Vulnerabilities of Live-Streaming Services in Korea.

Publisher: MDPI Country of Publication: Switzerland NLM ID: 101204366 Publication Model: Electronic Cited Medium: Internet ISSN: 1424-8220 (Electronic) Linking ISSN: 14248220 NLM ISO Abbreviation: Sensors (Basel) Subsets: MEDLINE

Original Publication: Basel, Switzerland : MDPI, c2000-

Computer Systems* ; Computers*; Republic of Korea

Recently, the number of users and the demand for live-streaming services have increased. This has exponentially increased the traffic to such services, and live-streaming service platforms in Korea use a grid computing system that distributes traffic to users and reduces traffic loads. However, ensuring security with a grid computing system is difficult because the system exchanges general user traffic in a peer-to-peer (P2P) manner instead of receiving data from an authenticated server. Therefore, in this study, to explore the vulnerabilities of a grid computing system, we investigated a vulnerability discovery framework that involves a three-step analysis process and eight detailed activities. Four types of zero-day vulnerabilities, namely video stealing, information disclosure, denial of service, and remote code execution, were derived by analyzing a live-streaming platform in Korea, as a representative service, using grid computing.

Elife. 2019 Oct 25;8:. (PMID: 31647410)

2019-0- 01343 Institute for Information and Communications Technology Promotion

Keywords: STRIDE; grid computing; live-streaming service; threat modeling; vulnerability analysis

Date Created: 20220528 Date Completed: 20220531 Latest Revision: 20231102

20231102

PMC9147041

10.3390/s22103766

35632175