEL BASED GUI TESTING FOR MOBILE APPS 1 Manoj Philip Mathen Specialized Testing Consultant, Infosys.

MODEL BASED GUI TESTING FOR MOBILE APPS 1 Manoj Philip Mathen Specialized Testing Consultant, Infosys.
Online Game Trojan SecurityLabs.websense.com Hermes Li.

Online Game Trojan SecurityLabs.websense.com Hermes Li.
Smart Phone Laboratory ECEN 489 Srinivas Shakkottai.

Smart Phone Laboratory ECEN 489 Srinivas Shakkottai.
1 Tradedoubler & Mobile Mobile web & app tracking technical overview.

1 Tradedoubler & Mobile Mobile web & app tracking technical overview.
Rick Conrad Efrain Lopez III Saeed Noori. What is Experience Sampling? Survey method People’s experiences Real-time Format Paper and Pencil Handheld devices.

Rick Conrad Efrain Lopez III Saeed Noori. What is Experience Sampling? Survey method People’s experiences Real-time Format Paper and Pencil Handheld devices.
Module 7: Advanced Application and Web Filtering.

Module 7: Advanced Application and Web Filtering.
BeamAuth : Two-Factor Web Authentication with a Bookmark 14 th ACM Conference on Computer and Communications Security Ben Adida Presenter : SJ Park.

BeamAuth : Two-Factor Web Authentication with a Bookmark 14 th ACM Conference on Computer and Communications Security Ben Adida Presenter : SJ Park.
PwC New Technologies New Risks. PricewaterhouseCoopers Technology and Security Evolution Mainframe Technology –Single host –Limited Trusted users Security.

PwC New Technologies New Risks. PricewaterhouseCoopers Technology and Security Evolution Mainframe Technology –Single host –Limited Trusted users Security.
FriendFinder Location-aware social networking on mobile phones.

FriendFinder Location-aware social networking on mobile phones.
FriendFinder Location-aware social networking on mobile phones.

FriendFinder Location-aware social networking on mobile phones.
Group 3 CMPE Community Project. What is CMPE Community project? CMPE Community project aims to create a social web application to create an environment,

Group 3 CMPE Community Project. What is CMPE Community project? CMPE Community project aims to create a social web application to create an environment,
Sharique Ali Khan. THE HUNTERS:  seekers of ??  Friends searches THE PROVIDERS:  Ordinary people in need of some help  Friends / Employers  Emergency.

Sharique Ali Khan. THE HUNTERS:  seekers of ??  Friends searches THE PROVIDERS:  Ordinary people in need of some help  Friends / Employers  Emergency.
Www.appmobi.com The Fallacy Behind “There’s Nothing to Hide” Why End-to-End Encryption Is a Must in Today’s World.

The Fallacy Behind “There’s Nothing to Hide” Why End-to-End Encryption Is a Must in Today’s World.

Similar presentations

Ads by Google