The Security of WebRTC
Ben Feher, Lior Sidi, Asaf Shabtai, Rami Puzis
TL;DR
This paper reviews the security aspects of WebRTC, analyzing its vulnerabilities to disruption, modification, and eavesdropping through simulations and real-world scenarios.
Contribution
It provides a comprehensive analysis of WebRTC's security architecture and evaluates its vulnerabilities in various practical scenarios.
Findings
WebRTC is susceptible to certain security threats like eavesdropping and disruption.
Simulated attacks reveal specific weaknesses in WebRTC security implementations.
The study offers insights into improving WebRTC security measures.
Abstract
WebRTC is an API that allows users to share streaming information, whether it is text, sound, video or files. It is supported by all major browsers and has a flexible underlying infrastructure. In this study we review current WebRTC structure and security in the contexts of communication disruption, modification and eavesdropping. In addition, we examine WebRTC security in a few representative scenarios, setting up and simulating real WebRTC environments and attacks.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsSpam and Phishing Detection · Internet Traffic Analysis and Secure E-voting · Web Application Security Vulnerabilities