Identifying a Game Console Vulnerability and Potential Exploitation for eBusiness Attacks

Date
2014
Authors
Cusack, Brian
Robinson, Nick
Supervisor
Item type
Conference Contribution
Degree name
Journal Title
Journal ISSN
Volume Title
Publisher
ACIS
Abstract

Game Information System (IS) consoles are used by millions of players at any one time to access the Internet and information resources. In this research we questioned the security of these systems and evaluated one identified vulnerability for the impacts on eBusiness IS. A number of systematic attacks were made in a controlled laboratory environment on a game system to evaluate the security. In general the system was robust and repelled the attacks. However one vulnerability was discovered and exploited to demonstrate how an Xbox or consoles with similar weaknesses can be used to access eBusiness web sites using false credentials. The demonstration emphasises the range of vectors and sources of vulnerability that may come to bear on an eBusiness IS on account of new and evolving IS applications. The steps to defend against such problems are outlined and suggestions made to improve current game console security.

Description
Keywords
Source
Proceedings of the 25th Australasian Conference on Information Systems, 8th - 10th December, Auckland, New Zealand
DOI
Publisher's version
Rights statement