中大學術數位典藏-NCU Institutional Repository-提供博碩士論文、考古題、期刊論文、研究計畫等下載:Item 987654321/106443
English  |  正體中文  |  简体中文  |  Items with full text/Total items : 94201/94201 (100%)
Visitors : 81557313      Online Users : 3653
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
    •  Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version


    Please use this identifier to cite or link to this item: https://ir.lib.ncu.edu.tw/handle/987654321/106443


    Title: Bypass cell-phone-verification through a smartphone-based botnet
    Authors: 許富皓;Hsu, Fu-Hau;Hsu, Chi-Hsien;Wang, Chuan-Sheng;Lee, Pei-Hsun;JIANG, RUEI-MIN;Jhang, Jia-Sian
    Contributors: 資訊電機學院資訊工程學系
    Keywords: Access control to computer data;Bypasses;Computer information security;Contact;Finishes;Smartphones;Trends;Web services
    Date: 2015-01-01
    Issue Date: 2026-04-23 13:22:44 (UTC+8)
    Publisher: Institute of Information Science;社團法人中華民國計算語言學學會
    Abstract: 摘要: Due to the trend that more and more web services, such as Google, Facebook, and many auction websites, require users to open their new accounts or to login to their accounts through cell-phone-verification, cell-phone-verification has become an important function of cellular phones. However, our research shows that cell-phone-verification is not always reliable. This study proposes a new attack method named MAC-YURI (My ACcount, YoUr ResponsibIlity) against cell-phone-verification to show people one possible abuse of smartphones. Through MAC-YURI, an attacker can utilize a compromised smartphone as a steppingstone to accept and forward account verification code to finish cell-phone-verification when applying a new account or logging in to an account. We have implemented MAC-YURI on an Android smartphone. Experimental results show that MAC-YURI can successfully assist an attacker in obtaining the verification code of an account without the awareness of a steppingstone smartphone owner. Besides, MAC-YURI also develops an SMS-based mechanism to create a smartphone-based botnet. After such a botnet is created, it is difficult to locate the bot master or the machine a bot will contact in the future. Finally, this paper proposes some recommendations to protect a smartphone against MAC-YURI.
    出版者: 社團法人中華民國計算語言學學會
    出版日期: 2015-05-01
    出處: Journal of Information Science and Engineering, 2015-05, Vol.31 (3), p.1097-1111
    資源來源: 華藝線上圖書館
    識別號: ISSN: 1016-2364
    識別號: DOI: 10.6688/JISE.2015.31.3.18
    Appears in Collections:[Department of Computer Science and information Engineering] journal & Dissertation

    Files in This Item:

    File Description SizeFormat
    index.html0KbHTML15View/Open


    All items in NCUIR are protected by copyright, with all rights reserved.

    社群 sharing

    ::: Copyright National Central University. | 國立中央大學圖書館版權所有 | 收藏本站 | 設為首頁 | 最佳瀏覽畫面: 1024*768 | 建站日期:8-24-2009 :::
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - 隱私權政策聲明