Presentation is loading. Please wait.

Presentation is loading. Please wait.

Defending against Sybil Devices in Crowdsourced Mapping Services Gang Wang, Bolun Wang, Tianyi Wang, Ana Nika, Haitao Zheng, Ben Y. Zhao UC Santa Barbara.

Published byAugustus Elliott Modified over 8 years ago

Similar presentations

Presentation on theme: "Defending against Sybil Devices in Crowdsourced Mapping Services Gang Wang, Bolun Wang, Tianyi Wang, Ana Nika, Haitao Zheng, Ben Y. Zhao UC Santa Barbara."— Presentation transcript:

1 Defending against Sybil Devices in Crowdsourced Mapping Services Gang Wang, Bolun Wang, Tianyi Wang, Ana Nika, Haitao Zheng, Ben Y. Zhao UC Santa Barbara bolunwang@cs.ucsb.edu

2 Mobile = Life Mobile phones for content, payment, authentication Mobile devices are virtual representations of ourselves. 1 =

3 But Is This a Safe Assumption? App User = real phone + real person? 2

4 Can We “Authenticate” Devices? Register via email account Require CAPTCHAs 2FA via phone number Validate IMEI number Create fake email account Out-source to third party Temporary SMS services Spoofed IMEI 3

5 In This Talk Sybil device problem Software scripts emulating as real devices Allowing a single user to control many devices In the context of Waze (popular navigation app) Techniques generating Sybil devices Attacks on Waze: injecting fake events, user location tracking Defense against Sybil devices The story between us and Waze Broader implications 4 Not in paper

6 Key Features 5 User reported events Accidents, construction, police cars, etc. Alert user of nearby events Social features See nearby users on the map Say “hi” and message nearby users 50M active users Real-time traffic update using millions of users’ locations

7 Sybil Devices in Waze Sybil devices have significant impact on Waze -Inject fake data, retrieve sensitive information Existing work: mobile emulators Two Israeli students used emulators to created fake traffic jams in 2014 Not scalable: ~10 emulators per PC Virtualize devices using scripts Scalable: 1,000 – 10,000 Sybil devices per server Overwhelm normal users’ data Launch special large scale attacks 6

8 Create Sybil Devices using Script Intuition -Goal: emulate a full mobile client -Server communicates with client via limited APIs -Mimic API calls to replace full client 7 Waze Client Waze Server HTTPS HTTPS Proxy HTTPS Controlled by us Plaintext traffic We can create 10,000 Sybil devices on a single PC

9 Attack #1: Polluting Waze Database Fake road-side events. -Any type of event at any location -Potentially affect 1+billion Google Maps users Fake traffic hotspots -Simulate cars driving slowly -Large groups of Sybil devices to overwhelm normal users’ data 8 BeforeAfter Users are re-routed

10 Attack #2: User Location Tracking Follow (stalk) any Waze user in real-time W aze marks nearby users on the map Pinpoint to exact GPS location Specific hotels, gas stations, etc. Remain invisible Move in and out quickly Track users in the background Waze uploads GPS in the background Track users across days Use creation time as GUID 9

11 A Tracking Example 10

12 Tracking Experiments 11 GPS CapturedGPS Missed Extremely dense user population Fast moving target user Tracking attack is effective and practical LA downtown Highway 101

13 The Story of Us and Waze 12

14 Conversation with Waze 13 Time Notify Waze and Google Nov. 14 2014 1 st code change: remove background GPS upload Oct. 18 2015 Pitch work to Fusion Fusion report on tracking Media attention Public PR release 2 nd code change: disable social function More news coverage Apr. 16 2016 Apr. 26 2016 Apr. 27 2016 May. 11 2016 Work with Waze +21 more +16 more

15 Waze’s Security Measures 14 Time Disable social feature in versions <= 3.5 Use special encoding for app-to-server APIs Crack encoding within a day Validate via experiments Remove username Scramble creation time Require SMS verification to see identifiable information Use temporary SMS services to pass verification Validate via experiments Apr. 27 2016 Apr. 29 2016 May 17 2016 May 23 2016 Remove background GPS upload Hide start/end location Hide GPS when not moving Oct. 18 2015 Track active users May 11 2016 Start collaboration Yes, we can still track Waze users Much less location information being shared

16 Broad Implications on Other Apps Sybil device problem is not specific to Waze E.g. Foursquare, Yelp, Uber, Lyft, Tinder, Whisper We reverse engineer their APIs, and create light-weight clients using scripts Tinder/Whisper Locate (triangulate) users Uber/Lyft Track drivers Fake rides 15

17 Today Good defense: Yik Yak Use HMAC [1] to ensure message integrity Embed key in code Require decompiling code Market for selling attack tools Plugin apps for Didi in China Spoof location Filter orders Snatch orders 16 [1] HMAC: Hash-based Message Authentication Code

18 17 Thank you! Questions?

Download ppt "Defending against Sybil Devices in Crowdsourced Mapping Services Gang Wang, Bolun Wang, Tianyi Wang, Ana Nika, Haitao Zheng, Ben Y. Zhao UC Santa Barbara."

Similar presentations

Cross-Site Scripting Issues and Defenses Ed Skoudis Predictive Systems © 2002, Predictive Systems.

Cross-Site Scripting Issues and Defenses Ed Skoudis Predictive Systems © 2002, Predictive Systems.
Location Cheating: A Security Challenge to Location- based Social Network Services Wenbo He 1, Xue Liu 2, Mai Ren 1 1 University of Nebraska-Lincoln 2.

Location Cheating: A Security Challenge to Location- based Social Network Services Wenbo He 1, Xue Liu 2, Mai Ren 1 1 University of Nebraska-Lincoln 2.
 Guy Jacob  Roee Shapiro Project B Spring, 2009 Cloudio  Project Supervisor: Eddie Bortnikov  Lab Chief Engineer: Dr. Ilana David.

 Guy Jacob  Roee Shapiro Project B Spring, 2009 Cloudio  Project Supervisor: Eddie Bortnikov  Lab Chief Engineer: Dr. Ilana David.
1 Team Management System (TMS) By DACCIT Pvt. Ltd., Indore.

1 Team Management System (TMS) By DACCIT Pvt. Ltd., Indore.
Mobile site proposal. Chroma Agency An award-winning digital agency We build engaging and sustainable digital products Equally strong in design, technology.

Mobile site proposal. Chroma Agency An award-winning digital agency We build engaging and sustainable digital products Equally strong in design, technology.
MODEL BASED GUI TESTING FOR MOBILE APPS 1 Manoj Philip Mathen Specialized Testing Consultant, Infosys.

MODEL BASED GUI TESTING FOR MOBILE APPS 1 Manoj Philip Mathen Specialized Testing Consultant, Infosys.
Online Game Trojan SecurityLabs.websense.com Hermes Li.

Online Game Trojan SecurityLabs.websense.com Hermes Li.
1 Tradedoubler & Mobile Mobile web & app tracking technical overview.

1 Tradedoubler & Mobile Mobile web & app tracking technical overview.
Man vs. Machine: Adversarial Detection of Malicious Crowdsourcing Workers Gang Wang, Tianyi Wang, Haitao Zheng, Ben Y. Zhao, UC Santa Barbara, Usenix Security.

Man vs. Machine: Adversarial Detection of Malicious Crowdsourcing Workers Gang Wang, Tianyi Wang, Haitao Zheng, Ben Y. Zhao, UC Santa Barbara, Usenix Security.
Dotcom Project Navya Ashok, Sakthi Chelliah, Thalia Cheng, Nikita Goel, Andrea Joyce.

Dotcom Project Navya Ashok, Sakthi Chelliah, Thalia Cheng, Nikita Goel, Andrea Joyce.
Rick Conrad Efrain Lopez III Saeed Noori. What is Experience Sampling? Survey method People’s experiences Real-time Format Paper and Pencil Handheld devices.

Rick Conrad Efrain Lopez III Saeed Noori. What is Experience Sampling? Survey method People’s experiences Real-time Format Paper and Pencil Handheld devices.
BeamAuth : Two-Factor Web Authentication with a Bookmark 14 th ACM Conference on Computer and Communications Security Ben Adida Presenter : SJ Park.

BeamAuth : Two-Factor Web Authentication with a Bookmark 14 th ACM Conference on Computer and Communications Security Ben Adida Presenter : SJ Park.
PwC New Technologies New Risks. PricewaterhouseCoopers Technology and Security Evolution Mainframe Technology –Single host –Limited Trusted users Security.

PwC New Technologies New Risks. PricewaterhouseCoopers Technology and Security Evolution Mainframe Technology –Single host –Limited Trusted users Security.
SafeTracks Theme: Women’s Safety. Background In the last few decades, there has been an increase in women professionals in India. Globalised businesses.

SafeTracks Theme: Women’s Safety. Background In the last few decades, there has been an increase in women professionals in India. Globalised businesses.
Deconstructing API Security

Deconstructing API Security
FriendFinder Location-aware social networking on mobile phones.

FriendFinder Location-aware social networking on mobile phones.
FriendFinder Location-aware social networking on mobile phones.

FriendFinder Location-aware social networking on mobile phones.
Rick Conrad Efrain Lopez III Saeed Noori. What is Experience Sampling? Survey method People’s experiences Real-time Format Paper and Pencil Handheld devices.

Rick Conrad Efrain Lopez III Saeed Noori. What is Experience Sampling? Survey method People’s experiences Real-time Format Paper and Pencil Handheld devices.
Gang Wang, Sarita Y. Schoenebeck †, Haitao Zheng, Ben Y. Zhao UC Santa Barbara, † University of Michigan Understanding Bias and Misbehavior on Location-based.

Gang Wang, Sarita Y. Schoenebeck †, Haitao Zheng, Ben Y. Zhao UC Santa Barbara, † University of Michigan Understanding Bias and Misbehavior on Location-based.
KASPERSKY INTERNET SECURITY FOR ANDROID. YOUR MOBILE DEVICES NEED PROTECTION More online communications and transaction are happening on tablets and phones.

KASPERSKY INTERNET SECURITY FOR ANDROID. YOUR MOBILE DEVICES NEED PROTECTION More online communications and transaction are happening on tablets and phones.

Similar presentations

Ads by Google